Lucene search
K

5 matches found

vulnersOsv
vulnersOsv
added 2022/05/24 5:7 p.m.4 views

plone-app-z3cform (>=4.0.0a1 <=4.0.0a10) potentially affected by CVE-2020-7941 via plone-app-contenttypes (=2.2.2)

plone-app-contenttypes PYPI version =2.2.2 is affected by a known vulnerability. The following packages have a transitive dependency on plone-app-contenttypes and may be impacted: - plone-app-z3cform =4.0.0a1, =4.0.0a10 Source cves: CVE-2020-7941 Source advisory: OSV:GHSA-W6G9-XCCC-347H...

9.8CVSS7.2AI score0.02258EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2020/02/04 8:18 p.m.26 views

CVE-2020-7941

A privilege escalation flaw was found in plone in versions 4.3 through 5.2.1. Users are allowed to PUT overwrite some content without needing write permissions. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

9.8CVSS4.5AI score0.02258EPSS
Exploits0References3
NVD
NVD
added 2020/01/23 9:15 p.m.22 views

CVE-2020-7941

A privilege escalation issue in plone.app.contenttypes in Plone 4.3 through 5.2.1 allows users to PUT overwrite some content without needing write permission...

9.8CVSS9.5AI score0.02258EPSS
Exploits0References4
OSV
OSV
added 2020/01/23 9:15 p.m.20 views

CVE-2020-7941

A privilege escalation issue in plone.app.contenttypes in Plone 4.3 through 5.2.1 allows users to PUT overwrite some content without needing write permission...

9.8CVSS9.5AI score
Exploits0References4
Cvelist
Cvelist
added 2020/01/23 8:38 p.m.22 views

CVE-2020-7941

A privilege escalation issue in plone.app.contenttypes in Plone 4.3 through 5.2.1 allows users to PUT overwrite some content without needing write permission...

9.6AI score0.02258EPSS
Exploits0References4
Rows per page
Query Builder