Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2006-0002

Malware in sbrugna...

6.4CVSS6.2AI score0.00333EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2025/05/21 8:51 p.m.7 views

CVE-2006-4247

Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 Release Candidate allows attackers to reset the passwords of other users, related to "an erroneous security declaration."...

6.4CVSS6.9AI score0.00333EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2018/01/09 5:20 a.m.32 views

CVE-2017-1000483

Accessing private content via str.format in through-the-web templates and scripts in Plone 2.5-5.1rc1. This improves an earlier hotfix. Since the format method was introduced in Python 2.6, this part of the hotfix is only relevant for Plone 4 and 5...

6.5CVSS2AI score0.00294EPSS
Exploits0References1
Prion
Prionadded 2018/01/03 6:29 p.m.21 views

Format string

Accessing private content via str.format in through-the-web templates and scripts in Plone 2.5-5.1rc1. This improves an earlier hotfix. Since the format method was introduced in Python 2.6, this part of the hotfix is only relevant for Plone 4 and 5...

4CVSS6.4AI score0.00294EPSS
Exploits0References1Affected Software1
Prion
Prionadded 2018/01/03 6:29 p.m.19 views

Information disclosure

When you visit a page where you need to login, Plone 2.5-5.1rc1 sends you to the login form with a 'camefrom' parameter set to the previous url. After you login, you get redirected to the page you tried to view before. An attacker might try to abuse this by letting you click on a specially crafte...

5.8CVSS6.1AI score0.00197EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2018/01/03 6:29 p.m.14 views

CVE-2017-1000483

Accessing private content via str.format in through-the-web templates and scripts in Plone 2.5-5.1rc1. This improves an earlier hotfix. Since the format method was introduced in Python 2.6, this part of the hotfix is only relevant for Plone 4 and 5...

6.5CVSS6.3AI score0.00294EPSS
Exploits0References1
OSV
OSVadded 2018/01/03 6:29 p.m.34 views

PYSEC-2018-72

Accessing private content via str.format in through-the-web templates and scripts in Plone 2.5-5.1rc1. This improves an earlier hotfix. Since the format method was introduced in Python 2.6, this part of the hotfix is only relevant for Plone 4 and 5...

6.5CVSS2AI score0.00294EPSS
Exploits0References2
CVE
CVEadded 2018/01/03 6:0 p.m.63 views

CVE-2017-1000483

CVE-2017-1000483 affects Plone 2.5–5.1rc1 where private content can be accessed via str.format in through-the-web templates and scripts. The issue stems from the format method exposure, with the hotfix originally addressing this and noting the format method is from Python 2.6, making the fix rele...

6.5CVSS6.3AI score0.00294EPSS
Exploits0References1Affected Software1
PyPA
PyPAadded 2006/12/07 11:28 p.m.6 views

PYSEC-2006-6

Unspecified vulnerability in PlonePAS in Plone 2.5 and 2.5.1, when anonymous member registration is enabled, allows an attacker to "masquerade as a group."...

4.3CVSS6.9AI score0.00593EPSS
Exploits0References8Affected Software1
PyPA
PyPAadded 2006/09/29 7:7 p.m.6 views

PYSEC-2006-5

Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 Release Candidate allows attackers to reset the passwords of other users, related to "an erroneous security declaration."...

6.4CVSS6.8AI score0.00333EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCveadded 2006/09/29 7:7 p.m.26 views

CVE-2006-4247

Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 Release Candidate allows attackers to reset the passwords of other users, related to "an erroneous security declaration."...

6.4CVSS5.9AI score0.00333EPSS
Exploits0References1
Rows per page
Query Builder