Plone denial of service via Caching Bypass

queryCatalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to bypass caching and cause a denial of service via a crafted request to a collection...

GHSA-97RJ-P794-WQ6M Plone denial of service via Caching Bypass

queryCatalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to bypass caching and cause a denial of service via a crafted request to a collection...

CVE-2012-5498

queryCatalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to bypass caching and cause a denial of service via a crafted request to a collection...

Cross site request forgery (csrf)

queryCatalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to bypass caching and cause a denial of service via a crafted request to a collection...

PYSEC-2014-40

queryCatalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to bypass caching and cause a denial of service via a crafted request to a collection...

CVE-2012-5498

CVE-2012-5498 affects Plone (the CMS) where queryCatalog.py in Plone versions before 4.2.3 and before beta1 of 4.3 can bypass caching, enabling a remote attacker to cause a denial of service via a crafted request to a collection. The NVD cites a base score of 5.0 (Medium) with network access and ...

PT-2014-2325 · Plone +1 · Plone +1

Name of the Vulnerable Software and Affected Versions: Plone versions prior to 4.2.3 Plone version 4.3 before beta 1 Description: The issue allows remote attackers to bypass caching and cause a denial of service via a crafted request to a collection. This is related to the queryCatalog.py script...