EUVD-2006-0002

Malware in sbrugna...

GHSA-QQGJ-22GR-73VX Plone vulnerable to privilege escalation in WebDAV

Plone 4.0 through 5.1a1 does not have security declarations for Dexterity content-related WebDAV requests, which allows remote attackers to gain webdav access via unspecified vectors...

Plone CMS < 5.0.5 Privilege Escalation Vulnerability

Plone CMS is prone to a privilege escalation vulnerability in WebDAV requests. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program ...

CVE-2016-4041

Plone 4.0 through 5.1a1 does not have security declarations for Dexterity content-related WebDAV requests, which allows remote attackers to gain webdav access via unspecified vectors...

PYSEC-2006-5

Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 Release Candidate allows attackers to reset the passwords of other users, related to "an erroneous security declaration."...

CVE-2006-4247

CVE-2006-4247 affects Plone 2.5 and 2.5.1 Release Candidate with the Password Reset Tool prior to 0.4.1, enabling attackers to reset other users’ passwords due to an erroneous security declaration. Affected component: Password Reset Tool; vulnerability type: unspecified in detail, but impact is u...