Lucene search

Cross-site Scripting (XSS)

🗓️ 03 Jan 2018 23:46:29Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 18 Views

PlonePAS vulnerability to XSS attacks via home_page property

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 12
OSV	CVE-2017-1000482	3 Jan 201818:29	–	osv
OSV	PYSEC-2018-71	3 Jan 201818:29	–	osv
OSV	Products.CMFPlone XSS in profile home_page property	14 May 202203:49	–	osv
NVD	CVE-2017-1000482	3 Jan 201818:29	–	nvd
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2017-1000482	4 Mar 202500:00	–	nessus
Tenable Nessus	RHEL 5 : conga (Unpatched Vulnerability)	3 Jun 202400:00	–	nessus
Tenable Nessus	RHEL 5 : plone (Unpatched Vulnerability)	11 May 202400:00	–	nessus
Prion	Code injection	3 Jan 201818:29	–	prion
RedhatCVE	CVE-2017-1000482	9 Jan 201805:50	–	redhatcve
Cvelist	CVE-2017-1000482	3 Jan 201818:00	–	cvelist

Vulners

Node

products_plonepas products_plonepasRange3.0b6–5.0.14python

Source	Link
plone	www.plone.org/security/hotfix/20171128/xss-using-the-home_page-member-property
github	www.github.com/plone/Products.PlonePAS/commit/920115dbccbe40bbcb1fb8795671d3cb193eea02
plone	www.plone.org/security/hotfix/20171128

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Jan 2018 23:29Current

5.1Medium risk

Vulners AI Score5.1

CVSS23.5

CVSS35.4

EPSS0.00287