Lucene search
Veracode Vulnerability DatabaseVERACODE:5634HistoryJan 03, 2018 - 11:29 p.m.
Cross-site Scripting (XSS)
2018-01-0323:29:46
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
EPSS
0.001
Percentile
22.7%
Products.PlonePAS is vulnerable to cross-site scripting (XSS) attacks. Attackers can insert Javascript through the home_page property of their profile. When a user clicks the homepage link on the attackers author page, the script will get executed.
Related
osv
osv
CVE-2017-1000482
2018-01-03 18:29:00
PYSEC-2018-71
2018-01-03 18:29:00
Products.CMFPlone XSS in profile home_page property
2022-05-14 03:49:57
redhatcve
redhatcve
CVE-2017-1000482
2018-01-09 05:50:33
prion
prion
Code injection
2018-01-03 18:29:00
nvd
nvd
CVE-2017-1000482
2018-01-03 18:29:00
cvelist
cvelist
CVE-2017-1000482
2018-01-03 18:00:00
cve
cve
CVE-2017-1000482
2018-01-03 18:29:00
github
github
Products.CMFPlone XSS in profile home_page property
2022-05-14 03:49:57
nessus
nessus
RHEL 5 : conga (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 5 : plone (Unpatched Vulnerability)
2024-05-11 00:00:00