CVE-2013-7060
Products/CMFPlone/FactoryTool.py in Plone 3.3 through 4.3.2 allows remote attackers to obtain the installation path via vectors related to a file object for unspecified documentation which is initialized in class scope.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0046 (0.5%)
Percentil: 63.9%
EPSS: 2026-05-06
Afecta
plone:ploneDescripción técnica
Products/CMFPlone/FactoryTool.py in Plone 3.3 through 4.3.2 allows remote attackers to obtain the installation path via vectors related to a file object for unspecified documentation which is initialized in class scope.
Publicada: 2/5/2014, 14:55:05
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://www.openwall.com/lists/oss-security/2013/12/10/15
- http://www.openwall.com/lists/oss-security/2013/12/12/3
- https://plone.org/security/20131210/path-leak
- http://www.openwall.com/lists/oss-security/2013/12/10/15
- http://www.openwall.com/lists/oss-security/2013/12/12/3
- https://plone.org/security/20131210/path-leak