CVE-2013-7061
Products/CMFPlone/CatalogTool.py in Plone 3.3 through 4.3.2 allows remote administrators to bypass restrictions and obtain sensitive information via an unspecified search API.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0026 (0.3%)
Percentil: 49.1%
EPSS: 2026-05-06
Afecta
plone:ploneDescripción técnica
Products/CMFPlone/CatalogTool.py in Plone 3.3 through 4.3.2 allows remote administrators to bypass restrictions and obtain sensitive information via an unspecified search API.
Publicada: 2/5/2014, 14:55:05
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://www.openwall.com/lists/oss-security/2013/12/10/15
- http://www.openwall.com/lists/oss-security/2013/12/12/3
- https://plone.org/security/20131210/catalogue-exposure
- http://www.openwall.com/lists/oss-security/2013/12/10/15
- http://www.openwall.com/lists/oss-security/2013/12/12/3
- https://plone.org/security/20131210/catalogue-exposure