WEB APPLICATION VULNERABILITIES Standard & Premium

Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-4042)

Description

Plone 3.3 through 5.1a1 allows remote attackers to obtain information about the ID of sensitive content via unspecified vectors.

Remediation

References

Related Vulnerabilities

WordPress Plugin Premmerce Variation Swatches for WooCommerce Security Bypass (1.0)

WebLogic Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-5397)

WordPress Plugin WP Photo Album Plus Cross-Site Scripting (5.4.17)

ATutor Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2021-43498)

Oracle JRE CVE-2018-2826 Vulnerability (CVE-2018-2826)

Severity

Medium

Classification

CVE-2016-4042 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities