Description

registerConfiglet.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to execute Python code via unspecified vectors, related to the admin interface.

Remediation

References

CVE-2012-5485

Related Vulnerabilities

WordPress Plugin FooBox Image Lightbox Security Bypass (2.6.3)

IBM WebSEAL Weak Password Requirements Vulnerability (CVE-2024-35137)

PleskLin Other Vulnerability (CVE-2013-0133)

WordPress Plugin Product Addons & Fields for WooCommerce Arbitrary File Upload (1.1)

Apache HTTP Server Out-of-bounds Write Vulnerability (CVE-2019-10081)

Severity

Medium

Classification

CVE-2012-5485 CWE-94

Tags

Missing Update Known Vulnerabilities