CVE-2015-7318

CVE-2015-7318

EPSS 1.7%

Plone 3.3.0 through 3.3.6 allows remote attackers to inject headers into HTTP responses.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://bugzilla.redhat.com/show_bug.cgi?id=1264796 https://plone.org/security/hotfix/20150910 https://plone.org/security/hotfix/20150910/header-injection http://www.openwall.com/lists/oss-security/2015/09/22/16