CVE-2016-4043

CVE-2016-4043

EPSS 1.0%

Chameleon (five.pt) in Plone 5.0rc1 through 5.1a1 allows remote authenticated users to bypass Restricted Python by leveraging permissions to create or edit templates.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://plone.org/security/hotfix/20160419/bypass-restricted-python http://www.openwall.com/lists/oss-security/2016/04/20/3