Every CVE whose affected-product data names Plone, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (103)
CVE-2021-33509 — CVSS 9.9 (critical): Plone through 5.2.4 allows remote authenticated managers to perform disk I/O via crafted keyword arguments to the ReStructuredText…
CVE-2020-7941 — CVSS 9.8 (critical): A privilege escalation issue in plone.app.contenttypes in Plone 4.3 through 5.2.1 allows users to PUT (overwrite) some content without…
CVE-2020-35190 — CVSS 9.8 (critical): The official plone Docker images before version of 4.3.18-alpine (Alpine specific) contain a blank password for a root user. System using…
CVE-2011-3587 — CVSS 9.3 (critical): Unspecified vulnerability in Zope 2.12.x and 2.13.x, as used in Plone 4.0.x through 4.0.9, 4.1, and 4.2 through 4.2a2, allows remote…
CVE-2011-4030 — CVSS 9.3 (critical): The CMFEditions component 2.x in Plone 4.0.x through 4.0.9, 4.1, and 4.2 through 4.2a2 does not prevent the KwAsAttributes classes from…
CVE-2020-7939 — CVSS 8.8 (high): SQL Injection in DTML or in connection objects in Plone 4.0 through 5.2.1 allows users to perform unwanted SQL queries. (This is a problem…
CVE-2020-28734 — CVSS 8.8 (high): Plone before 5.2.3 allows XXE attacks via a feature that is explicitly only available to the Manager role.
CVE-2020-28735 — CVSS 8.8 (high): Plone before 5.2.3 allows SSRF attacks via the tracebacks feature (only available to the Manager role).
CVE-2015-7293 — CVSS 8.8 (high): Multiple cross-site request forgery (CSRF) vulnerabilities in Zope Management Interface 4.3.7 and earlier, and Plone before 5.x.
CVE-2020-7938 — CVSS 8.8 (high): plone.restapi in Plone 5.2.0 through 5.2.1 allows users with a certain privilege level to escalate their privileges up to the highest level.
CVE-2020-28736 — CVSS 8.8 (high): Plone before 5.2.3 allows XXE attacks via a feature that is protected by an unapplied permission of plone.schemaeditor.ManageSchemata…
CVE-2021-33926 — CVSS 8.8 (high): An issue in Plone CMS v. 5.2.4, 5.2.3, 5.2.2, 5.2.1, 5.2.0, 5.1rc2, 5.1rc1, 5.1b4, 5.1b3, 5.1b2, 5.1a2, 5.1a1, 5.1.7, 5.1.6, 5.1.5, 5.1.4…
CVE-2012-5493 — CVSS 8.5 (high): gtbn.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote authenticated users with certain permissions to bypass the Python sandbox…
CVE-2012-5487 — CVSS 8.5 (high): The sandbox whitelisting function (allowmodule.py) in Plone before 4.2.3 and 4.3 before beta 1 allows remote authenticated users with…
CVE-2021-33511 — CVSS 7.5 (high): Plone though 5.2.4 allows SSRF via the lxml parser. This affects Diazo themes, Dexterity TTW schemas, and modeleditors in…
CVE-2020-7940 — CVSS 7.5 (high): Missing password strength checks on some forms in Plone 4.3 through 5.2.0 allow users to set weak passwords, leading to easier cracking.
CVE-2011-2528 — CVSS 7.5 (high): Unspecified vulnerability in (1) Zope 2.12.x before 2.12.19 and 2.13.x before 2.13.8, as used in Plone 4.x and other products, and (2)…
CVE-2011-0720 — CVSS 7.5 (high): Unspecified vulnerability in Plone 2.5 through 4.0, as used in Conga, luci, and possibly other products, allows remote attackers to obtain…
CVE-2024-22889 — CVSS 7.5 (high): Due to incorrect access control in Plone version v6.0.9, remote attackers can view and list all files hosted on the website via sending a…
CVE-2024-23756 — CVSS 7.5 (high): The HTTP PUT and DELETE methods are enabled in the Plone official Docker version 5.2.13 (5221), allowing unauthenticated attackers to…
CVE-2007-5741 — CVSS 7.5 (high): Plone 2.5 through 2.5.4 and 3.0 through 3.0.2 allows remote attackers to execute arbitrary Python code via network data containing pickled…
CVE-2016-4041 — CVSS 7.3 (high): Plone 4.0 through 5.1a1 does not have security declarations for Dexterity content-related WebDAV requests, which allows remote attackers to…
CVE-2015-7317 — CVSS 6.8 (medium): Kupu 3.3.0 through 3.3.6, 4.0.0 through 4.0.10, 4.1.0 through 4.1.6, and 4.2.0 through 4.2.7 allows remote authenticated users to edit Kupu…
CVE-2012-5485 — CVSS 6.8 (medium): registerConfiglet.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to execute Python code via unspecified vectors…
CVE-2021-32633 — CVSS 6.8 (medium): Zope is an open-source web application server. In Zope versions prior to 4.6 and 5.2, users can access untrusted modules indirectly through…
CVE-2017-1000483 — CVSS 6.5 (medium): Accessing private content via str.format in through-the-web templates and scripts in Plone 2.5-5.1rc1. This improves an earlier hotfix…
CVE-2021-21336 — CVSS 6.5 (medium): Products.PluggableAuthService is a pluggable Zope authentication and authorization framework. In Products.PluggableAuthService before…
CVE-2013-4189 — CVSS 6.5 (medium): Multiple unspecified vulnerabilities in (1) dataitems.py, (2) get.py, and (3) traverseName.py in Plone 2.1 through 4.1, 4.2.x through…
CVE-2012-5489 — CVSS 6.5 (medium): The App.Undo.UndoSupport.get_request_var_or_attr function in Zope before 2.12.21 and 3.13.x before 2.13.11, as used in Plone before 4.2.3…
CVE-2012-5486 — CVSS 6.4 (medium): ZPublisher.HTTPRequest._scrubHeader in Zope 2 before 2.13.19, as used in Plone before 4.3 beta 1, allows remote attackers to inject…
CVE-2006-4247 — CVSS 6.4 (medium): Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 Release Candidate allows attackers to reset the…
CVE-2024-0669 — CVSS 6.3 (medium): A Cross-Frame Scripting vulnerability has been found on Plone CMS affecting verssion below 6.0.5. An attacker could store a malicious URL…
CVE-2016-7137 — CVSS 6.1 (medium): Multiple open redirect vulnerabilities in Plone CMS 5.x through 5.0.6, 4.x through 4.3.11, and 3.3.x through 3.3.6 allow remote attackers…
CVE-2017-1000481 — CVSS 6.1 (medium): When you visit a page where you need to login, Plone 2.5-5.1rc1 sends you to the login form with a 'came_from' parameter set to the…
CVE-2016-7136 — CVSS 6.1 (medium): z3c.form in Plone CMS 5.x through 5.0.6 and 4.x through 4.3.11 allows remote attackers to conduct cross-site scripting (XSS) attacks via a…
CVE-2016-7147 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in the manage_findResult component in the search feature in Zope ZMI in Plone before 4.3.12 and…
CVE-2015-7316 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in Plone 3.3.0 through 3.3.6, 4.0.0 through 4.0.10, 4.1.0 through 4.1.6, 4.2.0 through 4.2.7…
CVE-2016-7140 — CVSS 6.1 (medium): Multiple cross-site scripting (XSS) vulnerabilities in the ZMI page in Zope2 in Plone CMS 5.x through 5.0.6, 4.x through 4.3.11, and 3.3.x…
CVE-2016-7138 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in the URL checking infrastructure in Plone CMS 5.x through 5.0.6, 4.x through 4.3.11, and 3.3.x…
CVE-2017-1000484 — CVSS 6.1 (medium): By linking to a specific url in Plone 2.5-5.1rc1 with a parameter, an attacker could send you to his own website. On its own this is not so…
CVE-2020-7936 — CVSS 6.1 (medium): An open redirect on the login form (and possibly other places) in Plone 4.0 through 5.2.1 allows an attacker to craft a link to a Plone…
CVE-2013-7062 — CVSS 6.1 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Zope, as used in Plone 3.3.x through 3.3.6, 4.0.x through 4.0.9, 4.1.x through…
CVE-2021-33507 — CVSS 6.1 (medium): Zope Products.CMFCore before 2.5.1 and Products.PluggableAuthService before 2.6.2, as used in Plone through 5.2.4 and other products, allow…
CVE-2016-7139 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in an unspecified page template in Plone CMS 5.x through 5.0.6, 4.x through 4.3.11, and 3.3.x…
CVE-2015-7315 — CVSS 5.9 (medium): Plone 3.3.0 through 3.3.6, 4.0.0 through 4.0.10, 4.1.0 through 4.1.6, 4.2.0 through 4.2.7, 4.3.0 through 4.3.6, and 5.0rc1 allows remote…
CVE-2013-4200 — CVSS 5.8 (medium): The isURLInPortal method in the URLTool class in in_portal.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 treats…
CVE-2013-4191 — CVSS 5.8 (medium): zip.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 does not properly enforce access restrictions when including…
CVE-2013-4195 — CVSS 5.8 (medium): Multiple open redirect vulnerabilities in (1) marmoset_patch.py, (2) publish.py, and (3) principiaredirect.py in Plone 2.1 through 4.1…
CVE-2013-4197 — CVSS 5.5 (medium): member_portrait.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allows remote authenticated users to modify or…
CVE-2013-7061 — CVSS 5.5 (medium): Products/CMFPlone/CatalogTool.py in Plone 3.3 through 4.3.2 allows remote administrators to bypass restrictions and obtain sensitive…
CVE-2011-1950 — CVSS 5.5 (medium): plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified…
CVE-2021-33512 — CVSS 5.4 (medium): Plone through 5.2.4 allows stored XSS attacks (by a Contributor) by uploading an SVG or HTML document.
CVE-2021-35959 — CVSS 5.4 (medium): In Plone 5.0 through 5.2.4, Editors are vulnerable to XSS in the folder contents view, if a Contributor has created a folder with a SCRIPT…
CVE-2017-1000482 — CVSS 5.4 (medium): A member of the Plone 2.5-5.1rc1 site could set javascript in the home_page property of his profile, and have this executed when a visitor…
CVE-2021-33508 — CVSS 5.4 (medium): Plone through 5.2.4 allows XSS via a full name that is mishandled during rendering of the ownership tab of a content item.
CVE-2021-3313 — CVSS 5.4 (medium): Plone CMS until version 5.2.4 has a stored Cross-Site Scripting (XSS) vulnerability in the user fullname property and the file upload…
CVE-2021-29002 — CVSS 5.4 (medium): A stored cross-site scripting (XSS) vulnerability in Plone CMS 5.2.3 exists in site-controlpanel via the "form.widgets.site_title"…
CVE-2020-7937 — CVSS 5.4 (medium): An XSS issue in the title field in Plone 5.0 through 5.2.1 allows users with a certain privilege level to insert JavaScript that will be…
CVE-2016-4042 — CVSS 5.3 (medium): Plone 3.3 through 5.1a1 allows remote attackers to obtain information about the ID of sensitive content via unspecified vectors.
CVE-2006-1711 — CVSS 5.0 (medium): Plone 2.0.5, 2.1.2, and 2.5-beta1 does not restrict access to the (1) changeMemberPortrait, (2) deletePersonalPortrait, and (3)…
CVE-2011-4462 — CVSS 5.0 (medium): Plone 4.1.3 and earlier computes hash values for form parameters without restricting the ability to trigger hash collisions predictably…
CVE-2012-5488 — CVSS 5.0 (medium): python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to execute Python code via a crafted URL, related to…
CVE-2012-5492 — CVSS 5.0 (medium): uid_catalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to obtain metadata about hidden objects via a crafted…
CVE-2012-5495 — CVSS 5.0 (medium): python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to execute Python code via a crafted URL, related to…
CVE-2012-5496 — CVSS 5.0 (medium): kupu_spellcheck.py in Kupu in Plone before 4.0 allows remote attackers to cause a denial of service (ZServer thread lock) via a crafted URL.
CVE-2012-5497 — CVSS 5.0 (medium): membership_tool.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to enumerate user account names via a crafted URL.
CVE-2012-5498 — CVSS 5.0 (medium): queryCatalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to bypass caching and cause a denial of service via a…
CVE-2012-5499 — CVSS 5.0 (medium): python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to cause a denial of service (memory consumption) via…
CVE-2012-5501 — CVSS 5.0 (medium): at_download.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to read arbitrary BLOBs (Files and Images) stored on…
CVE-2012-5503 — CVSS 5.0 (medium): ftp.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to read hidden folder contents via unspecified vectors.
CVE-2012-5505 — CVSS 5.0 (medium): atat.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to read private data structures via a request for a view…
CVE-2012-5506 — CVSS 5.0 (medium): python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to cause a denial of service (infinite loop) via an…
CVE-2012-5508 — CVSS 5.0 (medium): The error pages in Plone before 4.2.3 and 4.3 before beta 1 allow remote attackers to obtain random numbers and derive the PRNG state for…
CVE-2012-6661 — CVSS 5.0 (medium): Zope before 2.13.19, as used in Plone before 4.2.3 and 4.3 before beta 1, does not reseed the pseudo-random number generator (PRNG), which…
CVE-2013-4196 — CVSS 5.0 (medium): The object manager implementation (objectmanager.py) in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 does not…
CVE-2013-7060 — CVSS 5.0 (medium): Products/CMFPlone/FactoryTool.py in Plone 3.3 through 4.3.2 allows remote attackers to obtain the installation path via vectors related to…
CVE-2016-4043 — CVSS 4.9 (medium): Chameleon (five.pt) in Plone 5.0rc1 through 5.1a1 allows remote authenticated users to bypass Restricted Python by leveraging permissions…
CVE-2016-7135 — CVSS 4.9 (medium): Directory traversal vulnerability in Plone CMS 5.x through 5.0.6 and 4.2.x through 4.3.11 allows remote administrators to read arbitrary…
CVE-2017-5524 — CVSS 4.3 (medium): Plone 4.x through 4.3.11 and 5.x through 5.0.6 allow remote attackers to bypass a sandbox protection mechanism and obtain sensitive…
CVE-2011-1340 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in skins/plone_templates/default_error_message.pt in Plone before 2.5.3 allows remote attackers to…
CVE-2022-23599 — CVSS 4.3 (medium): Products.ATContentTypes are the core content types for Plone 2.1 - 4.3. Versions of Plone that are dependent on Products.ATContentTypes…
CVE-2010-2422 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in PortalTransforms in Plone 2.1 through 3.3.4 before hotfix 20100612 allows remote attackers to…
CVE-2008-4571 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the LiveSearch module in Plone before 3.0.4 allows remote attackers to inject arbitrary web…
CVE-2006-4249 — CVSS 4.3 (medium): Unspecified vulnerability in PlonePAS in Plone 2.5 and 2.5.1, when anonymous member registration is enabled, allows an attacker to…
CVE-2013-4194 — CVSS 4.3 (medium): The WYSIWYG component (wysiwyg.py) in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allows remote attackers to obtain…
CVE-2013-4193 — CVSS 4.3 (medium): typeswidget.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 does not properly enforce the immutable setting on…
CVE-2013-4190 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in (1) spamProtect.py, (2) pts.py, and (3) request.py in Plone 2.1 through 4.1, 4.2.x…
CVE-2013-4188 — CVSS 4.3 (medium): traverser.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allows remote attackers with administrator privileges…
CVE-2012-5507 — CVSS 4.3 (medium): AccessControl/AuthEncoding.py in Zope before 2.13.19, as used in Plone before 4.2.3 and 4.3 before beta 1, allows remote attackers to…
CVE-2012-5504 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in widget_traversal.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to…
CVE-2012-5500 — CVSS 4.3 (medium): The batch id change script (renameObjectsByPaths.py) in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to change the…
CVE-2012-5494 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to inject…
CVE-2021-33510 — CVSS 4.3 (medium): Plone through 5.2.4 allows remote authenticated managers to conduct SSRF attacks via an event ical URL, to read one line of a file.
CVE-2012-5491 — CVSS 4.3 (medium): z3c.form, as used in Plone before 4.2.3 and 4.3 before beta 1, allows remote attackers to obtain the default form field values by…
CVE-2012-5490 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in kssdevel.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to inject…
CVE-2011-1948 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Plone 4.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a…
CVE-2013-4198 — CVSS 4.0 (medium): mail_password.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allows remote authenticated users to bypass the…
CVE-2013-4192 — CVSS 4.0 (medium): sendto.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allows remote authenticated users to spoof emails via…
CVE-2013-4199 — CVSS 3.5 (low): (1) cb_decode.py and (2) linkintegrity.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allow remote authenticated…
CVE-2012-5502 — CVSS 3.5 (low): Cross-site scripting (XSS) vulnerability in safe_html.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote authenticated users with…
CVE-2011-1949 — CVSS 3.5 (low): Cross-site scripting (XSS) vulnerability in the safe_html filter in Products.PortalTransforms in Plone 2.1 through 4.1 allows remote…