Vulnerabilities

CVE-2013-4190

by Fred · 11/03/2014

Multiple cross-site scripting (XSS) vulnerabilities in (1) spamProtect.py, (2) pts.py, and (3) request.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Date published : 2014-03-11

http://plone.org/products/plone-hotfix/releases/20130618

http://plone.org/products/plone/security/advisories/20130618-announcement

Similar

Tags: Cybersecurity Alert