Plone CMS <= 5.2.4 Multiple Vulnerabilities CVE-2021-3313CVE-2021-21360CVE-2021-21336CVE-2021-32633CVE-2021-33507CVE-2021-33508CVE-2021-33509CVE-2021-33510CVE-2021-33511CVE-2021-33512CVE-2021-33513

Name: Plone CMS <= 5.2.4 Multiple Vulnerabilities (CVE-2021-3313, CVE-2021-21360, CVE-2021-21336, CVE-2021-32633, CVE-2021-33507, CVE-2021-33508, CVE-2021-33509, CVE-2021-33510, CVE-2021-33511, CVE-2021-33512, CVE-2021-33513)
Published: 2021-05-27T00:00:00.000Z

Severity

Vulnerability description: Not available
Risk description: Not available
Recommendation: Not available
References: https://plone.org/security/hotfix/20210518 https://www.openwall.com/lists/oss-security/2021/05/22/1 https://www.compass-security.com/fileadmin/Research/Advisories/2021-07_CSNC-2021-013_XSS_in_Plone_CMS.txt https://plone.org/security/hotfix/20210518/writing-arbitrary-files-via-docutils-and-python-script https://plone.org/security/hotfix/20210518/server-side-request-forgery-via-event-ical-url https://plone.org/security/hotfix/20210518/stored-xss-from-file-upload-svg-html https://plone.org/security/hotfix/20210518/server-side-request-forgery-via-lxml-parser https://plone.org/security/hotfix/20210518/xss-vulnerability-in-cmfdifftool https://plone.org/security/hotfix/20210518/stored-xss-from-user-fullname
Codename: Not available

Detectable with: Network Scanner
Scan engine: OpenVAS
Exploitable with Sniper: No
CVE Published: Not available
Detection added at: May 27, 2021
Software Type: Not available
Vendor: Not available
Product: Not available

Detect this vulnerability now!

Check your clients' targets (or your own) for this vulnerability and thousands more! Get proof for validation with our ethical hacking toolkit.

Compare paid plans Free access