Plone » Plone » 4.0 : Security Vulnerabilities, CVEs, Published In 2011 (Denial of service) CVSS score >= 3
Plone 4.1.3 and earlier computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
Max CVSS
5.0
EPSS Score
1.87%
Published
2011-12-30
Updated
2017-08-29
1 vulnerabilities found