Plone » Plone » 4.1.5 : Security Vulnerabilities, CVEs, (Denial of service)

cpe:2.3:a:plone:plone:4.1.5:*:*:*:*:*:*:*

CVE-2012-5506

python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to cause a denial of service (infinite loop) via an RSS feed request for a folder the user does not have permission to access.
Max CVSS
5.0
EPSS Score
0.87%
Published
2014-09-30
Updated
2014-10-02

CVE-2012-5499

python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to cause a denial of service (memory consumption) via a large value, related to formatColumns.
Max CVSS
5.0
EPSS Score
1.28%
Published
2014-09-30
Updated
2023-02-13

CVE-2012-5498

queryCatalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to bypass caching and cause a denial of service via a crafted request to a collection.
Max CVSS
5.0
EPSS Score
2.03%
Published
2014-09-30
Updated
2023-02-13
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close