CVE Vulnerabilities

CVE-2013-7061

Published: May 02, 2014 | Modified: Apr 12, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5.5 MEDIUM
AV:N/AC:L/Au:S/C:P/I:P/A:N
RedHat/V2
2.6 LOW
AV:N/AC:H/Au:N/C:P/I:N/A:N
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

Products/CMFPlone/CatalogTool.py in Plone 3.3 through 4.3.2 allows remote administrators to bypass restrictions and obtain sensitive information via an unspecified search API.

Affected Software

Name Vendor Start Version End Version
Plone Plone 3.3 (including) 3.3 (including)
Plone Plone 3.3.1 (including) 3.3.1 (including)
Plone Plone 3.3.2 (including) 3.3.2 (including)
Plone Plone 3.3.3 (including) 3.3.3 (including)
Plone Plone 3.3.4 (including) 3.3.4 (including)
Plone Plone 3.3.5 (including) 3.3.5 (including)
Plone Plone 3.3.6 (including) 3.3.6 (including)
Plone Plone 4.0 (including) 4.0 (including)
Plone Plone 4.0.1 (including) 4.0.1 (including)
Plone Plone 4.0.2 (including) 4.0.2 (including)
Plone Plone 4.0.3 (including) 4.0.3 (including)
Plone Plone 4.0.4 (including) 4.0.4 (including)
Plone Plone 4.0.5 (including) 4.0.5 (including)
Plone Plone 4.0.7 (including) 4.0.7 (including)
Plone Plone 4.0.9 (including) 4.0.9 (including)
Plone Plone 4.1 (including) 4.1 (including)
Plone Plone 4.1.1 (including) 4.1.1 (including)
Plone Plone 4.1.2 (including) 4.1.2 (including)
Plone Plone 4.1.3 (including) 4.1.3 (including)
Plone Plone 4.1.4 (including) 4.1.4 (including)
Plone Plone 4.1.5 (including) 4.1.5 (including)
Plone Plone 4.1.6 (including) 4.1.6 (including)
Plone Plone 4.2 (including) 4.2 (including)
Plone Plone 4.2.1 (including) 4.2.1 (including)
Plone Plone 4.2.2 (including) 4.2.2 (including)
Plone Plone 4.2.3 (including) 4.2.3 (including)
Plone Plone 4.2.4 (including) 4.2.4 (including)
Plone Plone 4.2.5 (including) 4.2.5 (including)
Plone Plone 4.2.6 (including) 4.2.6 (including)
Plone Plone 4.2.7 (including) 4.2.7 (including)
Plone Plone 4.3 (including) 4.3 (including)
Plone Plone 4.3.1 (including) 4.3.1 (including)
Plone Plone 4.3.2 (including) 4.3.2 (including)

References