oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE Request: Plone Privilege Escalation

From: cve-assign () mitre org
Date: Tue, 22 Sep 2015 16:59:02 -0400 (EDT)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256


https://plone.org/security/20150910/privilege-escalation-in-kupu



An incorrect security declaration would allow any authenticated user to
edit kupu settings


Use CVE-2015-7317.

- -- 
CVE assignment team, MITRE CVE Numbering Authority
M/S M300
202 Burlington Road, Bedford, MA 01730 USA
[ PGP key available through http://cve.mitre.org/cve/request_id.html ]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=kqJZ
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: