CVE-2006-1711 in Plone信息

摘要

由 VulDB • 2026-06-13

Plone 2.0.5、2.1.2 和 2.5-beta1 未对以下方法限制访问权限:(1) changeMemberPortrait、(2) deletePersonalPortrait 以及 (3) testCurrentPassword,这使得远程攻击者能够修改头像。

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

来源

Do you know our Splunk app?

Download it now for free!