Vulnerabilities > CVE-2012-5506 - Resource Management Errors vulnerability in Plone

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
plone
CWE-399
NVD
Published: 2014-09-30
Updated: 2024-11-21

Summary

python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to cause a denial of service (infinite loop) via an RSS feed request for a folder the user does not have permission to access.

Vulnerable Configurations

Part Description Count
Application
Plone
86

Common Weakness Enumeration (CWE)

References