Vulnerabilities > Plone > Plonepas > Medium

DATE CVE VULNERABILITY TITLE RISK
2009-04-23 CVE-2009-0662 Improper Authentication vulnerability in Plone Plonepas
The PlonePAS product 3.x before 3.9 and 3.2.x before 3.2.2, a product for Plone, does not properly handle the login form, which allows remote authenticated users to acquire the identity of an arbitrary user via unspecified vectors.
network
plone CWE-287
6.0