Vulnerability detail
Enriched intelligence for a single CVE
Medium
CVE-2011-1950
PUBLISHEDplone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified vectors, as...
- Vendor
- Plone
- Product
- Plone
- Published
- Jun 06, 2011
- EPSS
- —
Automate this intelligence with the Pro API
Everything on this page — CVSS, EPSS, exploit status, PoCs, scanner integrations, mentions, tags, and immediate honeypot data — is available programmatically for VM, SOC, and CTI workflows.
Description
plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified vectors, as exploited in the wild in June 2011.
CVSS scores
AV:N/AC:L/Au:S/C:N/I:P/A:P
Exploitation status
Exploited in the wild
Recorded 2011-06-06 19:00:00 UTC · CVE
References
- http://secunia.com/advisories/44775
- http://www.securityfocus.com/bid/48005
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67695
- http://osvdb.org/72729
- http://securityreason.com/securityalert/8269
- http://plone.org/products/plone/security/advisories/CVE-2011-1950
- http://www.securityfocus.com/archive/1/518155/100/0/threaded
Known exploited vulnerability sources
Catalogues that list this CVE as a known exploited vulnerability.
| Source | Added |
|---|---|
| CVE First | 2011-06-06 19:00 UTC |
Timeline
-
CVE ID Reserved
-
CVE Published to Public
-
Added to KEVIntel