First published: Thu Sep 29 2011(Updated: )
Unspecified vulnerability in Zope 2.12.x and 2.13.x, as used in Plone 4.0.x through 4.0.9, 4.1, and 4.2 through 4.2a2, allows remote attackers to execute arbitrary commands via vectors related to the `p_` class in `OFS/misc_.py` and the use of Python modules.
Credit: secalert@redhat.com secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
pip/zope2 | >=2.13.0<2.13.10 | 2.13.10 |
pip/zope2 | >=2.12.0<2.12.20 | 2.12.20 |
Plone Plone | =4.0 | |
Plone Plone | =4.0.1 | |
Plone Plone | =4.0.2 | |
Plone Plone | =4.0.3 | |
Plone Plone | =4.0.4 | |
Plone Plone | =4.0.5 | |
Plone Plone | =4.0.6.1 | |
Plone Plone | =4.0.7 | |
Plone Plone | =4.0.8 | |
Plone Plone | =4.0.9 | |
Plone Plone | =4.1 | |
Plone Plone | =4.2 | |
Plone Plone | =4.2a1 | |
Plone Plone | =4.2a2 | |
Zope Zope | =2.12.0 | |
Zope Zope | =2.12.0-a1 | |
Zope Zope | =2.12.0-a2 | |
Zope Zope | =2.12.0-a3 | |
Zope Zope | =2.12.0-a4 | |
Zope Zope | =2.12.0-b1 | |
Zope Zope | =2.12.0-b2 | |
Zope Zope | =2.12.0-b3 | |
Zope Zope | =2.12.0-b4 | |
Zope Zope | =2.12.1 | |
Zope Zope | =2.12.2 | |
Zope Zope | =2.12.3 | |
Zope Zope | =2.12.4 | |
Zope Zope | =2.12.5 | |
Zope Zope | =2.12.6 | |
Zope Zope | =2.12.7 | |
Zope Zope | =2.12.8 | |
Zope Zope | =2.12.9 | |
Zope Zope | =2.12.10 | |
Zope Zope | =2.12.11 | |
Zope Zope | =2.12.12 | |
Zope Zope | =2.12.13 | |
Zope Zope | =2.12.14 | |
Zope Zope | =2.12.15 | |
Zope Zope | =2.12.16 | |
Zope Zope | =2.12.17 | |
Zope Zope | =2.12.18 | |
Zope Zope | =2.12.19 | |
Zope Zope | =2.12.20 | |
Zope Zope | =2.13.0 | |
Zope Zope | =2.13.0-a1 | |
Zope Zope | =2.13.0-a2 | |
Zope Zope | =2.13.0-a3 | |
Zope Zope | =2.13.0-a4 | |
Zope Zope | =2.13.0-b1 | |
Zope Zope | =2.13.0-c1 | |
Zope Zope | =2.13.1 | |
Zope Zope | =2.13.2 | |
Zope Zope | =2.13.3 | |
Zope Zope | =2.13.4 | |
Zope Zope | =2.13.5 | |
Zope Zope | =2.13.6 | |
Zope Zope | =2.13.7 | |
Zope Zope | =2.13.8 | |
Zope Zope | =2.13.9 | |
Zope Zope | =2.13.10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.