CVE-2016-7137
First published: Tue Mar 07 2017(Updated: )
Multiple open redirect vulnerabilities in Plone CMS 5.x through 5.0.6, 4.x through 4.3.11, and 3.3.x through 3.3.6 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the referer parameter to (1) %2b%2bgroupdashboard%2b%2bplone.dashboard1%2bgroup/%2b/portlets.Actions or (2) folder/%2b%2bcontextportlets%2b%2bplone.footerportlets/%2b /portlets.Actions or the (3) came_from parameter to /login_form.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| pip/plone | >=3.3<=3.3.6 | |
| pip/plone | >=4.0<=4.3.11 | |
| pip/plone | >=5.0<=5.0.6 | |
| Plone CMS | =3.3 | |
| Plone CMS | =3.3.1 | |
| Plone CMS | =3.3.2 | |
| Plone CMS | =3.3.3 | |
| Plone CMS | =3.3.4 | |
| Plone CMS | =3.3.5 | |
| Plone CMS | =3.3.6 | |
| Plone CMS | =4.0 | |
| Plone CMS | =4.0.1 | |
| Plone CMS | =4.0.2 | |
| Plone CMS | =4.0.3 | |
| Plone CMS | =4.0.4 | |
| Plone CMS | =4.0.5 | |
| Plone CMS | =4.0.7 | |
| Plone CMS | =4.0.8 | |
| Plone CMS | =4.0.9 | |
| Plone CMS | =4.0.10 | |
| Plone CMS | =4.1 | |
| Plone CMS | =4.1.1 | |
| Plone CMS | =4.1.2 | |
| Plone CMS | =4.1.3 | |
| Plone CMS | =4.1.4 | |
| Plone CMS | =4.1.5 | |
| Plone CMS | =4.1.6 | |
| Plone CMS | =4.2 | |
| Plone CMS | =4.2.1 | |
| Plone CMS | =4.2.2 | |
| Plone CMS | =4.2.3 | |
| Plone CMS | =4.2.4 | |
| Plone CMS | =4.2.5 | |
| Plone CMS | =4.2.6 | |
| Plone CMS | =4.2.7 | |
| Plone CMS | =4.3 | |
| Plone CMS | =4.3.1 | |
| Plone CMS | =4.3.2 | |
| Plone CMS | =4.3.3 | |
| Plone CMS | =4.3.4 | |
| Plone CMS | =4.3.5 | |
| Plone CMS | =4.3.6 | |
| Plone CMS | =4.3.7 | |
| Plone CMS | =4.3.8 | |
| Plone CMS | =4.3.9 | |
| Plone CMS | =4.3.10 | |
| Plone CMS | =4.3.11 | |
| Plone CMS | =5.0 | |
| Plone CMS | =5.0-a1 | |
| Plone CMS | =5.0-rc1 | |
| Plone CMS | =5.0-rc2 | |
| Plone CMS | =5.0-rc3 | |
| Plone CMS | =5.0.1 | |
| Plone CMS | =5.0.2 | |
| Plone CMS | =5.0.3 | |
| Plone CMS | =5.0.4 | |
| Plone CMS | =5.0.5 | |
| Plone CMS | =5.0.6 | |
| Plone CMS | =5.1a1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://packetstormsecurity.com/files/139110/Plone-CMS-4.3.11-5.0.6-XSS-Traversal-Open-Redirection.html
- http://seclists.org/fulldisclosure/2016/Oct/80
- http://www.openwall.com/lists/oss-security/2016/09/05/4
- http://www.openwall.com/lists/oss-security/2016/09/05/5
- http://www.securityfocus.com/archive/1/539572/100/0/threaded
- http://www.securityfocus.com/bid/92752
- https://plone.org/security/hotfix/20160830/open-redirection-in-plone
- https://nvd.nist.gov/vuln/detail/CVE-2016-7137
- https://web.archive.org/web/20210625091607/http://www.securityfocus.com/bid/92752
- https://web.archive.org/web/20210625092107/http://www.securityfocus.com/archive/1/539572/100/0/threaded
- https://github.com/advisories/GHSA-69vh-662j-v988 (Advisory)
- https://github.com/pypa/advisory-database/tree/main/vulns/plone/PYSEC-2017-60.yaml
Frequently Asked Questions
What is the severity of CVE-2016-7137?
The severity of CVE-2016-7137 is classified as medium, as it allows open redirection vulnerabilities that can facilitate phishing attacks.
How do I fix CVE-2016-7137?
To patch CVE-2016-7137, update Plone CMS to version 5.0.7 or later, or 4.3.12 or later.
Which versions are affected by CVE-2016-7137?
CVE-2016-7137 affects Plone CMS versions 5.0.6 and earlier, 4.3.11 and earlier, and 3.3.6 and earlier.
What are the implications of CVE-2016-7137?
The implications of CVE-2016-7137 include the potential for attackers to redirect users to malicious websites.
What type of vulnerability is CVE-2016-7137?
CVE-2016-7137 is categorized as an open redirect vulnerability.
- agent/author
- agent/type
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/description
- agent/first-publish-date
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-69vh-662j-v988
- alias/CVE-2016-7137
- agent/software-canonical-lookup
- agent/references
- agent/last-modified-date
- agent/softwarecombine
- agent/event
- collector/github-advisory
- agent/trending
- agent/source
- agent/tags
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-index
- package-manager/pip
- vendor/plone
- canonical/plone cms
- version/plone cms/3.3
- version/plone cms/3.3.1
- version/plone cms/3.3.2
- version/plone cms/3.3.3
- version/plone cms/3.3.4
- version/plone cms/3.3.5
- version/plone cms/3.3.6
- version/plone cms/4.0
- version/plone cms/4.0.1
- version/plone cms/4.0.2
- version/plone cms/4.0.3
- version/plone cms/4.0.4
- version/plone cms/4.0.5
- version/plone cms/4.0.7
- version/plone cms/4.0.8
- version/plone cms/4.0.9
- version/plone cms/4.0.10
- version/plone cms/4.1
- version/plone cms/4.1.1
- version/plone cms/4.1.2
- version/plone cms/4.1.3
- version/plone cms/4.1.4
- version/plone cms/4.1.5
- version/plone cms/4.1.6
- version/plone cms/4.2
- version/plone cms/4.2.1
- version/plone cms/4.2.2
- version/plone cms/4.2.3
- version/plone cms/4.2.4
- version/plone cms/4.2.5
- version/plone cms/4.2.6
- version/plone cms/4.2.7
- version/plone cms/4.3
- version/plone cms/4.3.1
- version/plone cms/4.3.2
- version/plone cms/4.3.3
- version/plone cms/4.3.4
- version/plone cms/4.3.5
- version/plone cms/4.3.6
- version/plone cms/4.3.7
- version/plone cms/4.3.8
- version/plone cms/4.3.9
- version/plone cms/4.3.10
- version/plone cms/4.3.11
- version/plone cms/5.0
- version/plone cms/5.0-a1
- version/plone cms/5.0-rc1
- version/plone cms/5.0-rc2
- version/plone cms/5.0-rc3
- version/plone cms/5.0.1
- version/plone cms/5.0.2
- version/plone cms/5.0.3
- version/plone cms/5.0.4
- version/plone cms/5.0.5
- version/plone cms/5.0.6
- version/plone cms/5.1a1