CVE-2016-7137
First published: Tue Mar 07 2017(Updated: )
Multiple open redirect vulnerabilities in Plone CMS 5.x through 5.0.6, 4.x through 4.3.11, and 3.3.x through 3.3.6 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the referer parameter to (1) %2b%2bgroupdashboard%2b%2bplone.dashboard1%2bgroup/%2b/portlets.Actions or (2) folder/%2b%2bcontextportlets%2b%2bplone.footerportlets/%2b /portlets.Actions or the (3) came_from parameter to /login_form.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Plone Plone | =3.3 | |
| Plone Plone | =3.3.1 | |
| Plone Plone | =3.3.2 | |
| Plone Plone | =3.3.3 | |
| Plone Plone | =3.3.4 | |
| Plone Plone | =3.3.5 | |
| Plone Plone | =3.3.6 | |
| Plone Plone | =4.0 | |
| Plone Plone | =4.0.1 | |
| Plone Plone | =4.0.2 | |
| Plone Plone | =4.0.3 | |
| Plone Plone | =4.0.4 | |
| Plone Plone | =4.0.5 | |
| Plone Plone | =4.0.7 | |
| Plone Plone | =4.0.8 | |
| Plone Plone | =4.0.9 | |
| Plone Plone | =4.0.10 | |
| Plone Plone | =4.1 | |
| Plone Plone | =4.1.1 | |
| Plone Plone | =4.1.2 | |
| Plone Plone | =4.1.3 | |
| Plone Plone | =4.1.4 | |
| Plone Plone | =4.1.5 | |
| Plone Plone | =4.1.6 | |
| Plone Plone | =4.2 | |
| Plone Plone | =4.2.1 | |
| Plone Plone | =4.2.2 | |
| Plone Plone | =4.2.3 | |
| Plone Plone | =4.2.4 | |
| Plone Plone | =4.2.5 | |
| Plone Plone | =4.2.6 | |
| Plone Plone | =4.2.7 | |
| Plone Plone | =4.3 | |
| Plone Plone | =4.3.1 | |
| Plone Plone | =4.3.2 | |
| Plone Plone | =4.3.3 | |
| Plone Plone | =4.3.4 | |
| Plone Plone | =4.3.5 | |
| Plone Plone | =4.3.6 | |
| Plone Plone | =4.3.7 | |
| Plone Plone | =4.3.8 | |
| Plone Plone | =4.3.9 | |
| Plone Plone | =4.3.10 | |
| Plone Plone | =4.3.11 | |
| Plone Plone | =5.0 | |
| Plone Plone | =5.0-a1 | |
| Plone Plone | =5.0-rc1 | |
| Plone Plone | =5.0-rc2 | |
| Plone Plone | =5.0-rc3 | |
| Plone Plone | =5.0.1 | |
| Plone Plone | =5.0.2 | |
| Plone Plone | =5.0.3 | |
| Plone Plone | =5.0.4 | |
| Plone Plone | =5.0.5 | |
| Plone Plone | =5.0.6 | |
| Plone Plone | =5.1a1 | |
| pip/plone | >=3.3<=3.3.6 | |
| pip/plone | >=4.0<=4.3.11 | |
| pip/plone | >=5.0<=5.0.6 | |
| =3.3 | ||
| =3.3.1 | ||
| =3.3.2 | ||
| =3.3.3 | ||
| =3.3.4 | ||
| =3.3.5 | ||
| =3.3.6 | ||
| =4.0 | ||
| =4.0.1 | ||
| =4.0.2 | ||
| =4.0.3 | ||
| =4.0.4 | ||
| =4.0.5 | ||
| =4.0.7 | ||
| =4.0.8 | ||
| =4.0.9 | ||
| =4.0.10 | ||
| =4.1 | ||
| =4.1.1 | ||
| =4.1.2 | ||
| =4.1.3 | ||
| =4.1.4 | ||
| =4.1.5 | ||
| =4.1.6 | ||
| =4.2 | ||
| =4.2.1 | ||
| =4.2.2 | ||
| =4.2.3 | ||
| =4.2.4 | ||
| =4.2.5 | ||
| =4.2.6 | ||
| =4.2.7 | ||
| =4.3 | ||
| =4.3.1 | ||
| =4.3.2 | ||
| =4.3.3 | ||
| =4.3.4 | ||
| =4.3.5 | ||
| =4.3.6 | ||
| =4.3.7 | ||
| =4.3.8 | ||
| =4.3.9 | ||
| =4.3.10 | ||
| =4.3.11 | ||
| =5.0 | ||
| =5.0-a1 | ||
| =5.0-rc1 | ||
| =5.0-rc2 | ||
| =5.0-rc3 | ||
| =5.0.1 | ||
| =5.0.2 | ||
| =5.0.3 | ||
| =5.0.4 | ||
| =5.0.5 | ||
| =5.0.6 | ||
| =5.1a1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://packetstormsecurity.com/files/139110/Plone-CMS-4.3.11-5.0.6-XSS-Traversal-Open-Redirection.html
- http://seclists.org/fulldisclosure/2016/Oct/80
- http://www.openwall.com/lists/oss-security/2016/09/05/4
- http://www.openwall.com/lists/oss-security/2016/09/05/5
- http://www.securityfocus.com/archive/1/539572/100/0/threaded
- http://www.securityfocus.com/bid/92752
- https://plone.org/security/hotfix/20160830/open-redirection-in-plone
- https://nvd.nist.gov/vuln/detail/CVE-2016-7137
- https://web.archive.org/web/20210625091607/http://www.securityfocus.com/bid/92752
- https://web.archive.org/web/20210625092107/http://www.securityfocus.com/archive/1/539572/100/0/threaded
- https://github.com/advisories/GHSA-69vh-662j-v988 (Advisory)
- https://github.com/pypa/advisory-database/tree/main/vulns/plone/PYSEC-2017-60.yaml
- collector/nvd-index
- agent/author
- agent/type
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/description
- agent/first-publish-date
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-69vh-662j-v988
- alias/CVE-2016-7137
- agent/software-canonical-lookup
- agent/references
- agent/last-modified-date
- agent/tags
- agent/softwarecombine
- agent/event
- collector/nvd-cve
- source/NVD
- collector/github-advisory
- vendor/plone
- canonical/plone plone
- version/plone plone/3.3
- version/plone plone/3.3.1
- version/plone plone/3.3.2
- version/plone plone/3.3.3
- version/plone plone/3.3.4
- version/plone plone/3.3.5
- version/plone plone/3.3.6
- version/plone plone/4.0
- version/plone plone/4.0.1
- version/plone plone/4.0.2
- version/plone plone/4.0.3
- version/plone plone/4.0.4
- version/plone plone/4.0.5
- version/plone plone/4.0.7
- version/plone plone/4.0.8
- version/plone plone/4.0.9
- version/plone plone/4.0.10
- version/plone plone/4.1
- version/plone plone/4.1.1
- version/plone plone/4.1.2
- version/plone plone/4.1.3
- version/plone plone/4.1.4
- version/plone plone/4.1.5
- version/plone plone/4.1.6
- version/plone plone/4.2
- version/plone plone/4.2.1
- version/plone plone/4.2.2
- version/plone plone/4.2.3
- version/plone plone/4.2.4
- version/plone plone/4.2.5
- version/plone plone/4.2.6
- version/plone plone/4.2.7
- version/plone plone/4.3
- version/plone plone/4.3.1
- version/plone plone/4.3.2
- version/plone plone/4.3.3
- version/plone plone/4.3.4
- version/plone plone/4.3.5
- version/plone plone/4.3.6
- version/plone plone/4.3.7
- version/plone plone/4.3.8
- version/plone plone/4.3.9
- version/plone plone/4.3.10
- version/plone plone/4.3.11
- version/plone plone/5.0
- version/plone plone/5.0-a1
- version/plone plone/5.0-rc1
- version/plone plone/5.0-rc2
- version/plone plone/5.0-rc3
- version/plone plone/5.0.1
- version/plone plone/5.0.2
- version/plone plone/5.0.3
- version/plone plone/5.0.4
- version/plone plone/5.0.5
- version/plone plone/5.0.6
- version/plone plone/5.1a1
- package-manager/pip