CVE-2016-7147: XSS
First published: Sat Feb 04 2017(Updated: )
Cross-site scripting (XSS) vulnerability in the manage_findResult component in the search feature in Zope ZMI in Plone before 4.3.12 and 5.x before 5.0.7 allows remote attackers to inject arbitrary web script or HTML via vectors involving double quotes, as demonstrated by the `obj_ids:tokens` parameter. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-7140.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| pip/plone | >=5.0<=5.0.6 | 5.0.7 |
| pip/plone | >=4.0<=4.3.11 | 4.3.12 |
| Plone CMS | =2.5.5 | |
| Plone CMS | =3.3 | |
| Plone CMS | =3.3.1 | |
| Plone CMS | =3.3.2 | |
| Plone CMS | =3.3.3 | |
| Plone CMS | =3.3.4 | |
| Plone CMS | =3.3.5 | |
| Plone CMS | =3.3.6 | |
| Plone CMS | =4.0 | |
| Plone CMS | =4.0.1 | |
| Plone CMS | =4.0.2 | |
| Plone CMS | =4.0.3 | |
| Plone CMS | =4.0.4 | |
| Plone CMS | =4.0.5 | |
| Plone CMS | =4.0.7 | |
| Plone CMS | =4.0.8 | |
| Plone CMS | =4.0.9 | |
| Plone CMS | =4.0.10 | |
| Plone CMS | =4.1 | |
| Plone CMS | =4.1.1 | |
| Plone CMS | =4.1.2 | |
| Plone CMS | =4.1.3 | |
| Plone CMS | =4.1.4 | |
| Plone CMS | =4.1.5 | |
| Plone CMS | =4.1.6 | |
| Plone CMS | =4.2 | |
| Plone CMS | =4.2.1 | |
| Plone CMS | =4.2.2 | |
| Plone CMS | =4.2.3 | |
| Plone CMS | =4.2.4 | |
| Plone CMS | =4.2.5 | |
| Plone CMS | =4.2.6 | |
| Plone CMS | =4.2.7 | |
| Plone CMS | =4.3 | |
| Plone CMS | =4.3.1 | |
| Plone CMS | =4.3.2 | |
| Plone CMS | =4.3.3 | |
| Plone CMS | =4.3.4 | |
| Plone CMS | =4.3.5 | |
| Plone CMS | =4.3.6 | |
| Plone CMS | =4.3.7 | |
| Plone CMS | =4.3.8 | |
| Plone CMS | =4.3.9 | |
| Plone CMS | =4.3.10 | |
| Plone CMS | =4.3.11 | |
| Plone CMS | =5.0 | |
| Plone CMS | =5.0-rc1 | |
| Plone CMS | =5.0-rc2 | |
| Plone CMS | =5.0-rc3 | |
| Plone CMS | =5.0.1 | |
| Plone CMS | =5.0.2 | |
| Plone CMS | =5.0.3 | |
| Plone CMS | =5.0.4 | |
| Plone CMS | =5.0.5 | |
| Plone CMS | =5.0.6 | |
| Plone CMS | =5.1-a1 | |
| Plone CMS | =5.1-a2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/96117
- https://plone.org/security/hotfix/20170117
- https://plone.org/security/hotfix/20170117/non-persistent-xss-in-zope2
- https://www.curesec.com/blog/article/blog/Plone-XSS-186.html
- https://nvd.nist.gov/vuln/detail/CVE-2016-7147
- https://web.archive.org/web/20170214002551/http://www.securityfocus.com/bid/96117
- https://github.com/advisories/GHSA-84jm-cpc5-c7g7 (Advisory)
- https://github.com/pypa/advisory-database/tree/main/vulns/plone/PYSEC-2017-64.yaml
- http://www.curesec.com/blog/article/blog/Plone-XSS-186.html
Frequently Asked Questions
What is the severity of CVE-2016-7147?
CVE-2016-7147 is classified as a moderate severity vulnerability due to its ability to enable cross-site scripting attacks.
How do I fix CVE-2016-7147?
To fix CVE-2016-7147, upgrade to Plone version 4.3.12 or 5.0.7 or later.
What types of attacks can CVE-2016-7147 enable?
CVE-2016-7147 can enable remote attackers to inject arbitrary web scripts or HTML, leading to potential phishing or malware attacks.
What versions of Plone are affected by CVE-2016-7147?
CVE-2016-7147 affects Plone versions prior to 4.3.12 and 5.x prior to 5.0.7.
Is CVE-2016-7147 a persistent or non-persistent XSS vulnerability?
CVE-2016-7147 is classified as a non-persistent XSS vulnerability.
- agent/type
- agent/remedy
- agent/severity
- agent/description
- agent/author
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/first-publish-date
- agent/event
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-84jm-cpc5-c7g7
- alias/CVE-2016-7147
- agent/software-canonical-lookup
- agent/references
- agent/last-modified-date
- collector/github-advisory
- agent/trending
- agent/source
- agent/tags
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/weakness
- package-manager/pip
- vendor/plone
- canonical/plone cms
- version/plone cms/2.5.5
- version/plone cms/3.3
- version/plone cms/3.3.1
- version/plone cms/3.3.2
- version/plone cms/3.3.3
- version/plone cms/3.3.4
- version/plone cms/3.3.5
- version/plone cms/3.3.6
- version/plone cms/4.0
- version/plone cms/4.0.1
- version/plone cms/4.0.2
- version/plone cms/4.0.3
- version/plone cms/4.0.4
- version/plone cms/4.0.5
- version/plone cms/4.0.7
- version/plone cms/4.0.8
- version/plone cms/4.0.9
- version/plone cms/4.0.10
- version/plone cms/4.1
- version/plone cms/4.1.1
- version/plone cms/4.1.2
- version/plone cms/4.1.3
- version/plone cms/4.1.4
- version/plone cms/4.1.5
- version/plone cms/4.1.6
- version/plone cms/4.2
- version/plone cms/4.2.1
- version/plone cms/4.2.2
- version/plone cms/4.2.3
- version/plone cms/4.2.4
- version/plone cms/4.2.5
- version/plone cms/4.2.6
- version/plone cms/4.2.7
- version/plone cms/4.3
- version/plone cms/4.3.1
- version/plone cms/4.3.2
- version/plone cms/4.3.3
- version/plone cms/4.3.4
- version/plone cms/4.3.5
- version/plone cms/4.3.6
- version/plone cms/4.3.7
- version/plone cms/4.3.8
- version/plone cms/4.3.9
- version/plone cms/4.3.10
- version/plone cms/4.3.11
- version/plone cms/5.0
- version/plone cms/5.0-rc1
- version/plone cms/5.0-rc2
- version/plone cms/5.0-rc3
- version/plone cms/5.0.1
- version/plone cms/5.0.2
- version/plone cms/5.0.3
- version/plone cms/5.0.4
- version/plone cms/5.0.5
- version/plone cms/5.0.6
- version/plone cms/5.1-a1
- version/plone cms/5.1-a2