Vulnerability Details CVE-2011-1950
plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified vectors, as exploited in the wild in June 2011.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.2%
CVSS Severity
CVSS v2 Score 5.5
References
- http://osvdb.org/72729
- http://plone.org/products/plone/security/advisories/CVE-2011-1950
- http://secunia.com/advisories/44775
- http://securityreason.com/securityalert/8269
- http://www.securityfocus.com/archive/1/518155/100/0/threaded
- http://www.securityfocus.com/bid/48005
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67695
- http://osvdb.org/72729
- http://plone.org/products/plone/security/advisories/CVE-2011-1950
- http://secunia.com/advisories/44775
- http://securityreason.com/securityalert/8269
- http://www.securityfocus.com/archive/1/518155/100/0/threaded
- http://www.securityfocus.com/bid/48005
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67695