Remote Code Execution in registerConfiglet.py in Plone

Remote Code Execution in registerConfiglet.py in Plone

CVE-2012-5485 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

registerConfiglet.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to execute Python code via unspecified vectors, related to the admin interface.

Learn more about our Web Application Penetration Testing UK.