CVE-2011-0720

Published: Feb 3, 2011Modified: Apr 29, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Unspecified vulnerability in Plone 2.5 through 4.0, as used in Conga, luci, and possibly other products, allows remote attackers to obtain administrative access, read or create arbitrary content, and change the site skin via unknown vectors.

Affected (34)

Products: Plone: Plone · Redhat: Conga, Luci

1 product

2 products

Configuration A

34 vulnerable

Vulnerable Software	Affected Versions
Plone Plone	Version 2.5.1
Plone Plone	Version 2.5.2
Plone Plone	Version 2.5.3
Plone Plone	Version 2.5.4
Plone Plone	Version 2.5.5
Plone Plone	Version 2.5
Plone Plone	Version 3.0.1
Plone Plone	Version 3.0.2
Plone Plone	Version 3.0.3
Plone Plone	Version 3.0.4
Plone Plone	Version 3.0.5
Plone Plone	Version 3.0.6
Plone Plone	Version 3.0
Plone Plone	Version 3.1.1
Plone Plone	Version 3.1.2
Plone Plone	Version 3.1.3
Plone Plone	Version 3.1.4
Plone Plone	Version 3.1.5.1
Plone Plone	Version 3.1.6
Plone Plone	Version 3.1.7
Plone Plone	Version 3.1
Plone Plone	Version 3.2.1
Plone Plone	Version 3.2.2
Plone Plone	Version 3.2.3
Plone Plone	Version 3.2
Plone Plone	Version 3.3.1
Plone Plone	Version 3.3.2
Plone Plone	Version 3.3.3
Plone Plone	Version 3.3.4
Plone Plone	Version 3.3.5
Plone Plone	Version 3.3
Plone Plone	Version 4.0
Redhat Conga	All versions
Redhat Luci	All versions

References (20)

http://osvdb.org/70753

Source: cve@mitre.org

http://plone.org/products/plone/security/advisories/cve-2011-0720

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/43146

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/43914

Source: cve@mitre.org

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2011-0393.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2011-0394.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/46102

Source: cve@mitre.org

http://www.securitytracker.com/id?1025258

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2011/0796

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/65099

Source: cve@mitre.org

http://osvdb.org/70753

Source: af854a3a-2127-422b-91ae-364da2661108

http://plone.org/products/plone/security/advisories/cve-2011-0720

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/43146

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/43914

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2011-0393.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2011-0394.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/46102

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1025258

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2011/0796

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/65099

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.