CVE-2020-7938

Source
https://nvd.nist.gov/vuln/detail/CVE-2020-7938
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-7938.json
Aliases
Published
2020-01-23T21:15:13Z
Modified
2023-11-29T08:35:47.865940Z
Details

plone.restapi in Plone 5.2.0 through 5.2.1 allows users with a certain privilege level to escalate their privileges up to the highest level.

References

Affected packages

Git / github.com/plone/plone

Affected ranges

Type
GIT
Repo
https://github.com/plone/plone
Events
Introduced
134fa3b3d9c0f02e30beb86c6259436d0fdfc33b
Last affected
0bbf455c2dbae410102dc34522bbba97e6003bd7
Type
GIT
Repo
https://github.com/plone/plone.namedfile
Events
Introduced
83859f4fef7615b698d8bb7cc722cffb9377ec9c
Last affected
e26f4f1da7426788f395b81e6607ac759956ad30

Affected versions

5.*

5.2.0
5.2.1