PYSEC-2020-87
See a problem?- Import Source
- https://github.com/pypa/advisory-database/blob/main/vulns/plone/PYSEC-2020-87.yaml
- JSON Data
- https://api.osv.dev/v1/vulns/PYSEC-2020-87
- Aliases
- Published
- 2020-01-23T21:15:00Z
- Modified
- 2026-06-10T17:01:35.197098853Z
- Summary
- [none]
- Details
-
plone.restapi in Plone 5.2.0 through 5.2.1 allows users with a certain privilege level to escalate their privileges up to the highest level.
- References
-
- https://plone.org/security/hotfix/20200121
- https://plone.org/security/hotfix/20200121/privilege-escalation-when-plone-restapi-is-installed
- https://www.openwall.com/lists/oss-security/2020/01/22/1
- http://www.openwall.com/lists/oss-security/2020/01/24/1
- https://github.com/advisories/GHSA-cjg3-q24h-9qwf
Affected packages
PyPI / plone
Package
- Name
- plone
- View open source insights on deps.dev
- Purl
- pkg:pypi/plone