CVE-2015-7317 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2015-7317

Kupu 3.3.0 through 3.3.6, 4.0.0 through 4.0.10, 4.1.0 through 4.1.6, and 4.2.0 through 4.2.7 allows remote authenticated users to edit Kupu settings.

Published: Sep 25, 2017
Updated: Apr 13, 2023
CVE: CVE-2015-7317
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.8
AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

CVSS v2:

Severity: Low
Score: 4.9
AV:N/AC:M/Au:S/C:P/I:P/A:N

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
kupu_project / kupu	-	1.4.16.x
plone / plone	3.3	3.3.x
plone / plone	4.0.5	4.0.5.x
plone / plone	4.2.3	4.2.3.x
plone / plone	4.0.2	4.0.2.x
plone / plone	3.3.5	3.3.5.x
plone / plone	4.2.2	4.2.2.x
plone / plone	4.0.8	4.0.8.x
plone / plone	3.3.4	3.3.4.x
plone / plone	4.0.7	4.0.7.x
plone / plone	3.3.2	3.3.2.x
plone / plone	4.2.7	4.2.7.x
plone / plone	4.2.5	4.2.5.x
plone / plone	4.1.6	4.1.6.x
plone / plone	4.0.4	4.0.4.x
plone / plone	4.0.9	4.0.9.x
plone / plone	4.1.3	4.1.3.x
plone / plone	4.1	4.1.x
plone / plone	3.3.1	3.3.1.x
plone / plone	4.1.4	4.1.4.x
plone / plone	4.0.10	4.0.10.x
plone / plone	4.0	4.0.x
plone / plone	4.1.2	4.1.2.x
plone / plone	4.1.5	4.1.5.x
plone / plone	4.0.6.1	4.0.6.1.x
plone / plone	4.2.6	4.2.6.x
plone / plone	4.0.1	4.0.1.x
plone / plone	4.1.1	4.1.1.x
plone / plone	4.2.4	4.2.4.x
plone / plone	3.3.6	3.3.6.x
plone / plone	3.3.3	3.3.3.x
plone / plone	4.0.3	4.0.3.x
plone / plone	4.2	4.2.x
plone / plone	4.2.1	4.2.1.x