CVE-2016-7137

MEDIUM

Plone - Open Redirect

Title source: rule

Description

Multiple open redirect vulnerabilities in Plone CMS 5.x through 5.0.6, 4.x through 4.3.11, and 3.3.x through 3.3.6 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the referer parameter to (1) %2b%2bgroupdashboard%2b%2bplone.dashboard1%2bgroup/%2b/portlets.Actions or (2) folder/%2b%2bcontextportlets%2b%2bplone.footerportlets/%2b /portlets.Actions or the (3) came_from parameter to /login_form.

References (7)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/139110/Plone-CMS-4.3.11-5.0.6-XSS-Traversal-Open-Redirection.html

[Third Party Advisory, VDB Entry] http://seclists.org/fulldisclosure/2016/Oct/80

[Mailing List, Patch, Third Party Advisory] http://www.openwall.com/lists/oss-security/2016/09/05/4

[Mailing List, Patch, Third Party Advisory] http://www.openwall.com/lists/oss-security/2016/09/05/5

[Vendor Advisory] https://plone.org/security/hotfix/20160830/open-redirection-in-plone

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/539572/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/92752

Scores

CVSS v3 6.1

EPSS 0.0048

EPSS Percentile 64.6%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Classification

CWE

CWE-601

Status published

Affected Products (50)

plone/plone

plone/plone

plone/plone

plone/plone

plone/plone

plone/plone

plone/plone

plone/plone

plone/plone

plone/plone

plone/plone

plone/plone

plone/plone

plone/plone

plone/plone

... and 35 more

Timeline

Published Mar 07, 2017

Tracked Since Feb 18, 2026