• Conference
  • Documentation
  • Training
  • Forum
  • Chat
Plone.org
  • Get started
  • Community
  • Plone Foundation
  • More
    • About Plone
    • Conferences
    • Donate
    • Download
    • Features
    • Events
    • News
    • Providers
    • Related websites
    • Security
    • Sponsors
    • Support
    • Newsroom
  • Search
  • Login
Advanced Search…
You are here:
  1. Home
Item type
New items since

Search results

RSS Subscribe to an always-updated RSS feed.

38 items matching your search terms.
Sort by relevance date (newest first) alphabetically
  1. Maurits van Rees by Maurits van Rees — published May 04, 2016 — last modified Oct 04, 2021 06:37 AM Located in Plone Foundation / Members & Membership / Active Members
  2. Open redirection on login form by Maurits van Rees — published Nov 28, 2017 — last modified Dec 29, 2017 11:24 PM

    An open redirection and reflected Cross Site Scripting attack (XSS) on the login form and possibly other places where redirects are done.

    Located in Security / Plone Hotfix Descriptions / 20171128
  3. An open redirection when calling a specific url. by Maurits van Rees — published Nov 28, 2017 — last modified Dec 29, 2017 11:21 PM

    By accessing a specific URL, you could get redirected to the site of an attacker

    Located in Security / Plone Hotfix Descriptions / 20171128
  4. XSS using the home_page member property. by Maurits van Rees — published Nov 28, 2017 — last modified Dec 29, 2017 11:23 PM

    Cross Site Scripting using the home_page member property.

    Located in Security / Plone Hotfix Descriptions / 20171128
  5. Sandbox escape by Maurits van Rees — published Nov 28, 2017 — last modified Dec 29, 2017 11:22 PM Located in Security / Plone Hotfix Descriptions / 20171128
  6. Privilege escalation when plone.restapi is installed by Maurits van Rees — published Jan 21, 2020 — last modified Jan 24, 2020 01:28 PM Located in Security / Plone Hotfix Descriptions / 20200121
  7. An open redirection on the login form and possibly other places by Maurits van Rees — published Jan 21, 2020 — last modified Jan 24, 2020 03:19 PM Located in Security / Plone Hotfix Descriptions / 20200121
  8. Password strength checks were not always checked. by Maurits van Rees — published Jan 21, 2020 — last modified Jan 24, 2020 03:20 PM Located in Security / Plone Hotfix Descriptions / 20200121
  9. Privilege escalation for overwriting content by Maurits van Rees — published Jan 21, 2020 — last modified Jan 24, 2020 03:18 PM Located in Security / Plone Hotfix Descriptions / 20200121
  10. SQL injection in DTML or in connection objects by Maurits van Rees — published Jan 21, 2020 — last modified Jan 24, 2020 01:29 PM Located in Security / Plone Hotfix Descriptions / 20200121
  • 1
  • 2
  • 3
  • 4
  • Next 10 items

Login via GitHub

To log in to this site, you will need a GitHub account. After logging in for the first time, please edit your profile information to activate your account.

Why: The Plone documentation, codebase, marketing and other tasks are managed through GitHub. Using the same login here makes it easier to coordinate team assignments.

Note: You do not need to login to this site to ask questions or make suggestions. For that you can participate at community.plone.org which provides a variety of login options.

Okay, take me to GitHub

Plone Foundation

  • Donate & Sponsors
  • Meeting minutes
  • Current board
  • Foundation members
  • Code of Conduct

Support

  • Chat room
  • Forums
  • Local user groups

Downloads

  • Get Plone
  • All add-ons
  • Security
  • Check hotfixes
  • Browse source

Documentation

  • Full documentation
  • Training
  • Installation
  • About this site

Contribute

  • Roadmap
  • Report bugs in Plone
  • Report website issues
  • Contribute skills
  • Contribute code

Stay up to date

  • Newsletter signup
  • Planet Plone (blogs)
  • @plone on Twitter
  • PloneCMS on Facebook
  • Plone LinkedIn group
The text and illustrations in this website are licensed by the Plone Foundation under a Creative Commons Attribution-ShareAlike 4.0 International license.
Plone and the Plone® logo are registered trademarks of the Plone Foundation, registered in the United States and other countries. For guidelines on the permitted uses of the Plone trademarks, see https://plone.org/foundation/logo
All other trademarks are owned by their respective owners.