HomePloneCVE-2015-7316

CVE-2015-7316

MEDIUM
6.1CVSS
Published: 2017-09-25
Updated: 2025-04-20
AI Analysis

Description

Cross-site scripting (XSS) vulnerability in Plone 3.3.0 through 3.3.6, 4.0.0 through 4.0.10, 4.1.0 through 4.1.6, 4.2.0 through 4.2.7, 4.3.x before 4.3.7, and 5.0rc1.

CVSS Metrics

Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Attack Vector
network
Complexity
low
Privileges
none
User Action
required
Scope
changed
Confidentiality
low
Integrity
low
Availability
none
Weaknesses
CWE-79

Metadata

Primary Vendor
PLONE
Published
9/25/2017
Last Modified
4/20/2025
Source
NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

plone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : ploneplone : plone

AI-Powered Remediation

Generate remediation guidance or a C-suite brief for this vulnerability.

Executive Intelligence Brief

View on NIST NVD
CVE-CVE-2015-7316 | MEDIUM Severity | CVEDatabase.com | CVEDatabase.com