Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2015-7293

Multiple cross-site request forgery (CSRF) vulnerabilities in Zope Management Interface 4.3.7 and earlier, and Plone before 5.x.

2017-09-25T21:29:00.680

2025-04-20T01:37:25.860

Deferred

CVSSv3.0: 8.8 (HIGH)

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.6

6.4

Type	Vendor	Product	Version/Range	Vulnerable?
Application	plone	plone	3.3	Yes
Application	plone	plone	3.3.1	Yes
Application	plone	plone	3.3.2	Yes
Application	plone	plone	3.3.3	Yes
Application	plone	plone	3.3.4	Yes
Application	plone	plone	3.3.5	Yes
Application	plone	plone	3.3.6	Yes
Application	plone	plone	4.0	Yes
Application	plone	plone	4.0.1	Yes
Application	plone	plone	4.0.2	Yes
Application	plone	plone	4.0.3	Yes
Application	plone	plone	4.0.4	Yes
Application	plone	plone	4.0.5	Yes
Application	plone	plone	4.0.7	Yes
Application	plone	plone	4.0.8	Yes
Application	plone	plone	4.0.9	Yes
Application	plone	plone	4.0.10	Yes
Application	plone	plone	4.1	Yes
Application	plone	plone	4.1.1	Yes
Application	plone	plone	4.1.2	Yes
Application	plone	plone	4.1.3	Yes
Application	plone	plone	4.1.4	Yes
Application	plone	plone	4.1.5	Yes
Application	plone	plone	4.1.6	Yes
Application	plone	plone	4.2	Yes
Application	plone	plone	4.2.1	Yes
Application	plone	plone	4.2.2	Yes
Application	plone	plone	4.2.3	Yes
Application	plone	plone	4.2.4	Yes
Application	plone	plone	4.2.5	Yes
Application	plone	plone	4.2.6	Yes
Application	plone	plone	4.2.7	Yes
Application	plone	plone	4.3	Yes
Application	plone	plone	4.3.1	Yes
Application	plone	plone	4.3.2	Yes
Application	plone	plone	4.3.3	Yes
Application	plone	plone	4.3.4	Yes
Application	plone	plone	4.3.5	Yes
Application	plone	plone	4.3.6	Yes
Application	plone	plone	4.3.7	Yes
Application	plone	plone	4.3.8	Yes
Application	plone	plone	4.3.9	Yes
Application	plone	plone	4.3.10	Yes
Application	plone	plone	4.3.11	Yes
Application	plone	plone	4.3.12	Yes
Application	plone	plone	4.3.14	Yes
Application	zope	zope_management_interface	≤ 4.3.7	Yes