CVE 2016-4043
Chameleon (five.pt) in Plone 5.0rc1 through 5.1a1 allows remote authenticated users to bypass Restricted Python by leveraging permissions to create or edit templates.
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- MLIST: [oss-security] 2016041...
- CONFIRM: https://plone.org/secu...
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
73416ba
(Get the code!)