VYPR
High severityNVD Advisory· Published Jan 23, 2020· Updated Aug 4, 2024

CVE-2020-7940

CVE-2020-7940

Description

Missing password strength checks on some forms in Plone 4.3 through 5.2.0 allow users to set weak passwords, leading to easier cracking.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
PlonePyPI
>= 4.3, < 4.3.204.3.20
PlonePyPI
>= 5.0rc1, < 5.1.75.1.7
PlonePyPI
>= 5.2.0, < 5.2.25.2.2

Affected products

2
  • Plone/Plonedescription
  • ghsa-coords
    Range: >= 4.3, < 4.3.20

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.