Plone CMS does not record users' authentication states, and implements the logout feature solely on the client side, which makes it easier for context-dependent malicious users to reuse a logged-out session.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
plone plone cms |