Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-5xfx-55x4-j223: Cross-Frame Scripting vulnerability has been found on Plone CMS

A Cross-Frame Scripting vulnerability has been found on Plone CMS affecting version below 6.0.5. An attacker could store a malicious URL to be opened by an administrator and execute a malicios iframe element.

ghsa
#vulnerability#ios#git

Cross-Frame Scripting vulnerability has been found on Plone CMS

Moderate severity GitHub Reviewed Published Jan 18, 2024 to the GitHub Advisory Database • Updated Jan 19, 2024

ghsa: Latest News

GHSA-6jrf-rcjf-245r: changedetection.io path traversal using file URI scheme without supplying hostname