CVE-2024-0669

Publication date

2024-01-18 12:26:14

Family

INCIBE

State

PUBLISHED

Description

A Cross-Frame Scripting vulnerability has been found on Plone CMS affecting verssion below 6.0.5. An attacker could store a malicious URL to be opened by an administrator and execute a malicios iframe element.