Lucene search

CVE-2020-28735

🗓️ 30 Dec 2020 19:13:15Reported by [email protected]Type

Plone SSRF vulnerability in tracebacks feature before version 5.2.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
Cvelist	CVE-2020-28735	30 Dec 202018:38	–	cvelist
Github Security Blog	SSRF attacks via tracebacks in Plone	7 Apr 202121:13	–	github
OSV	SSRF attacks via tracebacks in Plone	7 Apr 202121:13	–	osv
OSV	PYSEC-2020-247	30 Dec 202019:15	–	osv
OSV	CVE-2020-28735	30 Dec 202019:15	–	osv
Prion	Server side request forgery (ssrf)	30 Dec 202019:15	–	prion
CVE	CVE-2020-28735	30 Dec 202019:15	–	cve
Veracode	Server-Side Request Forgery (SSRF)	31 Dec 202002:16	–	veracode
OpenVAS	Plone CMS < 5.2.3 Multiple Vulnerabilities	15 Jan 202100:00	–	openvas

Nvd

Node

plone ploneRange<5.2.3

Source	Link
dist	www.dist.plone.org/release/5.2.3/RELEASE-NOTES.txt
misakikata	www.misakikata.com/codes/plone/python-en.html
github	www.github.com/plone/Products.CMFPlone/issues/3209

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

30 Dec 2020 19:15Current

8.6High risk

Vulners AI Score8.6

CVSS26.5

CVSS38.8

EPSS0.00484

CWE-918