CVE-2024-22889
CVE-2024-22889 affects Plone, specifically version 6.0.9, where improper access control allows remote attackers to view and enumerate all files hosted on the site with a crafted request. Public sources (NVD) flag it as a high-severity information-disclosure issue (CVSSv3.1: 7.5, Network attack ve...