Plone CMS Server-Side Request Forgery (SSRF) Vulnerability - CVE-2020-28735 - Vulnerability Database

Plone CMS Server-Side Request Forgery (SSRF) Vulnerability - CVE-2020-28735

High

Reference: CVE-2020-28735

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-28735

Title: Plone CMS Server-Side Request Forgery (SSRF) Vulnerability

Overview:

Plone before 5.2.3 allows SSRF attacks via the tracebacks feature (only available to the Manager role).