Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Plone CMS Vulnerability - CVE-2024-23756 - Vulnerability Database
Plone CMS

Plone CMS Vulnerability - CVE-2024-23756

High
Reference: CVE-2024-23756
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-23756
Title: Plone CMS Vulnerability
Overview:

The HTTP PUT and DELETE methods are enabled in the Plone official Docker version 5.2.13 (5221) allowing unauthenticated attackers to execute dangerous actions such as uploading files to the server or deleting them.