Skip to main content

CVE-2024-22889

Description

Due to incorrect access control in Plone version v6.0.9, remote attackers can view and list all files hosted on the website via sending a crafted request.

NVD
Severity: N/A
CVE ID: CVE-2024-22889
CVSS Score: N/A
CVSS Metrics: NVD assessment not yet provided.

Refrence: NVDMITRE

Proof Of Concept

shenhav12

Refrence: GitHub

Last updated on by Vulnerability_bot_v1.3.8