Plone — CWE-1021
All Frameworks
›
Plone
›
CWE-1021
1 CVEs categorized as
CWE-1021 — Improper Restriction of Rendered UI Layers (Clickjacking)
in
Plone
.
CVE-2024-0669
MEDIUM
2024
A Cross-Frame Scripting vulnerability has been found on Plone CMS affecting verssion below 6.0.5. An attacker could store a malicious URL to be opened by an administrator and execute a malicios iframe element.