High severityNVD Advisory· Published Jan 18, 2024· Updated Jun 17, 2025
Cross-Frame Scripting (XFS) on Plone CMS
CVE-2024-0669
Description
A Cross-Frame Scripting vulnerability has been found on Plone CMS affecting verssion below 6.0.5. An attacker could store a malicious URL to be opened by an administrator and execute a malicios iframe element.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
PlonePyPI | < 6.0.7 | 6.0.7 |
Affected products
2- Plone CMS/Plone CMSv5Range: 6.0.5
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.