EPSS
Percentile
38.8%
Products.CMFPlone is vulnerable to redirect attacks. Attackers can set a url to contain the data: pre-fix and redirect users to a malicious website.
data:
github.com/plone/Products.CMFPlone/pull/2236
plone.org/security/hotfix/20171128
plone.org/security/hotfix/20171128/an-open-redirection-when-calling-a-specific-url