Description Plone through 5.2.4 allows stored XSS attacks (by a Contributor) by uploading an SVG or HTML document. Remediation References CVE-2021-33512 Related Vulnerabilities Claroline Other Vulnerability (CVE-2006-5256) Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-1582) WordPress Plugin Gallery PhotoBlocks Cross-Site Scripting (1.1.50) Joomla Improper Input Validation Vulnerability (CVE-2015-8565) OpenSSL CVE-2018-0733 Vulnerability (CVE-2018-0733) Severity Medium Classification CVE-2021-33512 CWE-707 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities