Description
Plone before 5.2.3 allows SSRF attacks via the tracebacks feature (only available to the Manager role).
Remediation
References
Related Vulnerabilities
Oracle HTTP Server Other Vulnerability (CVE-2012-2751)
WordPress Plugin MediaElement.js-HTML5 Video & Audio Player Cross-Site Scripting (4.2.8)
WordPress Plugin Contact Form DB-Elementor Cross-Site Scripting (1.7)
Oracle Database Server CVE-2008-1816 Vulnerability (CVE-2008-1816)
OpenSSL Improper Input Validation Vulnerability (CVE-2015-0293)