CVE-2020-28735
pypi/Plone
Server-Side Request Forgery (SSRF)
Plone allows SSRF attacks via the tracebacks feature (only available to the Manager role).
All versions before 5.2.3
Upgrade to version 5.2.3 or above.
2021-01-06