CVE-2021-35959: Cross-site Scripting
(updated )
In Plone, Editors
are vulnerable to Cross-Site Scripting (XSS) in the folder contents view, if a Contributor
has created a folder with a SCRIPT
tag in the description field.
References
Detect and mitigate CVE-2021-35959 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →