nvd-json-data-feeds/CVE-2024/CVE-2024-228xx/CVE-2024-22889.json

{
  "id": "CVE-2024-22889",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2024-03-06T00:15:52.633",
  "lastModified": "2024-03-06T15:18:08.093",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "Due to incorrect access control in Plone version v6.0.9, remote attackers can view and list all files hosted on the website via sending a crafted request."
    },
    {
      "lang": "es",
      "value": "Debido al control de acceso incorrecto en la versi\u00f3n v6.0.9 de Plone, los atacantes remotos pueden ver y enumerar todos los archivos alojados en el sitio web mediante el env\u00edo de una solicitud manipulada."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://github.com/shenhav12/CVE-2024-22889-Plone-v6.0.9",
      "source": "cve@mitre.org"
    }
  ]
}