CVE-2026-55248
AI description
CVE-2026-55248 has been reserved by a CVE Numbering Authority (CNA), but as of current reports, the specific details of this vulnerability have not yet been officially published. While some discussions about it have been noted, comprehensive information from popular articles describing the nature of the flaw is not yet available.
- Description
- -
- Hype score
- Not currently trending
⚠️⚠️ CVE-2026-57149 (CVSS 9.9) + CVE-2026-55247 (CVSS 9.1) + CVE-2026-55248 (CVSS 9.1): Plone patch bundle — Classic portlet TALES injection to RCE (auth + portlet mgmt required) plus https://t.co/OiyJHJii9P.event DoS/SSRF/XSS issues. 🔗FOFA Link: https://t.co/BAScQ0W
@fofabot
3 Jul 2026
3558 Impressions
6 Retweets
17 Likes
2 Bookmarks
0 Replies
0 Quotes
Plone CMSに重大(Critical)な脆弱性。CVE-2026-57149はCVSSスコア9.9で、TALESインジェクションによる遠隔コード実行。CVE-2026-55247とCVE-2026-55248は双方CVSSスコア9.1で、それぞれiCal及びRSSからDoS、SSRF、及びXSSが可能。修正版
@__kokumoto
1 Jul 2026
489 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes