Loading
Plone before 5.2.3 allows SSRF attacks via the tracebacks feature (only available to the Manager role).
Use CWE-918, Plone vendor hub and Plone product page to widen CVE-2020-28735 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2021-33509, CVE-2021-33926 and CVE-2024-22889 for nearby disclosures in the same product family.