Loading
SQL Injection in DTML or in connection objects in Plone 4.0 through 5.2.1 allows users to perform unwanted SQL queries. (This is a problem in Zope.)
Use CWE-89, Plone vendor hub and Plone product page to widen CVE-2020-7939 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2021-33509, CVE-2021-33926 and CVE-2024-22889 for nearby disclosures in the same product family.