Plone · Plone · CVE-2021-33512
**Name of the Vulnerable Software and Affected Versions**
Plone versions through 5.2.4
**Description**
The issue allows stored XSS attacks by uploading an SVG or HTML document, which can be exploited by a Contributor.
**Recommendations**
For versions through 5.2.4, update to a version that contains a fix for this issue to prevent stored XSS attacks.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.