Name of the Vulnerable Software and Affected Versions Plone versions prior to 5.0 Plone versions 5.0 through 5.2 plone.app.contenttypes versions prior to the fixed version Products.ATContentTypes versions prior to the fixed version

Description The issue concerns reflected cross-site scripting and open redirect vulnerabilities. An attacker can exploit these by getting a compromised version of the image view fullscreen page into a cache, such as Varnish, using a technique known as cache poisoning. This can affect later visitors who click on links on the compromised page, typically anonymous users, depending on cache settings.

Recommendations For Plone versions prior to 5.0: No patch is available, consider the workaround of ensuring the image view fullscreen page is not stored in the cache by modifying the caching settings in the Site Setup. For Plone versions 5.0 through 5.2: Update to Plone 5.2.7 or later, which includes the necessary fixes. For plone.app.contenttypes and Products.ATContentTypes: Update to the fixed versions, as the current versions have the same problem. As a temporary workaround for all unpatched versions, make sure the image view fullscreen page is not stored in the cache by following the provided steps in the Plone Site Setup.