PT-2026-54521 · Undefined · Undefined

Published

2026-07-01

·

Updated

2026-07-01

·

CVE-2026-57149

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
A critical Plone RCE vulnerability (CVE-2026-57149, CVSS 9.9) allows TALES injection via the Classic portlet. Two more flaws enable DoS and SSRF.
#Plone #RCE #CyberSecurity #CMS #PatchNow https://t.co/qsYlyubEcU https://t.co/PFHFQJ0I8u
Found an issue in the description? Have something to add? Feel free to write us 👾

Related Identifiers

CVE-2026-57149

Affected Products

Undefined