Description
Plone through 5.2.4 allows XSS via a full name that is mishandled during rendering of the ownership tab of a content item.
Remediation
References
Related Vulnerabilities
MediaWiki Incorrect Default Permissions Vulnerability (CVE-2011-4361)
WordPress Plugin Add Edit Delete Listing Module SQL Injection (1.0)
WordPress Plugin WP Image Zoom Local File Inclusion (1.46)
Magento Improper Input Validation Vulnerability (CVE-2015-6497)
WordPress Plugin WooCommerce Save For Later Cart Enhancement PHP Object Injection (1.0.6)