Vulnerability Details CVE-2026-28413
Products.isurlinportal is a replacement for isURLInPortal method in Plone. Prior to versions 2.1.0, 3.1.0, and 4.0.0, a url /login?came_from=////evil.example may redirect to an external website after login. This issue has been patched in versions 2.1.0, 3.1.0, and 4.0.0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 9.0%
CVSS Severity
CVSS v3 Score 5.3
Products affected by CVE-2026-28413
-
cpe:2.3:a:plone:isurlinportal:*
-
cpe:2.3:a:plone:isurlinportal:-
-
cpe:2.3:a:plone:isurlinportal:1.0.0
-
cpe:2.3:a:plone:isurlinportal:1.1.0
-
cpe:2.3:a:plone:isurlinportal:1.1.1
-
cpe:2.3:a:plone:isurlinportal:1.2.0
-
cpe:2.3:a:plone:isurlinportal:4.0.0