Synced 17 Jun 2026 22:27 UTC Account
← All products

Plone

Plone · CMS
↻ RSS feed
Monitors Plone and tailors your dashboard to that exact version.
6.2.0 · latest cycle100/100 Healthy

Summary iPlain-English security verdict for Plone, generated from its current health score, actively-exploited vulnerabilities, and latest supported version.

Plone currently scores 100/100 — healthy. No tracked vulnerabilities are currently known to be exploited in the wild. The latest supported release is 6.2.0. It's on the latest patch with no significant known issues — keep it current.

Disclosure trend iNew CVEs published for Plone each year (NVD). A higher bar means more disclosures that year — more scrutiny, not necessarily less safe.

'19
'20
'21
'22
'23
'24
'25
'26

Patch priority — what to act on iThe issues to fix first — actively exploited (CISA KEV) first, then by exploitation probability (EPSS), then severity. Each row's "→ fixed in" is the earliest version that patches it; "see advisory" means no fixed version is published.

Most urgent first — actively exploited, then likeliest to be exploited.

CVE-2011-3587 HIGH EPSS 79% → see advisory CVE-2020-7941 CRITICAL EPSS 2% → see advisory CVE-2020-35190 CRITICAL Missing authentication EPSS 2% → fixed in 4.3.18-alpine CVE-2021-33509 CRITICAL Incorrect permission assignment EPSS 2% → see advisory

See all 105 known Plone CVEs & security history →

Get alerted about Plone

Be emailed the moment Plone gets a newly exploited vulnerability (CISA KEV) or a release reaches end of life. Free · double opt-in · unsubscribe anytime.

We email only on real events for Plone — no marketing, no sharing, and we never know what you run. Track your whole stack →

Monitor up to 200 products — freeHit ☆ Monitor on anything you run, then sign in (no password) to sync your stack across devices and unlock smart insights, risk history & CSV/JSON exports. Sign in free →

Versions & lifecycle iWhen each release line stops receiving security patches (end-of-life). After EOL there are no more fixes — plan upgrades before these dates.

How long each Plone release line is supported — and when it sunsets. Select a line for its full report.

Dec31'27 Plone 6.2EOL 2027-12-31
Dec31'27 Plone 6.1EOL 2027-12-31
Dec31'27 Plone 6.0EOL 2027-12-31
Oct31'24 Plone 5.2ended 2024-10-31
Dec12'22 Plone 5.1ended 2022-12-12
Dec12'22 Plone 5.0ended 2022-12-12
Dec12'22 Plone 4.3ended 2022-12-12

Full Plone end-of-life dates & support timeline →

6.2 latest 6.2.0 Supported until 2027-12-316.2.0 → 6.1 latest 6.1.4 Supported until 2027-12-316.1.4 → 6.0 latest 6.0.15 Supported until 2027-12-316.0.15 → 5.2 latest 5.2.15 End of life ended 2024-10-315.2.15 → 5.1 latest 5.1.7 End of life ended 2022-12-125.1.7 → 5.0 latest 5.0.10 End of life ended 2022-12-125.0.10 → 4.3 latest 4.3.20 End of life ended 2022-12-124.3.20 → See all upcoming end-of-life dates →

Frequently asked

Is Plone safe and patched?

Plone currently scores 100/100 — healthy. No tracked vulnerabilities are currently known to be exploited in the wild. The latest supported release is 6.2.0. It's on the latest patch with no significant known issues — keep it current.

What should I do about Plone now?

Upgrade Plone to the latest supported release (6.2.0) or later and apply available security updates, then confirm against Plone's official advisory.

When does Plone reach end-of-life?

The latest supported Plone release is 6.2.0. After end-of-life a release no longer receives security patches.

Which versions of Plone are still receiving security updates?

Supported Plone release lines (latest 6.2.0): 6.2, 6.1, 6.0. End-of-life releases no longer receive security patches.

Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against Plone's official advisory before you patch or upgrade — Plone official site ↗