Description
python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to execute Python code via a crafted URL, related to createObject.
Remediation
References
Related Vulnerabilities
Drupal Other Vulnerability (CVE-2006-1225)
WordPress Plugin Testimonial Slider Cross-Site Scripting (1.2.1)
MediaWiki Improper Input Validation Vulnerability (CVE-2017-0370)
Liferay Portal Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2022-42129)
WordPress Plugin YITH WooCommerce Ajax Product Filter Cross-Site Scripting (3.11.0)