Description
python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to execute Python code via a crafted URL, related to "go_back."
Remediation
References
Related Vulnerabilities
WordPress Plugin 123devis-affiliation Cross-Site Scripting (1.0.4)
qdPM Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-45856)
Joomla Improper Input Validation Vulnerability (CVE-2015-8562)
OpenSSL NULL Pointer Dereference Vulnerability (CVE-2009-1386)
Apache Tomcat Use of Incorrectly-Resolved Name or Reference Vulnerability (CVE-2025-24813)