Description
python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to execute Python code via a crafted URL, related to "go_back."
Remediation
References
Related Vulnerabilities
PleskWin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-0132)
Apache Tomcat Other Vulnerability (CVE-2002-0936)
Python Integer Overflow or Wraparound Vulnerability (CVE-2008-4864)
WordPress Plugin Magic Fields Arbitrary File Upload (1.6.3.2)
WordPress Plugin Collapse-O-Matic Cross-Site Scripting (1.6.8)