Description
python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to execute Python code via a crafted URL, related to "go_back."
Remediation
References
Related Vulnerabilities
WordPress Plugin Comment Rating 'path' Parameter Cross-Site Scripting (2.9.20)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2572)
WordPress Plugin ProfileGrid-User Profiles, Groups and Communities Cross-Site Scripting (2.6.6)
WordPress Plugin WordPress Books Gallery Security Bypass (3.5)
Jetty Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-28169)