Debian Security Advisory 1405-3 - The Plone developers discovered that their hotfix, released as DSA 1405, introduced two regressions. This update corrects these flaws. It was discovered that Plone, a web content management system, allows remote attackers to execute arbitrary code via specially crafted web browser cookies.
f8c4cb7b087f9f2293e88fb37d88e5ff7d90d653a0b0d0fe36cda51d032dbfb8
Debian Security Advisory 1405-2 - The zope-cmfplone update in DSA 1405 introduced a regression. This update corrects this flaw.
ddc8f5f88eaa01e22eab6126f2db39030335bd7cbeb0ff18da4430ea7846a392
Debian Security Advisory 1405-1 - It was discovered that Plone, a web content management system, allows remote attackers to execute arbitrary code via specially crafted web browser cookies.
1936591490d4ba176fbd6f30549f59a2e90f8563ff20ca2609dfd1e68267d95b
Plone versions 2.5 up to and including 2.5.4 and versions 3.0 up to and including 3.0.2 suffer from an arbitrary python code execution vulnerability.
4814a07c71f89b734ee4edb768244d6d87636b90059fb0fde070e1bb218b645d