[Bug 203255] www/plone: security/vuxml: multiple security advisories

[bugzilla-noreply at freebsd.org]

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=203255

--- Comment #2 from Jason Unovitch <junovitch at freebsd.org> ---
The first two are for the current version of Plone.  The second two are for
Plone 3 or 4.2.x.

There are immediate action steps for the end user in the advisory for the
self-registration feature and the end user can patch their local instance or
disable the vulnerable feature.  However as the XSS feature did not have a
hotfix patch I felt it would be prudent to just document 4.3.7 as fixed.

-- 
You are receiving this mail because:
You are on the CC list for the bug.