From: Announcement of P. r. a. security-r. n. R. s. f. a. P. d. a. s. admins.
<plo...@li...> - 2015-10-06 16:31:11
|
A hotfix for all versions of Plone 4.x. Fixes multiple CSRF vulnerabilities in Zope: https://plone.org/products/plone-hotfix/releases/201510061 <https://plone.org/products/plone-hotfix/releases/20151006> for more information on the nature of the issue, see https://plone.org/products/plone/security/advisories/security-vulnerability-20151006-csrf This is the follow up to Announcement: https://community.plone.org/t/security-vulnerability-pre-announcement-20151006/979/2 The Plone Security Best Practices docs have been updated: http://docs.plone.org/manage/deploying/production/securitybestpractices.html |