Red Hat Bugzilla – Bug 1264796
CVE-2015-7318 plone: Header injection
Last modified: 2016-01-25 04:00:20 EST
A vulnerability was found allowing users who have access to write cookie values were able to inject headers into the response. Versions affected are all versions Plone 3.