Plone (software)

From Wikipedia, the free encyclopedia
  (Redirected from Plone)
Jump to: navigation, search
"Plone" redirects here. For the band, see Plone (band).
Developer(s) 267 Worldwide Current Contributors
Stable release 5.0.0[1] / 28 September 2015; 2 months ago (2015-09-28)
Development status Active
Operating system Cross-platform
Platform Zope
Type Content management system
License GNU General Public License

Plone is a free and open source content management system built on top of the Zope application server. Plone is positioned as an "Enterprise CMS" and is most commonly used for intranets and as part of the web presence of large organizations. High-profile public sector users include the U.S. Federal Bureau of Investigation, Brazilian Government, United Nations, City of Bern (Switzerland), New South Wales Government (Australia), and European Environment Agency.[2] Plone's proponents cite its security track record[3] and its accessibility[4] as reasons to choose Plone.

Plone has a long tradition of development happening in so-called "sprints", in-person meetings of developers over the course of several days, the first having been held in 2003[5] and nine taking place in 2014. The largest sprint of the year is the sprint immediately following the annual conference. Certain other sprints are considered strategic so are funded directly by the Plone Foundation,[6] although very few attendees are sponsored directly. The Plone Foundation also holds and enforces all copyrights and trademarks in Plone, and is assisted by legal counsel from the Software Freedom Law Center.[7]


The Plone project began in 1999 by Alexander Limi, Alan Runyan, and Vidar Andersen. It was made as a usability layer on top of the Zope Content Management Framework. The first version was released in 2001. The project quickly grew into a community, receiving plenty of new add-on products from its users. The increase in community led to the creation of the annual Plone conference in 2003, which is still running today. In addition, "sprints" are held, where groups of developers meet to work on Plone, ranging from a couple of days to a week. In March 2004, Plone 2.0 was released. This release brought more customizable features to Plone, and enhanced the add-on functions. In May 2004, the Plone Foundation was created for the development, marketing, and protection of Plone. The Foundation has ownership rights over the Plone codebase, trademarks, and domain names. Even though the foundation was set up to protect ownership rights, Plone remains open source.[8] On March 12, 2007, Plone 3 was released. This new release brought inline editing, an upgraded visual editor, and strengthened security, among many other enhancements.[9] Plone 4 was released in September 2010.[10] Up to September 2007, there have been over 200 developers contributing to Plone's code. Plone won two Packt Open Source CMS Awards.[11]

Version timeline[edit]

Stable release ISO date Approx. difference in months Notes
0.1 2001-10-04 - First public release
1.0 2003-02-06 - First stable release
2.0 2004-03-23 13
2.1 2005-09-06 18
2.5 2006-09-19 12
3.0 2007-08-21 11
3.1 2008-05-02 8
3.2 2009-02-07 9
3.3 2009-08-19 6
4.0 2010-09-01 12 Infrastructure improvements increasing performance and reducing resource use, new base theme, more efficient blob storage, overlays, fit and polish
4.1 2011-08-08 11 Configuration registry, improved commenting system, more versatile caching, more detailed security roles
4.2 2012-07-05 11 Diazo theming system, HTML5, Python 2.7, improved collections, improved search
4.3 2013-04-13 9 Dexterity Content Type development system, KUPU removal, KSS removed, Password API, Improved Syndication, NewsML, TTW Theme Editor
5.0 2015-09-28 29 Simpler, faster Dexterity as the new default content type framework. Theming is made easier with Diazo. The Chameleon rendering engine improves response times by 15 to 30 percent. A modern series of form widgets have been created with usability and accessibility in mind.


Plone runs on the Zope application server, which is written in Python. Plone by default stores all information in Zope's built-in transactional object database (ZODB). It comes with installers for Windows, Mac OS X, and Linux, along with other operating systems. New updates are released regularly on Plone's website. Plone is available in over 35 languages. Since version 3.0, it claims conformance to (the now outdated) WCAG 1.0 AA and U.S. section 508,[12][13][14] which allows people with disabilities to access and use Plone. An update to make Plone conform to WCAG 2.0 has been planned.[15][16] A major part of Plone is its use of skins and themes. When working with Plone, templates can be used to customize a website's look. These templates are written with Cascading Style Sheets. In addition, Plone comes with a user management system called Pluggable Authentication Service (PAS). Introduced in Plone 2.5, PAS is used to properly sort actions from different users to their respective folders or accounts. PAS is also used to search for users and groups in Plone. Most importantly, PAS covers the security involved for users, requiring authentication in order to log in to Plone. This gives users an increase in both security and organization with their content.[17] A large part of Plone's changes have come from its community. Since Plone is open source, the members of the Plone community regularly make alterations or add-ons to Plone's interface, and make these changes available to the rest of the community via Plone's website.

The name Plone comes from a band by that name and "Plone should look and feel like the band sounds".[18]


Plone is built on the Zope application framework and therefore is primarily written in Python but also contains large amounts of HTML and CSS, as well as JavaScript.[19] Plone uses jQuery as its Javascript framework[20] in current versions, after abandoning a declarative framework for progressive enhancement called KSS.[21] Plone uses an XML dialect called ZCML for configuration, as well as an XML based templating language, meaning approximately 10% of the total source code is XML based.[19]


The community supports and distributes thousands of addons via company websites but mostly through PYPI and There are currently 2149 packages available via PyPI for customizing Plone.[22]

Since its release, many of Plone's updates and add-ons have come from its community. Events called Plone "sprints" consist of members of the community coming together for a week and helping improve Plone. The Plone conference is also attended and supported by the members of the Plone community. In addition, Plone has an active IRC channel to give support to users who have questions or concerns. Up through 2007, there have been over one million downloads of Plone. Plone's development team has also been ranked in the top 2% of the largest open source communities.

Strengths and weaknesses[edit]

A 2007 comparison of CMSes rated Plone highly in a number of categories (standards conformance, access control, internationalization, aggregation, user-generated content, micro-applications, active user groups and value).[23] However, as most of the major CMSes, including Plone, Drupal, WordPress and Joomla, have undergone major development since then, only limited value can be drawn from this comparison. Plone is available on many different operating systems, due to its use of platform-independent underlying technologies such as Python and Zope. Plone's Web-based administrative interface is optimized for standards, allowing it to work with most common web browsers, and uses additional accessibility standards to help users who have disabilities. All of Plone's features are customizable, and free add-ons are available from the Plone website.

Focus on Security[edit]

Mitre is a not-for-profit corporation which hosts the Common Vulnerabilities and Exposures (CVE) Database. The CVE database provides a worldwide reporting mechanism for developers and the industry and is a source feed into the U.S. National Vulnerability Database (NVD).[24] According to Mitre, as of 2013-05-29, Plone has the lowest number of reported lifetime and year to date vulnerabilities when compared to other popular Content Management Systems. This security record has led to widespread adoption of Plone by government and non-governmental organizations, including the FBI.[2]

The following table compares the number of CVEs as reported by Mitre. It should be noted that logged CVEs take into account vulnerabilities exposed in the core product as well as the modules of the software, of which, the included modules may be provided by 3rd party vendors and not the primary software provider.

A Comparison of Common Vulnerabilities and Exposures Entries
Technology Year of Initial Release All time CVEs to date (2013-05-29)
Plone 2003 62[25]
Joomla 2005 638[26]
Wordpress 2003 934[27]
Drupal 2001 969[28]

See also[edit]


  1. ^
  2. ^ a b "Gov 2.0 guide to Plone". 2011-03-11. Retrieved 2012-10-18. 
  3. ^ "Is Plone Really More Secure Than Drupal and Joomla?". Real Story Group. 2013-02-11. Retrieved 2015-01-02. 
  4. ^ "Plone - The Open Source Enterprise CMS". Six Feet Up. Retrieved 2015-01-02. 
  5. ^ "All sprints". Plone. Retrieved 2015-01-02. 
  6. ^ "Bring Your Talent and Passion to a Sprint. Better Yet, Organize One!". Plone. 2013-04-02. Retrieved 2015-01-02. 
  7. ^ "Software Freedom Law Center Adds Plone Foundation as Newest Client". Software Freedom Law Center. 2005-07-13. Retrieved 2015-01-02. 
  8. ^ "Plone Foundation FAQs — Plone CMS: Open Source Content Management". 2009-01-03. Retrieved 2012-10-18. 
  9. ^ "Plone 3.0 released! — Plone CMS: Open Source Content Management". 2007-08-21. Retrieved 2012-10-18. 
  10. ^ "Plone 4 CMS Unveiled: Advancing Power, Performance & User Experience — Plone CMS:- Open Source Content Management". Retrieved 2012-10-18. 
  11. ^ "Open Source Awards Previous Winners | Packt Publishing". Retrieved 2012-10-18. 
  12. ^ Plone: Features in Plone 3.
  13. ^ Alex Limi: Accessibility Compliant.
  14. ^ Plone (features in Plone 4.0).
  15. ^ Plone Foundation: Meeting of the Board of Directors: Minutes of May 17th, 2012.
  16. ^ Plone Foundation: Minutes for February 21, 2013.
  17. ^ "The Definitive Guide to Plone - First Edition - 12 December 2006" (PDF). Retrieved 2012-10-18. 
  18. ^ "What does Plone mean? How is it pronounced? — Plone CMS: Open Source Content Management". Retrieved 2012-10-18. 
  19. ^ a b Ohloh. "Plone : Project Summary". Ohloh. Retrieved 2012-10-18. 
  20. ^ "Plone documentation". Retrieved 2015-01-02. 
  21. ^ "Kinetic Style Sheets". Retrieved 2015-02-01. 
  22. ^ "Browse : Python Package Index". Retrieved 2012-10-18. 
  23. ^ "Feature Article | Real Story Group". 2007-06-11. Retrieved 2012-10-18. 
  24. ^ "Mitre FAQ". Mitre. Retrieved 2013-15-29.  Check date values in: |access-date= (help)
  25. ^ "Mitre CVE Database for Plone". Mitre. Retrieved 2013-05-29. 
  26. ^ "Mitre CVE Database for Joomla". Mitre. Retrieved 2013-05-29. 
  27. ^ "Mitre CVE Database for Wordpress". Mitre. Retrieved 2013-05-29. 
  28. ^ "Mitre CVE Database for Drupal". Mitre. Retrieved 2013-05-29. 

External links[edit]