Description

Zope 2.2.0 through 2.5.1 does not properly verify the access for objects with proxy roles, which could allow some users to access documents in violation of the intended configuration.

Remediation

References

CVE-2002-0170

Related Vulnerabilities

TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-47125)

WordPress Plugin Formidable Forms-Contact Form, Survey, Quiz, Calculator & Custom Form Builder Unspecified Vulnerability (5.0.12)

MySQL CVE-2019-2434 Vulnerability (CVE-2019-2434)

WordPress Plugin AJAX Random Post Cross-Site Scripting (2.00)

WordPress Plugin WP Fastest Cache Directory Traversal (0.8.9.5)

Severity

High

Classification

CVE-2002-0170

Tags

Missing Update Known Vulnerabilities