Description

Zope 2.2.0 through 2.5.1 does not properly verify the access for objects with proxy roles, which could allow some users to access documents in violation of the intended configuration.

Remediation

References

CVE-2002-0170

Related Vulnerabilities

WordPress Plugin Featured Posts by BestWebSoft Cross-Site Scripting (1.0.0)

Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9515)

WordPress Plugin Limit Login Attempts Cross-Site Scripting (4.0.43)

XWikiplatform Missing Authorization Vulnerability (CVE-2024-31997)

Perl Out-of-bounds Read Vulnerability (CVE-2018-6798)

Severity

High

Classification

CVE-2002-0170

Tags

Missing Update Known Vulnerabilities