Description
The "through the web code" capability for Zope 2.0 through 2.5.1 b1 allows untrusted users to shut down the Zope server via certain headers.
Remediation
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-2000-0951)
Piwigo Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2025-62406)
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-40603)
React Deserialization of Untrusted Data Vulnerability (CVE-2025-67779)