Description
ZCatalog plug-in index support capability for Zope 2.4.0 through 2.5.1 allows anonymous users and untrusted code to bypass access restrictions and call arbitrary methods of catalog indexes.
Remediation
References
Related Vulnerabilities
WordPress Plugin Image Gallery-Responsive Photo Gallery Cross-Site Scripting (1.4.0)
WordPress Plugin Responsive Filterable Portfolio Unspecified Vulnerability (1.0.8)
WordPress Plugin Realtyna Organic IDX + WPL Real Estate Arbitrary File Upload (4.14.13)
TYPO3 CVE-2010-0286 Vulnerability (CVE-2010-0286)
SharePoint Origin Validation Error Vulnerability (CVE-2020-16951)