Description
The DocumentTemplate package in Zope 2.2 and earlier allows a remote attacker to modify DTMLDocuments or DTMLMethods without authorization.
Remediation
References
Related Vulnerabilities
WordPress Plugin Sticky Related Posts Cross-Site Scripting (1.0)
WordPress Plugin Sina Extension for Elementor Multiple Cross-Site Scripting Vulnerabilities (3.3.11)
WordPress Improper Input Validation Vulnerability (CVE-2011-3127)
WordPress 4.0.x Cross-Domain Flash Injection Vulnerability (4.0 - 4.0.21)