Description

The DocumentTemplate package in Zope 2.2 and earlier allows a remote attacker to modify DTMLDocuments or DTMLMethods without authorization.

Remediation

References

CVE-2000-0483

Related Vulnerabilities

WordPress Plugin Sticky Related Posts Cross-Site Scripting (1.0)

WordPress Plugin Sina Extension for Elementor Multiple Cross-Site Scripting Vulnerabilities (3.3.11)

Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-17496)

WordPress Improper Input Validation Vulnerability (CVE-2011-3127)

WordPress 4.0.x Cross-Domain Flash Injection Vulnerability (4.0 - 4.0.21)

Severity

High

Classification

CVE-2000-0483

Tags

Missing Update Known Vulnerabilities