Description
Zope 2.2.0 through 2.2.4 does not properly perform security registration for legacy names of object constructors such as DTML method objects, which could allow attackers to perform unauthorized activities.
Remediation
References
Related Vulnerabilities
WordPress Plugin Simple:Press Security Bypass and Arbitrary File Upload Vulnerabilities (4.1.2)
WordPress Plugin All-In-One Security (AIOS)-Security and Firewall Cross-Site Scripting (3.9.7)
PostgreSQL Other Vulnerability (CVE-2002-1398)
MySQL CVE-2012-0496 Vulnerability (CVE-2012-0496)
WordPress Plugin Captcha by BestWebSoft SQL Injection (4.1.4)