Description

Digital Creations Zope 2.3.2 and earlier allows a local attacker to gain additional privileges via the changing of ZClass permission mappings for objects and methods in the ZClass.

Remediation

References

CVE-2001-0567

Related Vulnerabilities

Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-24728)

datatables Cross-site Scripting (XSS) Vulnerability (CVE-2015-6584)

WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Security Bypass (0.1.0.8)

WordPress 4.7.x Directory Traversal (4.7 - 4.7.28)

Joomla Other Vulnerability (CVE-2005-3773)

Severity

Medium

Classification

CVE-2001-0567

Tags

Missing Update Known Vulnerabilities