Description

Digital Creations Zope 2.3.2 and earlier allows a local attacker to gain additional privileges via the changing of ZClass permission mappings for objects and methods in the ZClass.

Remediation

References

CVE-2001-0567

Related Vulnerabilities

Joomla Missing Authorization Vulnerability (CVE-2020-10239)

WordPress Other Vulnerability (CVE-2013-0235)

MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-28467)

WordPress Plugin Social Media Widget by Acurax Multiple Unspecified Vulnerabilities (3.2.3)

SugarCRM Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-17373)

Severity

Medium

Classification

CVE-2001-0567

Tags

Missing Update Known Vulnerabilities