Zope 2.2.0 through 2.2.4 does not properly protect a data updating method on Image and File objects, which allows attackers with DTML editing privileges to modify the raw data of these objects.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2000-12-18 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2000-1212
Mitre link : CVE-2000-1212
CVE.ORG link : CVE-2000-1212
JSON object : View
Products Affected
zope
- zope
CWE