← Back

CVE-2000-1212

nvd nist
Published: Dec 18, 2000Modified: Apr 16, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:N/I:P/A:N
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

Zope 2.2.0 through 2.2.4 does not properly protect a data updating method on Image and File objects, which allows attackers with DTML editing privileges to modify the raw data of these objects.

Affected (11)

Products: Zope: Zope
Zope
1 product
Zope
Configuration A
11 vulnerable
Vulnerable SoftwareAffected Versions
Zope
Zope
Version 2.2.0
Zope
Version 2.2.0a1
Zope
Version 2.2.0b1
Zope
Version 2.2.0b2
Zope
Version 2.2.0b3
Zope
Version 2.2.0b4
Zope
Version 2.2.1
Zope
Version 2.2.1b1
Zope
Version 2.2.2
Zope
Version 2.2.3
Zope
Version 2.2.4

References (14)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.