CVE-2000-1211 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2000-1211

Zope 2.2.0 through 2.2.4 does not properly perform security registration for legacy names of object constructors such as DTML method objects, which could allow attackers to perform unauthorized activities.

Published: Dec 16, 2000
Updated: Apr 13, 2023
CVE: CVE-2000-1211
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
zope / zope	2.2.0b2	2.2.0b2.x
zope / zope	2.2.1	2.2.1.x
zope / zope	2.2.0b4	2.2.0b4.x
zope / zope	2.2.0	2.2.0.x
zope / zope	2.2.1b1	2.2.1b1.x
zope / zope	2.2.4	2.2.4.x
zope / zope	2.2.2	2.2.2.x
zope / zope	2.2.0b1	2.2.0b1.x
zope / zope	2.2.0b3	2.2.0b3.x
zope / zope	2.2.0a1	2.2.0a1.x
zope / zope	2.2.3	2.2.3.x