CVE-2000-1212 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2000-1212

Zope 2.2.0 through 2.2.4 does not properly protect a data updating method on Image and File objects, which allows attackers with DTML editing privileges to modify the raw data of these objects.

Published: Dec 18, 2000
Updated: Apr 13, 2023
CVE: CVE-2000-1212
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
zope / zope	2.2.0b2	2.2.0b2.x
zope / zope	2.2.1	2.2.1.x
zope / zope	2.2.0b4	2.2.0b4.x
zope / zope	2.2.0	2.2.0.x
zope / zope	2.2.1b1	2.2.1b1.x
zope / zope	2.2.4	2.2.4.x
zope / zope	2.2.2	2.2.2.x
zope / zope	2.2.0b1	2.2.0b1.x
zope / zope	2.2.0b3	2.2.0b3.x
zope / zope	2.2.0a1	2.2.0a1.x
zope / zope	2.2.3	2.2.3.x