← back
CVE-2001-1227

CVE-2001-1227

EPSS 1.4%
Zope before 2.2.4 allows partially trusted users to bypass security controls for certain methods by accessing the methods through the fmt attribute of dtml-var tags.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/7271http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-080.php3http://www.redhat.com/support/errata/RHSA-2001-072.htmlhttp://www.redhat.com/support/errata/RHSA-2001-115.htmlhttp://www.securityfocus.com/bid/3425