CyberSec.Space Logo
Back to CVE Browser

CVE-2000-0062

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0380%
EPSS Percentile32.51th
PublishedJan 4, 2000
Last ModifiedApr 16, 2026

Vulnerability Description

The DTML implementation in the Z Object Publishing Environment (Zope) allows remote attackers to conduct unauthorized activities.

Affected Platforms (CPE)

πŸ“¦
Zope

Zope

= 1.10.3
πŸ“¦
Zope

Zope

= 2.1.1

References & Advisories

πŸ”— http://www.securityfocus.com/bid/922
πŸ”— http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000104222219.B41650%40schvin.net
πŸ”— http://www.securityfocus.com/bid/922
πŸ”— http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000104222219.B41650%40schvin.net

Related Vulnerabilities

CVE-2011-35879.3

Unspecified vulnerability in Zope 2.12.x and 2.13.x, as used in Plone 4.0.x through 4.0.9, 4.1, and 4.2 through 4.2a2, allows remo...

CVE-2021-326748.8

Zope is an open-source web application server. This advisory extends the previous advisory at https://github.com/zopefoundation/Zo...

CVE-2020-79398.8

SQL Injection in DTML or in connection objects in Plone 4.0 through 5.2.1 allows users to perform unwanted SQL queries. (This is a...

CVE-2015-72938.8

Multiple cross-site request forgery (CSRF) vulnerabilities in Zope Management Interface 4.3.7 and earlier, and Plone before 5.x.