CVEブラウザに戻る

CVE-2000-0062

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0380%

EPSS Percentile32.51th

Published2000年1月4日

Last Modified2026年4月16日

Vulnerability Description

The DTML implementation in the Z Object Publishing Environment (Zope) allows remote attackers to conduct unauthorized activities.

Affected Platforms (CPE)

📦

Zope

Zope

= 1.10.3

📦

Zope

Zope

= 2.1.1

References & Advisories

🔗 http://www.securityfocus.com/bid/922

🔗 http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000104222219.B41650%40schvin.net

🔗 http://www.securityfocus.com/bid/922

🔗 http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000104222219.B41650%40schvin.net

関連する脆弱性情報

CVE-2011-35879.3

Unspecified vulnerability in Zope 2.12.x and 2.13.x, as used in Plone 4.0.x through 4.0.9, 4.1, and 4.2 through 4.2a2, allows remo...

CVE-2021-326748.8

Zope is an open-source web application server. This advisory extends the previous advisory at https://github.com/zopefoundation/Zo...

CVE-2020-79398.8

SQL Injection in DTML or in connection objects in Plone 4.0 through 5.2.1 allows users to perform unwanted SQL queries. (This is a...

CVE-2015-72938.8

Multiple cross-site request forgery (CSRF) vulnerabilities in Zope Management Interface 4.3.7 and earlier, and Plone before 5.x.