Vulnerabilities > Zope > Low

DATE CVE VULNERABILITY TITLE RISK
2006-07-07 CVE-2006-3458 Information Disclosure vulnerability in Zope Docutils
Zope 2.7.0 to 2.7.8, 2.8.0 to 2.8.7, and 2.9.0 to 2.9.3 (Zope2) does not disable the "raw" command when providing untrusted users with restructured text (reStructuredText) functionality from docutils, which allows local users to read arbitrary files.
local
low complexity
zope
2.1
2001-08-22 CVE-2001-0568 Local Security vulnerability in Zope
Digital Creations Zope 2.3.1 b1 and earlier allows a local attacker (Zope user) with through-the-web scripting capabilities to alter ZClasses class attributes.
local
low complexity
zope
2.1
2001-08-22 CVE-2001-0569 Local Security vulnerability in Zope
Digital Creations Zope 2.3.1 b1 and earlier contains a problem in the method return values related to the classes (1) ObjectManager, (2) PropertyManager, and (3) PropertySheet.
local
low complexity
zope
2.1