Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2021/08/05 5:0 p.m.27 views

GHSA-G4GQ-J4P2-J8FR Remote Code Execution via Script (Python) objects under Python 3

Impact Background: The optional add-on package Products.PythonScripts adds Script Python to the list of content items a user can add to the Zope object database. Inside these scripts users can write Python code that is executed when rendered through the web. The code environment in these script...

7.7CVSS7.3AI score0.03934EPSS
Exploits0References7
OSV
OSVadded 2021/08/02 10:15 p.m.0 views

UBUNTU-CVE-2021-32811

Zope is an open-source web application server. Zope versions prior to versions 4.6.3 and 5.3 have a remote code execution security issue. In order to be affected, one must use Python 3 for one's Zope deployment, run Zope 4 below version 4.6.3 or Zope 5 below version 5.3, and have the optional...

7.5CVSS7.6AI score0.03934EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2021/07/30 12:0 a.m.3 views

PT-2021-19945 · Zope +1 · Zope +1

Name of the Vulnerable Software and Affected Versions: Zope versions prior to 4.6.3 and 5.3 Description: Zope is an open-source web application server with a remote code execution security issue. The issue affects Zope deployments using Python 3, running Zope 4 below version 4.6.3 or Zope 5 below...

7.5CVSS7.3AI score0.03934EPSS
Exploits0References27
NVD
NVDadded 2008/11/17 6:18 p.m.9 views

CVE-2008-5102

PythonScripts in Zope 2 2.11.2 and earlier, as used in Conga and other products, allows remote authenticated users to cause a denial of service resource consumption or application halt via certain 1 raise or 2 import statements...

4CVSS6.2AI score0.12096EPSS
Exploits0References8
UbuntuCve
UbuntuCveadded 2008/11/17 6:18 p.m.19 views

CVE-2008-5102

PythonScripts in Zope 2 2.11.2 and earlier, as used in Conga and other products, allows remote authenticated users to cause a denial of service resource consumption or application halt via certain 1 raise or 2 import statements...

4CVSS5.9AI score0.12096EPSS
Exploits0References1
Cvelist
Cvelistadded 2008/11/17 6:0 p.m.13 views

CVE-2008-5102

PythonScripts in Zope 2 2.11.2 and earlier, as used in Conga and other products, allows remote authenticated users to cause a denial of service resource consumption or application halt via certain 1 raise or 2 import statements...

6.2AI score0.12096EPSS
Exploits0References8
CVE
CVEadded 2008/11/17 6:0 p.m.46 views

CVE-2008-5102

CVE-2008-5102 concerns Zope 2.x up to version 2.11.2, where PythonScripts can be abused by remote authenticated users to cause a denial of service through certain raise or import statements. The OpenVAS entries refer to a Zope 2.11.2 DoS vulnerability and note a vendor fix as the remediation. The...

4CVSS6.3AI score0.12096EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder