Zope allows attackers to modify raw image and file data

Zope 2.2.0 through 2.2.4 does not properly protect a data updating method on Image and File objects, which allows attackers with DTML editing privileges to modify the raw data of these objects...

Debian Security Advisory DSA 007-1 (zope)

The remote host is missing an update to zope announced via advisory DSA 007-1. OpenVAS Vulnerability Test $Id: deb0071.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 007-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

CVE-2000-1212

Zope 2.2.0 through 2.2.4 does not properly protect a data updating method on Image and File objects, which allows attackers with DTML editing privileges to modify the raw data of these objects...