Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-1752

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.01427EPSS
Exploits0References7
PyPA
PyPA
added 2023/07/11 6:15 p.m.4 views

PYSEC-2023-118

RestrictedPython is a tool that helps to define a subset of the Python language which allows users to provide a program input into a trusted environment. RestrictedPython does not check access to stack frames and their attributes. Stack frames are accessible within at least generators and generat...

9.9CVSS7.6AI score0.00768EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/04/30 6:15 p.m.13 views

GHSA-H2XH-JVPF-XQ42 Zope does not properly perform security registration for legacy names

Zope 2.2.0 through 2.2.4 does not properly perform security registration for legacy names of object constructors such as DTML method objects, which could allow attackers to perform unauthorized activities...

7.5CVSS6.4AI score0.01427EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2022/04/30 6:15 p.m.24 views

Zope does not properly perform security registration for legacy names

Zope 2.2.0 through 2.2.4 does not properly perform security registration for legacy names of object constructors such as DTML method objects, which could allow attackers to perform unauthorized activities...

7.5CVSS6.8AI score0.01427EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2012/09/06 12:0 a.m.20 views

Mandrake Linux Security Advisory : Zope (MDKSA-2000:083)

There is an issue involving security registration of 'legacy' names for certain object constructors such as the constructors for DTML Method Objects. Security was not being applied correctly for the legacy names, making it possible to call those constructors without the permissions that should ha...

7.5CVSS5.4AI score0.01427EPSS
Exploits0References1
Rows per page
Query Builder