ZCatalog Plug-in Index Access Bypass Vulnerability

CVE-2002-0688 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

ZCatalog plug-in index support capability for Zope 2.4.0 through 2.5.1 allows anonymous users and untrusted code to bypass access restrictions and call arbitrary methods of catalog indexes.

Learn more about our User Device Pen Test.