Author: JT Smith
Posted at LinuxToday: “The Zope authors have released a hotfix that addresses a
vulnerability with ZClasses. Any user can visit a ZClass declaration
and change the ZClass permission mappings for methods and other
objects defined within the ZClass, possibly allowing for unauthorized
access within the Zope instance.”
vulnerability with ZClasses. Any user can visit a ZClass declaration
and change the ZClass permission mappings for methods and other
objects defined within the ZClass, possibly allowing for unauthorized
access within the Zope instance.”
Category:
- Linux