Skip to content. Skip to navigation

ZopeZone.com

August 27, 2008

Personal tools

Log in
Join

News: Mar 20, 2008 New Spanish Plone/Zope users community; Mar 18, 2008 Zope Foundation Accepted in Google Summer of Code 2008; Feb 15, 2008 Plone.net Lists Over 1,000 Plone Sites; Jan 28, 2008 Take Plone Community Survey; Jan 11, 2008 Donate to Plone Strategic Planning Summit; More news…

Document Actions

Zope XSS Scripting Hotfix

If you are running a version of Zope in the 2.8, 2.9 or 2.10 range download and install this cross side scripting vulnerability fix.

A vulnerability has been discovered in Zope, whereby misuse of certain types of HTTP GET could lead to elevated privileges. All Zope versions up to and including 2.10.2 are affected.

Zope XSS vulnerability at Plone.org (www.plone.org)

XSS Hotfix on Zope.org (www.zope.org)

Related content

Home

Zopers

Jake's Home

Zope XSS Scripting Hotfix