Zope · Zope · CVE-2009-5145
Name of the Vulnerable Software and Affected Versions:
Zope versions 2.10.1 through 2.11.4
Description:
A cross-site scripting (XSS) issue affects ZMI pages using the manage tabs message in Zope. This allows for potential malicious script execution.
Recommendations:
For Zope versions 2.10.1 through 2.11.4, update to a version that includes a fix for this issue.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.