CVE-2000-0725

Name of the Vulnerable Software and Affected Versions Zope versions prior to 2.2.1

Description The issue allows users who can edit DTML to add or modify roles by modifying the roles list included in a request, due to improper access restriction to the getRoles method.

Recommendations For versions prior to 2.2.1, update to version 2.2.1 or later to resolve the issue.