VulnerableCode Vulnerability Details - VCID-p3q3-3s7a-euhm

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-p3q3-3s7a-euhm

Essentials
Severities (10)
References (11)
Severity details (7)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-p3q3-3s7a-euhm
Aliases	CVE-2000-1212 GHSA-7whr-j8vf-r4wj
Summary	Zope allows attackers to modify raw image and file data Zope 2.2.0 through 2.2.4 does not properly protect a data updating method on Image and File objects, which allows attackers with DTML editing privileges to modify the raw data of these objects.
Status	Published
Exploitability	0.5
Weighted Severity	6.2
Risk	3.1
Affected and Fixed Packages	Package Details

Weaknesses (3)

CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
CWE-284	Improper Access Control

System	Score	Found at
epss	0.00862	https://api.first.org/data/v1/epss?cve=CVE-2000-1212
epss	0.00862	https://api.first.org/data/v1/epss?cve=CVE-2000-1212
epss	0.00862	https://api.first.org/data/v1/epss?cve=CVE-2000-1212
generic_textual	MODERATE	https://exchange.xforce.ibmcloud.com/vulnerabilities/5778
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-7whr-j8vf-r4wj
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2000-1212
generic_textual	MODERATE	https://web.archive.org/web/20020117134418/http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000365
generic_textual	MODERATE	http://www.debian.org/security/2001/dsa-007
generic_textual	MODERATE	http://www.redhat.com/support/errata/RHSA-2000-135.html
generic_textual	MODERATE	http://www.zope.org/Products/Zope/Hotfix_2000-12-18/security_alert

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2000-1212.json
		https://api.first.org/data/v1/epss?cve=CVE-2000-1212
		https://exchange.xforce.ibmcloud.com/vulnerabilities/5778
		https://web.archive.org/web/20020117134418/http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000365
		http://www.debian.org/security/2001/dsa-007
		http://www.redhat.com/support/errata/RHSA-2000-135.html
		http://www.zope.org/Products/Zope/Hotfix_2000-12-18/security_alert
1616550		https://bugzilla.redhat.com/show_bug.cgi?id=1616550
CVE-2000-1212		https://nvd.nist.gov/vuln/detail/CVE-2000-1212
GHSA-7whr-j8vf-r4wj		https://github.com/advisories/GHSA-7whr-j8vf-r4wj
RHSA-2000:135		https://access.redhat.com/errata/RHSA-2000:135

No exploits are available.

Exploit Prediction Scoring System (EPSS)

Percentile	0.75431
EPSS Score	0.00862
Published At	June 4, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-02T04:42:12.034936+00:00	GitLab Importer	Import	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/zope/CVE-2000-1212.yml	38.6.0