VYPR
Medium severity6.1NVD Advisory· Published Aug 7, 2017· Updated Jun 16, 2026

CVE-2009-5145

CVE-2009-5145

Description

Cross-site scripting (XSS) vulnerability in ZMI pages that use the manage_tabs_message in Zope 2.11.4, 2.11.2, 2.10.9, 2.10.7, 2.10.6, 2.10.5, 2.10.4, 2.10.2, 2.10.1, 2.12.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
Zope2PyPI
< 2.12.52.12.5

Affected products

11
  • Zope/Zope10 versions
    cpe:2.3:a:zope:zope:2.10.1:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:zope:zope:2.10.1:*:*:*:*:*:*:*
    • cpe:2.3:a:zope:zope:2.10.2:*:*:*:*:*:*:*
    • cpe:2.3:a:zope:zope:2.10.4:*:*:*:*:*:*:*
    • cpe:2.3:a:zope:zope:2.10.5:*:*:*:*:*:*:*
    • cpe:2.3:a:zope:zope:2.10.6:*:*:*:*:*:*:*
    • cpe:2.3:a:zope:zope:2.10.7:*:*:*:*:*:*:*
    • cpe:2.3:a:zope:zope:2.10.9:*:*:*:*:*:*:*
    • cpe:2.3:a:zope:zope:2.11.2:*:*:*:*:*:*:*
    • cpe:2.3:a:zope:zope:2.11.4:*:*:*:*:*:*:*
    • cpe:2.3:a:zope:zope:2.12.0:*:*:*:*:*:*:*
  • ghsa-coords
    Range: < 2.12.5

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.