CVE-2007-0240
Cross-site scripting (XSS) vulnerability in Zope 2.10.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in a HTTP GET request.
Date published : 2007-03-22
http://www.securityfocus.com/bid/23084
http://www.zope.org/Products/Zope/Hotfix-2007-03-20/announcement/view