Users login

Create an account »


Users login

Home » Hacking News » Zope Failed Login Information Disclosure Vulnerability

Zope Failed Login Information Disclosure Vulnerability

by Nikola Strahija on October 9th, 2002 Zope is prone to a vulnerability which may cause sensitive information to be disclosed to remote attackers. Reportedly, Zope will disclose path information if a user hits Cancel after a failed login attempt to the management interface.

This type of information may be useful in further attacks against the host.

Remote: Yes
Exploit: This issue may be exploited with a web browser.

Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.


Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »