CVE-2006-3458

Priority
Untriaged
Description
Zope 2.7.0 to 2.7.8, 2.8.0 to 2.8.7, and 2.9.0 to 2.9.3 (Zope2) does not
disable the "raw" command when providing untrusted users with restructured
text (reStructuredText) functionality from docutils, which allows local
users to read arbitrary files.
References
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:17:14 UTC (commit 5347)