Description

The docutils module in Zope (Zope2) 2.7.0 through 2.7.9 and 2.8.0 through 2.8.8 does not properly handle web pages with reStructuredText (reST) markup, which allows remote attackers to read arbitrary files via a csv_table directive, a different vulnerability than CVE-2006-3458.

Remediation

References

CVE-2006-4684

Related Vulnerabilities

Vanilla Forums Other Vulnerability (CVE-2011-0910)

MySQL CVE-2023-22110 Vulnerability (CVE-2023-22110)

Oracle Application Server CVE-2007-0280 Vulnerability (CVE-2007-0280)

Jenkins Incorrect Authorization Vulnerability (CVE-2021-21670)

WordPress Plugin WordPress Poll Multiple SQL Injection Vulnerabilities (33.5)

Severity

Medium

Classification

CVE-2006-4684

Tags

Missing Update Known Vulnerabilities