Description
PythonScripts in Zope 2 2.11.2 and earlier, as used in Conga and other products, allows remote authenticated users to cause a denial of service (resource consumption or application halt) via certain (1) raise or (2) import statements.
Remediation
References
Related Vulnerabilities
WordPress Plugin Multiplayer Games Cross-Site Scripting (3.7)
WordPress Plugin Event Banner Arbitrary File Upload (1.3)
Moodle Improper Input Validation Vulnerability (CVE-2012-6101)
WordPress Plugin Debug Log Manager Information Disclosure (2.2.2)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4309)