CVE-2006-3458

CVE-2006-3458 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

Zope 2.7.0 to 2.7.8, 2.8.0 to 2.8.7, and 2.9.0 to 2.9.3 (Zope2) does not disable the "raw" command when providing untrusted users with restructured text (reStructuredText) functionality from docutils, which allows local users to read arbitrary files.

Learn more about our User Device Pen Test.