CVE-2006-4684

CVE Database · CVE-2006-4684

CVE-2006-4684

· N/AModified

CVSS v3.1

N/A

EPSS

2.38%

Published

Sep 19, 2006

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The docutils module in Zope (Zope2) 2.7.0 through 2.7.9 and 2.8.0 through 2.8.8 does not properly handle web pages with reStructuredText (reST) markup, which allows remote attackers to read arbitrary files via a csv_table directive, a different vulnerability than CVE-2006-3458.

Affected Products (19)

zope · zopevulnerable

zope · zope

References (14)

http://mail.zope.org/pipermail/zope-announce/2006-August/002005.html

http://secunia.com/advisories/21947

PatchVendor Advisory

http://secunia.com/advisories/21953

PatchVendor Advisory

http://www.debian.org/security/2006/dsa-1176

PatchVendor Advisory

http://www.securityfocus.com/bid/20022

http://www.vupen.com/english/advisories/2006/3653

http://www.zope.org/Products/Zope/Hotfix-2006-08-21/Hotfix-20060821/README.txt

Patch

http://mail.zope.org/pipermail/zope-announce/2006-August/002005.html

KEV Catalog EPSS Scores Vendors All CVEs