2 matches found
CVE-2005-4851
eZ publish 3.4.4 through 3.7 before 20050722 applies certain permissions on the node level, which allows remote authenticated users to bypass the original permissions on embedded objects in XML fields and read these objects...
CVE-2005-4851
CVE-2005-4851 affects eZ publish versions 3.4.4–3.7 prior to 2005-07-22. The issue arises from permissions handling at the node level, which allows remote authenticated users to bypass original permissions on embedded objects in XML fields and read those objects. Documented impact is reading of e...