CVE-2014-6256
Zenoss Core through 5 Beta 3 permits an Authorization Bypass via a move action that lets remote attackers bypass access controls and place files in a directory with public (read or execute) permissions, i.e., ZEN-15386. Affected component is the Zenoss Core web/authorization logic related to file...