VYPR
Unrated severityNVD Advisory· Published Jul 6, 2007· Updated Jun 16, 2026

CVE-2006-7219

CVE-2006-7219

Description

eZ publish before 3.8.5 does not properly enforce permissions for editing in a specific language, which allows remote authenticated users to create a draft in an unauthorized language by editing an archived version of an object, and then using Manage Versions to copy this version to a new draft.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.