VULHUB ™

Reportedly, Zope will disclose path information if a user invokes an upload operation when a target file does not exist as a URI parameter. An error will be triggered and traceback information containing possible sensitive path information will be returned to the browser of the attacker.

Reportedly, Zope will disclose path information if a user invokes an upload operation when a target file does not exist as a URI parameter. An error will be triggered and traceback information containing possible sensitive path information will be returned to the browser of the attacker.