CVE-2006-7219

Name of the Vulnerable Software and Affected Versions eZ publish versions prior to 3.8.5

Description The issue allows remote authenticated users to bypass permission checks for editing in a specific language. This can be achieved by editing an archived version of an object and then using Manage Versions to copy this version to a new draft, thereby creating a draft in an unauthorized language.

Recommendations For versions prior to 3.8.5, update to version 3.8.5 or later to resolve the issue.