CVE-2005-4850 Information

Description

eZ publish 3.5 through 3.7 before 20050608 requires both edit and create permissions in order to submit data which allows remote attackers to edit data submitted by arbitrary anonymous users.

Reference

http://ez.no/download/ez_publish/changelogs/ez_publish_3_8/changelog_3_6_x_3_7_x_to_3_8_0 http://issues.ez.no/6680