Description
docutils in Zope 2.6, 2.7 before 2.7.8, and 2.8 before 2.8.2 allows remote attackers to include arbitrary files via include directives in RestructuredText functionality.
Remediation
References
Related Vulnerabilities
WordPress Plugin SEO Smart Links Cross-Site Scripting (3.0.1)
Drupal Core 8.9.x Cross-Site Scripting (8.9.0 - 8.9.15)
WordPress 3.8.3 Multiple Vulnerabilities (3.8 - 3.8.3)
WordPress 3.9.x Multiple Vulnerabilities (3.9 - 3.9.32)
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7950)