Zope < 2.11.2 - Authenticated Denial of Service via PythonScript Raise or Import Statements
PythonScripts in Zope 2 2.11.2 and earlier, as used in Conga and other products, allows remote authenticated users to cause a denial of service (resource consumption or application halt) via certain (1) raise or (2) import statements.