CVE 2008-6547
schema.py in FormEncode for Python (python-formencode) 1.0 does not apply the chained_validators feature, which allows attackers to bypass intended access restrictions via unknown vectors.
See the
CVE page on Mitre.org
for more details.