Vulnerability Details CVE-2007-6515
support/dispatch.cgi in SiteScape Forum allows remote attackers to execute arbitrary TCL code via code separator characters in the query string.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.137
EPSS Ranking 94.3%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/39875
- http://secunia.com/advisories/28182
- http://securityreason.com/securityalert/3480
- http://www.exploit-db.com/exploits/15987
- http://www.securityfocus.com/archive/1/485398/100/0/threaded
- http://www.securityfocus.com/bid/26963
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39182
- http://osvdb.org/39875
- http://secunia.com/advisories/28182
- http://securityreason.com/securityalert/3480
- http://www.exploit-db.com/exploits/15987
- http://www.securityfocus.com/archive/1/485398/100/0/threaded
- http://www.securityfocus.com/bid/26963
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39182
Products affected by CVE-2007-6515
-
cpe:2.3:a:sitescape:sitescape_forum_st:*
-
cpe:2.3:a:sitescape:sitescape_forum_zx:*