CVSS: 7.5EPSS: 2%CPEs: 5EXPL: 0CVE-2008-4047
https://notcve.org/view.php?id=CVE-2008-4047
Unspecified vulnerability in Novell Forum (formerly SiteScape Forum) 7.0, 7.1, 7.2, 7.3, and 8.0 allows remote attackers to execute arbitrary TCL code via a modified URL. NOTE: this might overlap CVE-2007-6515. Vulnerabilidad no especificada en Novell Forum (formalmente SiteScape Forum) 7.0, 7.1, 7.2, 7.3, y 8.0 que permite a los atacantes remotos ejecutar arbitrariamente código TCL a través de una URL modificada. NOTA: debería sobreescribir la vulnerabilidad CVE-2007-6515. • http://download.novell.com/Download?buildid=6k-5X-UPnrM~ http://secunia.com/advisories/31578 http://www.securityfocus.com/bid/30909 http://www.securitytracker.com/id?1020803 http://www.vupen.com/english/advisories/2008/2465 https://exchange.xforce.ibmcloud.com/vulnerabilities/45199 • CWE-94: Improper Control of Generation of Code ('Code Injection') •