DCForum cgforum.cgi CGI script allows remote attackers to read arbitrary files, and delete the program itself, via a malformed forum variable.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Dcforum | Dcscripts | 1.0 (including) | 1.0 (including) |
| Dcforum | Dcscripts | 2.0 (including) | 2.0 (including) |
| Dcforum | Dcscripts | 3.0 (including) | 3.0 (including) |
| Dcforum | Dcscripts | 4.0 (including) | 4.0 (including) |
| Dcforum | Dcscripts | 5.0 (including) | 5.0 (including) |
| Dcforum | Dcscripts | 6.0 (including) | 6.0 (including) |