Vulnerability Details CVE-2020-15928
In Ortus TestBox 2.4.0 through 4.1.0, unvalidated query string parameters to test-browser/index.cfm allow directory traversal.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.9%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
Products affected by CVE-2020-15928
-
cpe:2.3:a:ortussolutions:testbox:2.4.0
-
cpe:2.3:a:ortussolutions:testbox:2.5.0
-
cpe:2.3:a:ortussolutions:testbox:3.0.0
-
cpe:2.3:a:ortussolutions:testbox:3.1.0
-
cpe:2.3:a:ortussolutions:testbox:4.1.0