Security Advisory

CVE-2011-5273

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-03-20 19:00:00

Last updated 2024-09-16 16:13:59

Assigner mitre

State PUBLISHED

Description

Directory traversal vulnerability in shared/package-installer in Domain Technologie Control (DTC) before 0.34.1 allows remote authenticated users to execute arbitrary PHP code via a .. (dot dot) in the pkg parameter in a do_install action to dtc/.

← Browse all CVEs View on cve.org ↗