CVE-2011-5273
Published Mar 21, 2014
Last updated a year ago
Overview
- Description
- Directory traversal vulnerability in shared/package-installer in Domain Technologie Control (DTC) before 0.34.1 allows remote authenticated users to execute arbitrary PHP code via a .. (dot dot) in the pkg parameter in a do_install action to dtc/.
- Source
- cve@mitre.org
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.5
- Impact score
- 6.4
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-22
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6176A54D-C57D-4854-A344-1F664DAEC43F",
"versionEndIncluding": "0.32.11"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.24.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0E04A773-C554-44D0-8A83-6D23ECE10B42"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.25.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6B29E524-58BF-47EA-AE0C-D3EAFFD6325A"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.25.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FC1C6352-0BB7-4192-9128-D48C2CEED16A"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.25.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0AE77BCC-2B52-41D5-865A-F155264459E0"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.26.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "48453D15-9383-453A-80DE-CBA330DF43EC"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.26.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6ECDD453-4477-4567-85EC-9FBB777577C9"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.26.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3F470F49-27DE-49D8-95B6-0BF562A5AFC2"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.27.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9623CC23-64B9-408E-9BFD-E5A6A2498D16"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.28.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E9E38991-255F-4590-9D1B-EDC9965D4745"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.28.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "25BAB9EE-D86A-4AC7-85D0-711B755F63DC"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.28.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8C953E51-427E-4535-A196-6F771E30AA56"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.28.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E1E553F5-3889-4457-9D1B-D1A452CAB765"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.28.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2BF710D8-C753-4310-91A6-420D9EBB82E0"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.28.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3722E5B8-F002-4E81-A7A1-370D53EBFDC8"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.29.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F2A5B9D8-5268-4C34-943E-AEA918855EDF"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.29.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1F4CBFF6-6D1D-4DF7-B117-0E1E01BEC462"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.29.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8695430B-8AAE-431D-8985-DFDA51ACFB42"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.29.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A20B8546-B642-476F-806A-04A0F0BE36EE"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.29.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "47FE6BCF-87BB-4AE0-BD11-34D436C24EF1"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.29.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9B2444D0-8033-4AA5-BD7A-71332AC7E2DC"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.29.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "53A5363A-CCF7-4DA7-8488-506C7ACDB8FB"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.29.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B7A6BC76-C505-4263-B92F-41623FFB6CB6"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.30.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5E0F2EC6-A106-414E-AAF2-B69417A0733C"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.30.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "39626E03-7F8F-4556-A525-BF76FB868ABD"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.30.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "55623182-A6FB-46E5-BEBA-CE871EA3A92D"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.30.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FA45467E-7F90-4B3C-BC57-C7AC4363984E"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.30.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "85B79499-7C1B-4B8A-975E-6074C2F736A5"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.32.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8D7705B0-6E75-44D7-8F75-103DF204E28D"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.32.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B3072D58-2A16-40F7-9196-F2B8A61D75A4"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.32.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "89E4566B-6B90-40C3-B891-66E8D4ECE30C"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.32.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FF55A1C4-2477-46DC-9E29-C137F2BE9C3C"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.32.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "79235117-17A8-4A5A-A6CD-4FB9FFF3EBB6"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.32.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FC686D2F-5613-40F4-B628-263DCE033268"
},
{
"criteria": "cpe:2.3:a:gplhost:domain_technologie_control:0.32.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E2B38BB5-6599-48FF-9162-5C4806DBADD7"
}
],
"operator": "OR"
}
]
}
]