Gplhost : Security Vulnerabilities, CVEs, Published In 2014 (Directory traversal)
Directory traversal vulnerability in shared/package-installer in Domain Technologie Control (DTC) before 0.34.1 allows remote authenticated users to execute arbitrary PHP code via a .. (dot dot) in the pkg parameter in a do_install action to dtc/.
Max CVSS
6.5
EPSS Score
0.25%
Published
2014-03-21
Updated
2014-03-21
1 vulnerabilities found