The drawAdminTools_PackageInstaller function in shared/inc/forms/packager.php in Domain Technologie Control (DTC) prior to 0.32.11 allows remote malicious users to execute arbitrary commands via shell metacharacters in the dtcpkg_directory parameter in a do_install action to dtc/.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
gplhost domain technologie control 0.29.8 |
||
gplhost domain technologie control 0.28.9 |
||
gplhost domain technologie control 0.32.1 |
||
gplhost domain technologie control 0.25.3 |
||
gplhost domain technologie control 0.30.6 |
||
gplhost domain technologie control 0.26.9 |
||
gplhost domain technologie control 0.29.1 |
||
gplhost domain technologie control 0.27.3 |
||
gplhost domain technologie control 0.28.4 |
||
gplhost domain technologie control 0.32.3 |
||
gplhost domain technologie control 0.28.10 |
||
gplhost domain technologie control 0.25.1 |
||
gplhost domain technologie control 0.30.18 |
||
gplhost domain technologie control 0.26.8 |
||
gplhost domain technologie control 0.28.6 |
||
gplhost domain technologie control 0.28.2 |
||
gplhost domain technologie control 0.32.2 |
||
gplhost domain technologie control 0.29.14 |
||
gplhost domain technologie control |
||
gplhost domain technologie control 0.29.17 |
||
gplhost domain technologie control 0.26.7 |
||
gplhost domain technologie control 0.29.16 |
||
gplhost domain technologie control 0.30.10 |
||
gplhost domain technologie control 0.32.6 |
||
gplhost domain technologie control 0.29.6 |
||
gplhost domain technologie control 0.28.3 |
||
gplhost domain technologie control 0.24.6 |
||
gplhost domain technologie control 0.32.5 |
||
gplhost domain technologie control 0.29.15 |
||
gplhost domain technologie control 0.29.10 |
||
gplhost domain technologie control 0.30.20 |
||
gplhost domain technologie control 0.30.8 |
||
gplhost domain technologie control 0.32.4 |
||
gplhost domain technologie control 0.25.2 |
Vulmon