CVE-2011-5276

2014-03-21T04:38:00
ID CVE-2011-5276
Type cve
Reporter cve@mitre.org
Modified 2014-03-21T14:54:00

Description

SQL injection vulnerability in the drawAdminTools_PackageInstaller function in shared/inc/forms/packager.php in Domain Technologie Control (DTC) before 0.32.11 allows remote authenticated users to execute arbitrary SQL commands via the database_name parameter.