Lucene search
+L

4 matches found

nvd
nvd
added 2014/03/21 4:38 a.m.24 views

CVE-2011-3197

SQL injection vulnerability in Domain Technologie Control DTC before 0.34.1 allows remote authenticated users to execute arbitrary SQL commands via the addrlink parameter to shared/inc/forms/domaininfo.php. NOTE: CVE-2011-3197 has been SPLIT due to findings by different researchers. CVE-2011-5272...

6.5CVSS7.7AI score0.01179EPSS
Exploits0References6
prion
prion
added 2014/03/21 4:38 a.m.14 views

Sql injection

SQL injection vulnerability in Domain Technologie Control DTC before 0.34.1 allows remote authenticated users to execute arbitrary SQL commands via the vpsnote parameter to dtcadmin/logPushlet.php. NOTE: this issue was originally part of CVE-2011-3197, but that ID was SPLIT due to different...

6.5CVSS8.1AI score0.01179EPSS
Exploits0References5Affected Software1
prion
prion
added 2014/03/21 4:38 a.m.17 views

Sql injection

SQL injection vulnerability in Domain Technologie Control DTC before 0.34.1 allows remote authenticated users to execute arbitrary SQL commands via the addrlink parameter to shared/inc/forms/domaininfo.php. NOTE: CVE-2011-3197 has been SPLIT due to findings by different researchers. CVE-2011-5272...

6.5CVSS8.1AI score0.01179EPSS
Exploits0References6Affected Software1
cve
cve
added 2014/03/20 7:0 p.m.48 views

CVE-2011-5272

Affected product: Domain Technologie Control (DTC) prior to 0.34.1. Vulnerability: SQL injection via the vps_note parameter to dtcadmin/logPushlet.php, allowing remote authenticated users to execute arbitrary SQL commands. Root cause (as stated): input handling leads to SQL injection; CVE-2011-52...

6.5CVSS7.9AI score0.01057EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder