Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

CVE-2011-0435

CVE information

Published

13 years ago

Last Modified

4 months ago

CVSSv2.0 Severity

Medium

Impact Analysis

Description

Domain Technologie Control (DTC) before 0.32.9 does not require authentication for (1) admin/bw_per_month.php and (2) client/bw_per_month.php, which allows remote attackers to obtain potentially sensitive bandwidth information via a direct request..

CVSSv2.0 Score

Severity
Medium
Base Score
5/10
Exploit Score
10/10
Access Vector
Network
Access Complexity
Low
Authentication Required
None
Impact Score
2.9/10
Confidentiality Impact
Partial
Availability Impact
None
Integrity Impact
None

Products Affected

CPE Affected Vulnerable Excluding Edit
cpe:2.3:a:gplhost:domain_technologie_control:*:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.29.8:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.28.9:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.32.1:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.25.3:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.30.6:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.26.9:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.29.1:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.27.3:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.28.4:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.32.3:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.28.10:*:*:*:*
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.25.1:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.30.18:*:*:*:*
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.26.8:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.28.6:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.28.2:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.32.2:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.29.14:*:*:*:*
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.29.17:*:*:*:*
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.26.7:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.29.16:*:*:*:*
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.30.10:*:*:*:*
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.32.6:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.29.6:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.28.3:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.24.6:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.32.5:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.29.15:*:*:*:*
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.29.10:*:*:*:*
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.30.20:*:*:*:*
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.30.8:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.32.7:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.32.4:*:*:*:*:
  Yes
- -
cpe:2.3:a:gplhost:domain_technologie_control:0.25.2:*:*:*:*:
  Yes
- -