Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    30 vulnerabilities by openmairie

    CVE-2010-1999 (GCVE-0-2010-1999)

    Vulnerability from nvd – Published: 2010-05-20 17:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in OpenMairie Opencatalogue 1.024, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/39688 third-party-advisoryx_refsource_SECUNIA
    http://packetstormsecurity.org/1005-exploits/open… x_refsource_MISC
    http://www.osvdb.org/64183 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2010/1051 vdb-entryx_refsource_VUPEN
    http://www.exploit-db.com/exploits/12475 exploitx_refsource_EXPLOIT-DB
    Date Public
    2010-05-03 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:13.323Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "39688",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39688"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1005-exploits/opencatalogue-lfi.txt"
              },
              {
                "name": "64183",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64183"
              },
              {
                "name": "ADV-2010-1051",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2010/1051"
              },
              {
                "name": "12475",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12475"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-05-03T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in OpenMairie Opencatalogue 1.024, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-02-27T17:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "39688",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39688"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1005-exploits/opencatalogue-lfi.txt"
            },
            {
              "name": "64183",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64183"
            },
            {
              "name": "ADV-2010-1051",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2010/1051"
            },
            {
              "name": "12475",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12475"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1999",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in OpenMairie Opencatalogue 1.024, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "39688",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39688"
                },
                {
                  "name": "http://packetstormsecurity.org/1005-exploits/opencatalogue-lfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1005-exploits/opencatalogue-lfi.txt"
                },
                {
                  "name": "64183",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64183"
                },
                {
                  "name": "ADV-2010-1051",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2010/1051"
                },
                {
                  "name": "12475",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12475"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1999",
        "datePublished": "2010-05-20T17:00:00.000Z",
        "dateReserved": "2010-05-20T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:13.323Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1948 (GCVE-0-2010-1948)

    Vulnerability from nvd – Published: 2010-05-18 18:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in openMairie Openfoncier 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.exploit-db.com/exploits/12366 exploitx_refsource_EXPLOIT-DB
    http://www.osvdb.org/64195 vdb-entryx_refsource_OSVDB
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://secunia.com/advisories/39607 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2010-04-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:12.858Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "12366",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12366"
              },
              {
                "name": "64195",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64195"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt"
              },
              {
                "name": "39607",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39607"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in openMairie Openfoncier 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-02-27T17:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "12366",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12366"
            },
            {
              "name": "64195",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64195"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt"
            },
            {
              "name": "39607",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39607"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1948",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in openMairie Openfoncier 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "12366",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12366"
                },
                {
                  "name": "64195",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64195"
                },
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt"
                },
                {
                  "name": "39607",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39607"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1948",
        "datePublished": "2010-05-18T18:00:00.000Z",
        "dateReserved": "2010-05-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:12.858Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1947 (GCVE-0-2010-1947)

    Vulnerability from nvd – Published: 2010-05-18 18:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in openMairie Openregistrecil 1.02, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter. NOTE: this may be related to CVE-2007-2069.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/39534 third-party-advisoryx_refsource_SECUNIA
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://www.securityfocus.com/bid/39611 vdb-entryx_refsource_BID
    http://www.osvdb.org/63964 vdb-entryx_refsource_OSVDB
    http://www.exploit-db.com/exploits/12313 exploitx_refsource_EXPLOIT-DB
    Date Public
    2010-04-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:13.207Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "39534",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39534"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt"
              },
              {
                "name": "39611",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/39611"
              },
              {
                "name": "63964",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63964"
              },
              {
                "name": "12313",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12313"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in openMairie Openregistrecil 1.02, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter.  NOTE: this may be related to CVE-2007-2069."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-02-27T17:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "39534",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39534"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt"
            },
            {
              "name": "39611",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/39611"
            },
            {
              "name": "63964",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63964"
            },
            {
              "name": "12313",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12313"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1947",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in openMairie Openregistrecil 1.02, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter.  NOTE: this may be related to CVE-2007-2069."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "39534",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39534"
                },
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt"
                },
                {
                  "name": "39611",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/39611"
                },
                {
                  "name": "63964",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63964"
                },
                {
                  "name": "12313",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12313"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1947",
        "datePublished": "2010-05-18T18:00:00.000Z",
        "dateReserved": "2010-05-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:13.207Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1946 (GCVE-0-2010-1946)

    Vulnerability from nvd – Published: 2010-05-18 18:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Multiple PHP remote file inclusion vulnerabilities in openMairie Openregistrecil 1.02, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation_normale.class.php, (2) collectivite.class.php, (3) dossier.class.php, (4) norme_simplifiee.class.php, (5) registre.class.php, (6) autorisation_unique.class.php, (7) demande_avis.class.php, (8) droit.class.php, (9) organisme.class.php, (10) service.class.php, (11) categorie_donnee.class.php, (12) destinataire.class.php, (13) profil.class.php, (14) tabdyn_visu.class.php, (15) categorie_personne.class.php, (16) dispense.class.php, (17) modificatif.class.php, (18) reference.class.php, and (19) utilisateur.class.php in obj/.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/63955 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63954 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63959 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63947 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63949 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63953 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63962 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63951 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63961 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63946 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63945 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/39534 third-party-advisoryx_refsource_SECUNIA
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://www.securityfocus.com/bid/39611 vdb-entryx_refsource_BID
    http://www.osvdb.org/63956 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63950 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63960 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63957 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63952 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63963 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63958 vdb-entryx_refsource_OSVDB
    http://www.exploit-db.com/exploits/12313 exploitx_refsource_EXPLOIT-DB
    http://www.osvdb.org/63948 vdb-entryx_refsource_OSVDB
    Date Public
    2010-04-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:13.197Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "63955",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63955"
              },
              {
                "name": "63954",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63954"
              },
              {
                "name": "63959",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63959"
              },
              {
                "name": "63947",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63947"
              },
              {
                "name": "63949",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63949"
              },
              {
                "name": "63953",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63953"
              },
              {
                "name": "63962",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63962"
              },
              {
                "name": "63951",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63951"
              },
              {
                "name": "63961",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63961"
              },
              {
                "name": "63946",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63946"
              },
              {
                "name": "63945",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63945"
              },
              {
                "name": "39534",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39534"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt"
              },
              {
                "name": "39611",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/39611"
              },
              {
                "name": "63956",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63956"
              },
              {
                "name": "63950",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63950"
              },
              {
                "name": "63960",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63960"
              },
              {
                "name": "63957",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63957"
              },
              {
                "name": "63952",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63952"
              },
              {
                "name": "63963",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63963"
              },
              {
                "name": "63958",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63958"
              },
              {
                "name": "12313",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12313"
              },
              {
                "name": "63948",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63948"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie Openregistrecil 1.02, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation_normale.class.php, (2) collectivite.class.php, (3) dossier.class.php, (4) norme_simplifiee.class.php, (5) registre.class.php, (6) autorisation_unique.class.php, (7) demande_avis.class.php, (8) droit.class.php, (9) organisme.class.php, (10) service.class.php, (11) categorie_donnee.class.php, (12) destinataire.class.php, (13) profil.class.php, (14) tabdyn_visu.class.php, (15) categorie_personne.class.php, (16) dispense.class.php, (17) modificatif.class.php, (18) reference.class.php, and (19) utilisateur.class.php in obj/."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-02-27T17:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "63955",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63955"
            },
            {
              "name": "63954",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63954"
            },
            {
              "name": "63959",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63959"
            },
            {
              "name": "63947",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63947"
            },
            {
              "name": "63949",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63949"
            },
            {
              "name": "63953",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63953"
            },
            {
              "name": "63962",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63962"
            },
            {
              "name": "63951",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63951"
            },
            {
              "name": "63961",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63961"
            },
            {
              "name": "63946",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63946"
            },
            {
              "name": "63945",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63945"
            },
            {
              "name": "39534",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39534"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt"
            },
            {
              "name": "39611",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/39611"
            },
            {
              "name": "63956",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63956"
            },
            {
              "name": "63950",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63950"
            },
            {
              "name": "63960",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63960"
            },
            {
              "name": "63957",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63957"
            },
            {
              "name": "63952",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63952"
            },
            {
              "name": "63963",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63963"
            },
            {
              "name": "63958",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63958"
            },
            {
              "name": "12313",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12313"
            },
            {
              "name": "63948",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63948"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1946",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie Openregistrecil 1.02, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation_normale.class.php, (2) collectivite.class.php, (3) dossier.class.php, (4) norme_simplifiee.class.php, (5) registre.class.php, (6) autorisation_unique.class.php, (7) demande_avis.class.php, (8) droit.class.php, (9) organisme.class.php, (10) service.class.php, (11) categorie_donnee.class.php, (12) destinataire.class.php, (13) profil.class.php, (14) tabdyn_visu.class.php, (15) categorie_personne.class.php, (16) dispense.class.php, (17) modificatif.class.php, (18) reference.class.php, and (19) utilisateur.class.php in obj/."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "63955",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63955"
                },
                {
                  "name": "63954",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63954"
                },
                {
                  "name": "63959",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63959"
                },
                {
                  "name": "63947",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63947"
                },
                {
                  "name": "63949",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63949"
                },
                {
                  "name": "63953",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63953"
                },
                {
                  "name": "63962",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63962"
                },
                {
                  "name": "63951",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63951"
                },
                {
                  "name": "63961",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63961"
                },
                {
                  "name": "63946",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63946"
                },
                {
                  "name": "63945",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63945"
                },
                {
                  "name": "39534",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39534"
                },
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt"
                },
                {
                  "name": "39611",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/39611"
                },
                {
                  "name": "63956",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63956"
                },
                {
                  "name": "63950",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63950"
                },
                {
                  "name": "63960",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63960"
                },
                {
                  "name": "63957",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63957"
                },
                {
                  "name": "63952",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63952"
                },
                {
                  "name": "63963",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63963"
                },
                {
                  "name": "63958",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63958"
                },
                {
                  "name": "12313",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12313"
                },
                {
                  "name": "63948",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63948"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1946",
        "datePublished": "2010-05-18T18:00:00.000Z",
        "dateReserved": "2010-05-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:13.197Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1945 (GCVE-0-2010-1945)

    Vulnerability from nvd – Published: 2010-05-18 18:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Multiple PHP remote file inclusion vulnerabilities in openMairie Openfoncier 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) action.class.php, (2) architecte.class.php, (3) avis.class.php, (4) bible.class.php, and (5) blocnote.class.php in obj/.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/64197 vdb-entryx_refsource_OSVDB
    http://www.exploit-db.com/exploits/12366 exploitx_refsource_EXPLOIT-DB
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://secunia.com/advisories/39607 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/64196 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64200 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64199 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64198 vdb-entryx_refsource_OSVDB
    Date Public
    2010-04-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:13.725Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "64197",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64197"
              },
              {
                "name": "12366",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12366"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt"
              },
              {
                "name": "39607",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39607"
              },
              {
                "name": "64196",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64196"
              },
              {
                "name": "64200",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64200"
              },
              {
                "name": "64199",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64199"
              },
              {
                "name": "64198",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64198"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie Openfoncier 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) action.class.php, (2) architecte.class.php, (3) avis.class.php, (4) bible.class.php, and (5) blocnote.class.php in obj/."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-02-27T17:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "64197",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64197"
            },
            {
              "name": "12366",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12366"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt"
            },
            {
              "name": "39607",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39607"
            },
            {
              "name": "64196",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64196"
            },
            {
              "name": "64200",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64200"
            },
            {
              "name": "64199",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64199"
            },
            {
              "name": "64198",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64198"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1945",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie Openfoncier 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) action.class.php, (2) architecte.class.php, (3) avis.class.php, (4) bible.class.php, and (5) blocnote.class.php in obj/."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "64197",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64197"
                },
                {
                  "name": "12366",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12366"
                },
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt"
                },
                {
                  "name": "39607",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39607"
                },
                {
                  "name": "64196",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64196"
                },
                {
                  "name": "64200",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64200"
                },
                {
                  "name": "64199",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64199"
                },
                {
                  "name": "64198",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64198"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1945",
        "datePublished": "2010-05-18T18:00:00.000Z",
        "dateReserved": "2010-05-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:13.725Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1944 (GCVE-0-2010-1944)

    Vulnerability from nvd – Published: 2010-05-18 18:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Multiple PHP remote file inclusion vulnerabilities in openMairie openCimetiere 2.01, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation.class.php, (2) courrierautorisation.class.php, (3) droit.class.php, (4) profil.class.php, (5) temp_defunt_sansemplacement.class.php, (6) utils.class.php, (7) cimetiere.class.php, (8) defunt.class.php, (9) emplacement.class.php, (10) tab_emplacement.class.php, (11) temp_emplacement.class.php, (12) voie.class.php, (13) collectivite.class.php, (14) defunttransfert.class.php, (15) entreprise.class.php, (16) temp_autorisation.class.php, (17) travaux.class.php, (18) zone.class.php, (19) courrier.class.php, (20) dossier.class.php, (21) plans.class.php, (22) temp_defunt.class.php, and (23) utilisateur.class.php in obj/.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/64238 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64231 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64223 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64237 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64228 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64230 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64244 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.osvdb.org/64239 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64225 vdb-entryx_refsource_OSVDB
    http://www.exploit-db.com/exploits/12476 exploitx_refsource_EXPLOIT-DB
    http://www.osvdb.org/64227 vdb-entryx_refsource_OSVDB
    http://packetstormsecurity.org/1005-exploits/open… x_refsource_MISC
    http://www.securityfocus.com/bid/39883 vdb-entryx_refsource_BID
    http://www.osvdb.org/64245 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64242 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64234 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64232 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/39687 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/64229 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64235 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64233 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64241 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64240 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64236 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2010/1050 vdb-entryx_refsource_VUPEN
    http://www.osvdb.org/64226 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64243 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64224 vdb-entryx_refsource_OSVDB
    Date Public
    2010-05-01 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:14.530Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "64238",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64238"
              },
              {
                "name": "64231",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64231"
              },
              {
                "name": "64223",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64223"
              },
              {
                "name": "64237",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64237"
              },
              {
                "name": "64228",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64228"
              },
              {
                "name": "64230",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64230"
              },
              {
                "name": "64244",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64244"
              },
              {
                "name": "opencimetiere-pathom-file-include(58267)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58267"
              },
              {
                "name": "64239",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64239"
              },
              {
                "name": "64225",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64225"
              },
              {
                "name": "12476",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12476"
              },
              {
                "name": "64227",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64227"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1005-exploits/opencimetiere-rfi.txt"
              },
              {
                "name": "39883",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/39883"
              },
              {
                "name": "64245",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64245"
              },
              {
                "name": "64242",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64242"
              },
              {
                "name": "64234",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64234"
              },
              {
                "name": "64232",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64232"
              },
              {
                "name": "39687",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39687"
              },
              {
                "name": "64229",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64229"
              },
              {
                "name": "64235",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64235"
              },
              {
                "name": "64233",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64233"
              },
              {
                "name": "64241",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64241"
              },
              {
                "name": "64240",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64240"
              },
              {
                "name": "64236",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64236"
              },
              {
                "name": "ADV-2010-1050",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2010/1050"
              },
              {
                "name": "64226",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64226"
              },
              {
                "name": "64243",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64243"
              },
              {
                "name": "64224",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64224"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-05-01T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie openCimetiere 2.01, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation.class.php, (2) courrierautorisation.class.php, (3) droit.class.php, (4) profil.class.php, (5) temp_defunt_sansemplacement.class.php, (6) utils.class.php, (7) cimetiere.class.php, (8) defunt.class.php, (9) emplacement.class.php, (10) tab_emplacement.class.php, (11) temp_emplacement.class.php, (12) voie.class.php, (13) collectivite.class.php, (14) defunttransfert.class.php, (15) entreprise.class.php, (16) temp_autorisation.class.php, (17) travaux.class.php, (18) zone.class.php, (19) courrier.class.php, (20) dossier.class.php, (21) plans.class.php, (22) temp_defunt.class.php, and (23) utilisateur.class.php in obj/."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "64238",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64238"
            },
            {
              "name": "64231",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64231"
            },
            {
              "name": "64223",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64223"
            },
            {
              "name": "64237",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64237"
            },
            {
              "name": "64228",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64228"
            },
            {
              "name": "64230",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64230"
            },
            {
              "name": "64244",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64244"
            },
            {
              "name": "opencimetiere-pathom-file-include(58267)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58267"
            },
            {
              "name": "64239",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64239"
            },
            {
              "name": "64225",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64225"
            },
            {
              "name": "12476",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12476"
            },
            {
              "name": "64227",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64227"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1005-exploits/opencimetiere-rfi.txt"
            },
            {
              "name": "39883",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/39883"
            },
            {
              "name": "64245",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64245"
            },
            {
              "name": "64242",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64242"
            },
            {
              "name": "64234",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64234"
            },
            {
              "name": "64232",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64232"
            },
            {
              "name": "39687",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39687"
            },
            {
              "name": "64229",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64229"
            },
            {
              "name": "64235",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64235"
            },
            {
              "name": "64233",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64233"
            },
            {
              "name": "64241",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64241"
            },
            {
              "name": "64240",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64240"
            },
            {
              "name": "64236",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64236"
            },
            {
              "name": "ADV-2010-1050",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2010/1050"
            },
            {
              "name": "64226",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64226"
            },
            {
              "name": "64243",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64243"
            },
            {
              "name": "64224",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64224"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1944",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie openCimetiere 2.01, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation.class.php, (2) courrierautorisation.class.php, (3) droit.class.php, (4) profil.class.php, (5) temp_defunt_sansemplacement.class.php, (6) utils.class.php, (7) cimetiere.class.php, (8) defunt.class.php, (9) emplacement.class.php, (10) tab_emplacement.class.php, (11) temp_emplacement.class.php, (12) voie.class.php, (13) collectivite.class.php, (14) defunttransfert.class.php, (15) entreprise.class.php, (16) temp_autorisation.class.php, (17) travaux.class.php, (18) zone.class.php, (19) courrier.class.php, (20) dossier.class.php, (21) plans.class.php, (22) temp_defunt.class.php, and (23) utilisateur.class.php in obj/."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "64238",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64238"
                },
                {
                  "name": "64231",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64231"
                },
                {
                  "name": "64223",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64223"
                },
                {
                  "name": "64237",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64237"
                },
                {
                  "name": "64228",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64228"
                },
                {
                  "name": "64230",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64230"
                },
                {
                  "name": "64244",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64244"
                },
                {
                  "name": "opencimetiere-pathom-file-include(58267)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58267"
                },
                {
                  "name": "64239",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64239"
                },
                {
                  "name": "64225",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64225"
                },
                {
                  "name": "12476",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12476"
                },
                {
                  "name": "64227",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64227"
                },
                {
                  "name": "http://packetstormsecurity.org/1005-exploits/opencimetiere-rfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1005-exploits/opencimetiere-rfi.txt"
                },
                {
                  "name": "39883",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/39883"
                },
                {
                  "name": "64245",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64245"
                },
                {
                  "name": "64242",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64242"
                },
                {
                  "name": "64234",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64234"
                },
                {
                  "name": "64232",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64232"
                },
                {
                  "name": "39687",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39687"
                },
                {
                  "name": "64229",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64229"
                },
                {
                  "name": "64235",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64235"
                },
                {
                  "name": "64233",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64233"
                },
                {
                  "name": "64241",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64241"
                },
                {
                  "name": "64240",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64240"
                },
                {
                  "name": "64236",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64236"
                },
                {
                  "name": "ADV-2010-1050",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2010/1050"
                },
                {
                  "name": "64226",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64226"
                },
                {
                  "name": "64243",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64243"
                },
                {
                  "name": "64224",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64224"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1944",
        "datePublished": "2010-05-18T18:00:00.000Z",
        "dateReserved": "2010-05-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:14.530Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1936 (GCVE-0-2010-1936)

    Vulnerability from nvd – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in openMairie openComInterne 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/64211 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://secunia.com/advisories/39623 third-party-advisoryx_refsource_SECUNIA
    http://www.exploit-db.com/exploits/12396 exploitx_refsource_EXPLOIT-DB
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    Date Public
    2010-04-26 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:13.605Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "64211",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64211"
              },
              {
                "name": "opencominterne-soustab-file-include(58129)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58129"
              },
              {
                "name": "39623",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39623"
              },
              {
                "name": "12396",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12396"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/opencominterne-lfi.txt"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-26T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in openMairie openComInterne 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "64211",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64211"
            },
            {
              "name": "opencominterne-soustab-file-include(58129)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58129"
            },
            {
              "name": "39623",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39623"
            },
            {
              "name": "12396",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12396"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/opencominterne-lfi.txt"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1936",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in openMairie openComInterne 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "64211",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64211"
                },
                {
                  "name": "opencominterne-soustab-file-include(58129)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58129"
                },
                {
                  "name": "39623",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39623"
                },
                {
                  "name": "12396",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12396"
                },
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/opencominterne-lfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/opencominterne-lfi.txt"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1936",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:13.605Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1935 (GCVE-0-2010-1935)

    Vulnerability from nvd – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://www.osvdb.org/64194 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://secunia.com/advisories/39605 third-party-advisoryx_refsource_SECUNIA
    http://www.exploit-db.com/exploits/12364 exploitx_refsource_EXPLOIT-DB
    Date Public
    2010-04-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:13.765Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/openpresse-lfi.txt"
              },
              {
                "name": "64194",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64194"
              },
              {
                "name": "openpresse-soustab-file-include(58090)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58090"
              },
              {
                "name": "39605",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39605"
              },
              {
                "name": "12364",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12364"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/openpresse-lfi.txt"
            },
            {
              "name": "64194",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64194"
            },
            {
              "name": "openpresse-soustab-file-include(58090)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58090"
            },
            {
              "name": "39605",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39605"
            },
            {
              "name": "12364",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12364"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1935",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/openpresse-lfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/openpresse-lfi.txt"
                },
                {
                  "name": "64194",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64194"
                },
                {
                  "name": "openpresse-soustab-file-include(58090)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58090"
                },
                {
                  "name": "39605",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39605"
                },
                {
                  "name": "12364",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12364"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1935",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:13.765Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1934 (GCVE-0-2010-1934)

    Vulnerability from nvd – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Multiple PHP remote file inclusion vulnerabilities in openMairie openPlanning 1.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) categorie.class.php, (2) profil.class.php, (3) collectivite.class.php, (4) ressource.class.php, (5) droit.class.php, (6) utilisateur.class.php, and (7) planning.class.php in obj/.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/64191 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64187 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64186 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/39606 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/64188 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64192 vdb-entryx_refsource_OSVDB
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://www.exploit-db.com/exploits/12365 exploitx_refsource_EXPLOIT-DB
    http://www.osvdb.org/64189 vdb-entryx_refsource_OSVDB
    Date Public
    2010-04-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:14.410Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "64191",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64191"
              },
              {
                "name": "64187",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64187"
              },
              {
                "name": "64186",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64186"
              },
              {
                "name": "39606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39606"
              },
              {
                "name": "64188",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64188"
              },
              {
                "name": "64192",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64192"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt"
              },
              {
                "name": "12365",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12365"
              },
              {
                "name": "64189",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64189"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie openPlanning 1.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) categorie.class.php, (2) profil.class.php, (3) collectivite.class.php, (4) ressource.class.php, (5) droit.class.php, (6) utilisateur.class.php, and (7) planning.class.php in obj/."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-02-27T17:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "64191",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64191"
            },
            {
              "name": "64187",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64187"
            },
            {
              "name": "64186",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64186"
            },
            {
              "name": "39606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39606"
            },
            {
              "name": "64188",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64188"
            },
            {
              "name": "64192",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64192"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt"
            },
            {
              "name": "12365",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12365"
            },
            {
              "name": "64189",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64189"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1934",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie openPlanning 1.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) categorie.class.php, (2) profil.class.php, (3) collectivite.class.php, (4) ressource.class.php, (5) droit.class.php, (6) utilisateur.class.php, and (7) planning.class.php in obj/."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "64191",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64191"
                },
                {
                  "name": "64187",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64187"
                },
                {
                  "name": "64186",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64186"
                },
                {
                  "name": "39606",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39606"
                },
                {
                  "name": "64188",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64188"
                },
                {
                  "name": "64192",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64192"
                },
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt"
                },
                {
                  "name": "12365",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12365"
                },
                {
                  "name": "64189",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64189"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1934",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:14.410Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1928 (GCVE-0-2010-1928)

    Vulnerability from nvd – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in openMairie openPlanning 1.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/64185 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://secunia.com/advisories/39606 third-party-advisoryx_refsource_SECUNIA
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://www.exploit-db.com/exploits/12365 exploitx_refsource_EXPLOIT-DB
    Date Public
    2010-04-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:12.843Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "64185",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64185"
              },
              {
                "name": "openpresse-soustab-file-include(58090)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58090"
              },
              {
                "name": "39606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39606"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt"
              },
              {
                "name": "12365",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12365"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in openMairie openPlanning 1.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "64185",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64185"
            },
            {
              "name": "openpresse-soustab-file-include(58090)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58090"
            },
            {
              "name": "39606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39606"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt"
            },
            {
              "name": "12365",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12365"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1928",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in openMairie openPlanning 1.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "64185",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64185"
                },
                {
                  "name": "openpresse-soustab-file-include(58090)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58090"
                },
                {
                  "name": "39606",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39606"
                },
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt"
                },
                {
                  "name": "12365",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12365"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1928",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:12.843Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1927 (GCVE-0-2010-1927)

    Vulnerability from nvd – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Multiple PHP remote file inclusion vulnerabilities in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) bible.class.php, (2) dossier.class.php, (3) service.class.php, (4) collectivite.class.php, (5) droit.class.php, (6) tache.class.php, (7) emetteur.class.php, (8) utilisateur.class.php, (9) courrier.recherche.tab.class.php, and (10) profil.class.php in obj/. NOTE: some of these details are obtained from third party information.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://www.osvdb.org/64207 vdb-entryx_refsource_OSVDB
    http://www.exploit-db.com/exploits/12398 exploitx_refsource_EXPLOIT-DB
    http://www.vupen.com/english/advisories/2010/1003 vdb-entryx_refsource_VUPEN
    http://www.osvdb.org/64206 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64204 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64205 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64208 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64202 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64210 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64203 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/39624 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/64209 vdb-entryx_refsource_OSVDB
    Date Public
    2010-04-26 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:12.827Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt"
              },
              {
                "name": "64207",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64207"
              },
              {
                "name": "12398",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12398"
              },
              {
                "name": "ADV-2010-1003",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2010/1003"
              },
              {
                "name": "64206",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64206"
              },
              {
                "name": "64204",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64204"
              },
              {
                "name": "64205",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64205"
              },
              {
                "name": "64208",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64208"
              },
              {
                "name": "64202",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64202"
              },
              {
                "name": "64210",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64210"
              },
              {
                "name": "64203",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64203"
              },
              {
                "name": "39624",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39624"
              },
              {
                "name": "64209",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64209"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-26T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) bible.class.php, (2) dossier.class.php, (3) service.class.php, (4) collectivite.class.php, (5) droit.class.php, (6) tache.class.php, (7) emetteur.class.php, (8) utilisateur.class.php, (9) courrier.recherche.tab.class.php, and (10) profil.class.php in obj/.  NOTE: some of these details are obtained from third party information."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-02-27T17:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt"
            },
            {
              "name": "64207",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64207"
            },
            {
              "name": "12398",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12398"
            },
            {
              "name": "ADV-2010-1003",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2010/1003"
            },
            {
              "name": "64206",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64206"
            },
            {
              "name": "64204",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64204"
            },
            {
              "name": "64205",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64205"
            },
            {
              "name": "64208",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64208"
            },
            {
              "name": "64202",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64202"
            },
            {
              "name": "64210",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64210"
            },
            {
              "name": "64203",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64203"
            },
            {
              "name": "39624",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39624"
            },
            {
              "name": "64209",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64209"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1927",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) bible.class.php, (2) dossier.class.php, (3) service.class.php, (4) collectivite.class.php, (5) droit.class.php, (6) tache.class.php, (7) emetteur.class.php, (8) utilisateur.class.php, (9) courrier.recherche.tab.class.php, and (10) profil.class.php in obj/.  NOTE: some of these details are obtained from third party information."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt"
                },
                {
                  "name": "64207",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64207"
                },
                {
                  "name": "12398",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12398"
                },
                {
                  "name": "ADV-2010-1003",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2010/1003"
                },
                {
                  "name": "64206",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64206"
                },
                {
                  "name": "64204",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64204"
                },
                {
                  "name": "64205",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64205"
                },
                {
                  "name": "64208",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64208"
                },
                {
                  "name": "64202",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64202"
                },
                {
                  "name": "64210",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64210"
                },
                {
                  "name": "64203",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64203"
                },
                {
                  "name": "39624",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39624"
                },
                {
                  "name": "64209",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64209"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1927",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:12.827Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1926 (GCVE-0-2010-1926)

    Vulnerability from nvd – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069. NOTE: some of these details are obtained from third party information.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://www.exploit-db.com/exploits/12398 exploitx_refsource_EXPLOIT-DB
    http://www.osvdb.org/64201 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2010/1003 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/39624 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2010-04-26 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:14.133Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt"
              },
              {
                "name": "12398",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12398"
              },
              {
                "name": "64201",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64201"
              },
              {
                "name": "ADV-2010-1003",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2010/1003"
              },
              {
                "name": "39624",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39624"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-26T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.  NOTE: some of these details are obtained from third party information."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-03-27T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt"
            },
            {
              "name": "12398",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12398"
            },
            {
              "name": "64201",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64201"
            },
            {
              "name": "ADV-2010-1003",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2010/1003"
            },
            {
              "name": "39624",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39624"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1926",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.  NOTE: some of these details are obtained from third party information."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt"
                },
                {
                  "name": "12398",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12398"
                },
                {
                  "name": "64201",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64201"
                },
                {
                  "name": "ADV-2010-1003",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2010/1003"
                },
                {
                  "name": "39624",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39624"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1926",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:14.133Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1921 (GCVE-0-2010-1921)

    Vulnerability from nvd – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Multiple PHP remote file inclusion vulnerabilities in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) annuaire.class.php, (2) droit.class.php, (3) collectivite.class.php, (4) profil.class.php, (5) direction.class.php, (6) service.class.php, (7) directiongenerale.class.php, and (8) utilisateur.class.php in obj/.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/64180 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64179 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64181 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/39673 third-party-advisoryx_refsource_SECUNIA
    http://www.vupen.com/english/advisories/2010/1059 vdb-entryx_refsource_VUPEN
    http://www.osvdb.org/64184 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64176 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64178 vdb-entryx_refsource_OSVDB
    http://packetstormsecurity.org/1005-exploits/open… x_refsource_MISC
    http://www.exploit-db.com/exploits/12486 exploitx_refsource_EXPLOIT-DB
    http://www.securityfocus.com/bid/39887 vdb-entryx_refsource_BID
    http://www.osvdb.org/64182 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64177 vdb-entryx_refsource_OSVDB
    Date Public
    2010-05-02 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:13.186Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "64180",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64180"
              },
              {
                "name": "64179",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64179"
              },
              {
                "name": "64181",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64181"
              },
              {
                "name": "39673",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39673"
              },
              {
                "name": "ADV-2010-1059",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2010/1059"
              },
              {
                "name": "64184",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64184"
              },
              {
                "name": "64176",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64176"
              },
              {
                "name": "64178",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64178"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt"
              },
              {
                "name": "12486",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12486"
              },
              {
                "name": "39887",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/39887"
              },
              {
                "name": "64182",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64182"
              },
              {
                "name": "64177",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64177"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-05-02T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple PHP remote file inclusion vulnerabilities in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) annuaire.class.php, (2) droit.class.php, (3) collectivite.class.php, (4) profil.class.php, (5) direction.class.php, (6) service.class.php, (7) directiongenerale.class.php, and (8) utilisateur.class.php in obj/."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-03-27T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "64180",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64180"
            },
            {
              "name": "64179",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64179"
            },
            {
              "name": "64181",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64181"
            },
            {
              "name": "39673",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39673"
            },
            {
              "name": "ADV-2010-1059",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2010/1059"
            },
            {
              "name": "64184",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64184"
            },
            {
              "name": "64176",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64176"
            },
            {
              "name": "64178",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64178"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt"
            },
            {
              "name": "12486",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12486"
            },
            {
              "name": "39887",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/39887"
            },
            {
              "name": "64182",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64182"
            },
            {
              "name": "64177",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64177"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1921",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple PHP remote file inclusion vulnerabilities in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) annuaire.class.php, (2) droit.class.php, (3) collectivite.class.php, (4) profil.class.php, (5) direction.class.php, (6) service.class.php, (7) directiongenerale.class.php, and (8) utilisateur.class.php in obj/."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "64180",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64180"
                },
                {
                  "name": "64179",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64179"
                },
                {
                  "name": "64181",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64181"
                },
                {
                  "name": "39673",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39673"
                },
                {
                  "name": "ADV-2010-1059",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2010/1059"
                },
                {
                  "name": "64184",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64184"
                },
                {
                  "name": "64176",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64176"
                },
                {
                  "name": "64178",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64178"
                },
                {
                  "name": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt"
                },
                {
                  "name": "12486",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12486"
                },
                {
                  "name": "39887",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/39887"
                },
                {
                  "name": "64182",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64182"
                },
                {
                  "name": "64177",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64177"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1921",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:13.186Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1920 (GCVE-0-2010-1920)

    Vulnerability from nvd – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/39673 third-party-advisoryx_refsource_SECUNIA
    http://www.vupen.com/english/advisories/2010/1059 vdb-entryx_refsource_VUPEN
    http://packetstormsecurity.org/1005-exploits/open… x_refsource_MISC
    http://www.exploit-db.com/exploits/12486 exploitx_refsource_EXPLOIT-DB
    http://www.securityfocus.com/bid/39887 vdb-entryx_refsource_BID
    Date Public
    2010-05-02 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:12.834Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "39673",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39673"
              },
              {
                "name": "ADV-2010-1059",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2010/1059"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt"
              },
              {
                "name": "12486",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12486"
              },
              {
                "name": "39887",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/39887"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-05-02T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-03-27T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "39673",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39673"
            },
            {
              "name": "ADV-2010-1059",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2010/1059"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt"
            },
            {
              "name": "12486",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12486"
            },
            {
              "name": "39887",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/39887"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1920",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "39673",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39673"
                },
                {
                  "name": "ADV-2010-1059",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2010/1059"
                },
                {
                  "name": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt"
                },
                {
                  "name": "12486",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12486"
                },
                {
                  "name": "39887",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/39887"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1920",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:12.834Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-2069 (GCVE-0-2007-2069)

    Vulnerability from nvd – Published: 2007-04-18 02:20 – Updated: 2024-08-07 13:23
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in openMairie 1.11 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the dsn[phptype] parameter.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://www.exploit-db.com/exploits/3747 exploitx_refsource_EXPLOIT-DB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/bid/23505 vdb-entryx_refsource_BID
    http://osvdb.org/37416 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2007/1421 vdb-entryx_refsource_VUPEN
    Date Public
    2007-04-16 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T13:23:50.322Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "3747",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "https://www.exploit-db.com/exploits/3747"
              },
              {
                "name": "openmairie-soustab-file-include(33700)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33700"
              },
              {
                "name": "23505",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/23505"
              },
              {
                "name": "37416",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/37416"
              },
              {
                "name": "ADV-2007-1421",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/1421"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-04-16T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in openMairie 1.11 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the dsn[phptype] parameter."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-10-10T00:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "3747",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "https://www.exploit-db.com/exploits/3747"
            },
            {
              "name": "openmairie-soustab-file-include(33700)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33700"
            },
            {
              "name": "23505",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/23505"
            },
            {
              "name": "37416",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/37416"
            },
            {
              "name": "ADV-2007-1421",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/1421"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-2069",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in openMairie 1.11 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the dsn[phptype] parameter."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "3747",
                  "refsource": "EXPLOIT-DB",
                  "url": "https://www.exploit-db.com/exploits/3747"
                },
                {
                  "name": "openmairie-soustab-file-include(33700)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33700"
                },
                {
                  "name": "23505",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/23505"
                },
                {
                  "name": "37416",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/37416"
                },
                {
                  "name": "ADV-2007-1421",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/1421"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-2069",
        "datePublished": "2007-04-18T02:20:00.000Z",
        "dateReserved": "2007-04-17T00:00:00.000Z",
        "dateUpdated": "2024-08-07T13:23:50.322Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1999 (GCVE-0-2010-1999)

    Vulnerability from cvelistv5 – Published: 2010-05-20 17:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in OpenMairie Opencatalogue 1.024, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/39688 third-party-advisoryx_refsource_SECUNIA
    http://packetstormsecurity.org/1005-exploits/open… x_refsource_MISC
    http://www.osvdb.org/64183 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2010/1051 vdb-entryx_refsource_VUPEN
    http://www.exploit-db.com/exploits/12475 exploitx_refsource_EXPLOIT-DB
    Date Public
    2010-05-03 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:13.323Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "39688",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39688"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1005-exploits/opencatalogue-lfi.txt"
              },
              {
                "name": "64183",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64183"
              },
              {
                "name": "ADV-2010-1051",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2010/1051"
              },
              {
                "name": "12475",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12475"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-05-03T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in OpenMairie Opencatalogue 1.024, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-02-27T17:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "39688",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39688"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1005-exploits/opencatalogue-lfi.txt"
            },
            {
              "name": "64183",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64183"
            },
            {
              "name": "ADV-2010-1051",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2010/1051"
            },
            {
              "name": "12475",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12475"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1999",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in OpenMairie Opencatalogue 1.024, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "39688",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39688"
                },
                {
                  "name": "http://packetstormsecurity.org/1005-exploits/opencatalogue-lfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1005-exploits/opencatalogue-lfi.txt"
                },
                {
                  "name": "64183",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64183"
                },
                {
                  "name": "ADV-2010-1051",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2010/1051"
                },
                {
                  "name": "12475",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12475"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1999",
        "datePublished": "2010-05-20T17:00:00.000Z",
        "dateReserved": "2010-05-20T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:13.323Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1945 (GCVE-0-2010-1945)

    Vulnerability from cvelistv5 – Published: 2010-05-18 18:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Multiple PHP remote file inclusion vulnerabilities in openMairie Openfoncier 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) action.class.php, (2) architecte.class.php, (3) avis.class.php, (4) bible.class.php, and (5) blocnote.class.php in obj/.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/64197 vdb-entryx_refsource_OSVDB
    http://www.exploit-db.com/exploits/12366 exploitx_refsource_EXPLOIT-DB
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://secunia.com/advisories/39607 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/64196 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64200 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64199 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64198 vdb-entryx_refsource_OSVDB
    Date Public
    2010-04-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:13.725Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "64197",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64197"
              },
              {
                "name": "12366",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12366"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt"
              },
              {
                "name": "39607",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39607"
              },
              {
                "name": "64196",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64196"
              },
              {
                "name": "64200",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64200"
              },
              {
                "name": "64199",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64199"
              },
              {
                "name": "64198",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64198"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie Openfoncier 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) action.class.php, (2) architecte.class.php, (3) avis.class.php, (4) bible.class.php, and (5) blocnote.class.php in obj/."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-02-27T17:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "64197",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64197"
            },
            {
              "name": "12366",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12366"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt"
            },
            {
              "name": "39607",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39607"
            },
            {
              "name": "64196",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64196"
            },
            {
              "name": "64200",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64200"
            },
            {
              "name": "64199",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64199"
            },
            {
              "name": "64198",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64198"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1945",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie Openfoncier 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) action.class.php, (2) architecte.class.php, (3) avis.class.php, (4) bible.class.php, and (5) blocnote.class.php in obj/."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "64197",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64197"
                },
                {
                  "name": "12366",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12366"
                },
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt"
                },
                {
                  "name": "39607",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39607"
                },
                {
                  "name": "64196",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64196"
                },
                {
                  "name": "64200",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64200"
                },
                {
                  "name": "64199",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64199"
                },
                {
                  "name": "64198",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64198"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1945",
        "datePublished": "2010-05-18T18:00:00.000Z",
        "dateReserved": "2010-05-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:13.725Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1948 (GCVE-0-2010-1948)

    Vulnerability from cvelistv5 – Published: 2010-05-18 18:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in openMairie Openfoncier 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.exploit-db.com/exploits/12366 exploitx_refsource_EXPLOIT-DB
    http://www.osvdb.org/64195 vdb-entryx_refsource_OSVDB
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://secunia.com/advisories/39607 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2010-04-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:12.858Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "12366",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12366"
              },
              {
                "name": "64195",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64195"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt"
              },
              {
                "name": "39607",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39607"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in openMairie Openfoncier 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-02-27T17:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "12366",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12366"
            },
            {
              "name": "64195",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64195"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt"
            },
            {
              "name": "39607",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39607"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1948",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in openMairie Openfoncier 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "12366",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12366"
                },
                {
                  "name": "64195",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64195"
                },
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/openfoncier-rfilfi.txt"
                },
                {
                  "name": "39607",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39607"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1948",
        "datePublished": "2010-05-18T18:00:00.000Z",
        "dateReserved": "2010-05-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:12.858Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1947 (GCVE-0-2010-1947)

    Vulnerability from cvelistv5 – Published: 2010-05-18 18:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in openMairie Openregistrecil 1.02, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter. NOTE: this may be related to CVE-2007-2069.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/39534 third-party-advisoryx_refsource_SECUNIA
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://www.securityfocus.com/bid/39611 vdb-entryx_refsource_BID
    http://www.osvdb.org/63964 vdb-entryx_refsource_OSVDB
    http://www.exploit-db.com/exploits/12313 exploitx_refsource_EXPLOIT-DB
    Date Public
    2010-04-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:13.207Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "39534",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39534"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt"
              },
              {
                "name": "39611",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/39611"
              },
              {
                "name": "63964",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63964"
              },
              {
                "name": "12313",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12313"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in openMairie Openregistrecil 1.02, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter.  NOTE: this may be related to CVE-2007-2069."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-02-27T17:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "39534",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39534"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt"
            },
            {
              "name": "39611",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/39611"
            },
            {
              "name": "63964",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63964"
            },
            {
              "name": "12313",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12313"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1947",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in openMairie Openregistrecil 1.02, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter.  NOTE: this may be related to CVE-2007-2069."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "39534",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39534"
                },
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt"
                },
                {
                  "name": "39611",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/39611"
                },
                {
                  "name": "63964",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63964"
                },
                {
                  "name": "12313",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12313"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1947",
        "datePublished": "2010-05-18T18:00:00.000Z",
        "dateReserved": "2010-05-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:13.207Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1946 (GCVE-0-2010-1946)

    Vulnerability from cvelistv5 – Published: 2010-05-18 18:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Multiple PHP remote file inclusion vulnerabilities in openMairie Openregistrecil 1.02, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation_normale.class.php, (2) collectivite.class.php, (3) dossier.class.php, (4) norme_simplifiee.class.php, (5) registre.class.php, (6) autorisation_unique.class.php, (7) demande_avis.class.php, (8) droit.class.php, (9) organisme.class.php, (10) service.class.php, (11) categorie_donnee.class.php, (12) destinataire.class.php, (13) profil.class.php, (14) tabdyn_visu.class.php, (15) categorie_personne.class.php, (16) dispense.class.php, (17) modificatif.class.php, (18) reference.class.php, and (19) utilisateur.class.php in obj/.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/63955 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63954 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63959 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63947 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63949 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63953 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63962 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63951 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63961 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63946 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63945 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/39534 third-party-advisoryx_refsource_SECUNIA
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://www.securityfocus.com/bid/39611 vdb-entryx_refsource_BID
    http://www.osvdb.org/63956 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63950 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63960 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63957 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63952 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63963 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/63958 vdb-entryx_refsource_OSVDB
    http://www.exploit-db.com/exploits/12313 exploitx_refsource_EXPLOIT-DB
    http://www.osvdb.org/63948 vdb-entryx_refsource_OSVDB
    Date Public
    2010-04-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:13.197Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "63955",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63955"
              },
              {
                "name": "63954",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63954"
              },
              {
                "name": "63959",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63959"
              },
              {
                "name": "63947",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63947"
              },
              {
                "name": "63949",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63949"
              },
              {
                "name": "63953",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63953"
              },
              {
                "name": "63962",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63962"
              },
              {
                "name": "63951",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63951"
              },
              {
                "name": "63961",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63961"
              },
              {
                "name": "63946",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63946"
              },
              {
                "name": "63945",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63945"
              },
              {
                "name": "39534",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39534"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt"
              },
              {
                "name": "39611",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/39611"
              },
              {
                "name": "63956",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63956"
              },
              {
                "name": "63950",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63950"
              },
              {
                "name": "63960",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63960"
              },
              {
                "name": "63957",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63957"
              },
              {
                "name": "63952",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63952"
              },
              {
                "name": "63963",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63963"
              },
              {
                "name": "63958",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63958"
              },
              {
                "name": "12313",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12313"
              },
              {
                "name": "63948",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63948"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie Openregistrecil 1.02, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation_normale.class.php, (2) collectivite.class.php, (3) dossier.class.php, (4) norme_simplifiee.class.php, (5) registre.class.php, (6) autorisation_unique.class.php, (7) demande_avis.class.php, (8) droit.class.php, (9) organisme.class.php, (10) service.class.php, (11) categorie_donnee.class.php, (12) destinataire.class.php, (13) profil.class.php, (14) tabdyn_visu.class.php, (15) categorie_personne.class.php, (16) dispense.class.php, (17) modificatif.class.php, (18) reference.class.php, and (19) utilisateur.class.php in obj/."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-02-27T17:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "63955",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63955"
            },
            {
              "name": "63954",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63954"
            },
            {
              "name": "63959",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63959"
            },
            {
              "name": "63947",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63947"
            },
            {
              "name": "63949",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63949"
            },
            {
              "name": "63953",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63953"
            },
            {
              "name": "63962",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63962"
            },
            {
              "name": "63951",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63951"
            },
            {
              "name": "63961",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63961"
            },
            {
              "name": "63946",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63946"
            },
            {
              "name": "63945",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63945"
            },
            {
              "name": "39534",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39534"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt"
            },
            {
              "name": "39611",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/39611"
            },
            {
              "name": "63956",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63956"
            },
            {
              "name": "63950",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63950"
            },
            {
              "name": "63960",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63960"
            },
            {
              "name": "63957",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63957"
            },
            {
              "name": "63952",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63952"
            },
            {
              "name": "63963",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63963"
            },
            {
              "name": "63958",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63958"
            },
            {
              "name": "12313",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12313"
            },
            {
              "name": "63948",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63948"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1946",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie Openregistrecil 1.02, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation_normale.class.php, (2) collectivite.class.php, (3) dossier.class.php, (4) norme_simplifiee.class.php, (5) registre.class.php, (6) autorisation_unique.class.php, (7) demande_avis.class.php, (8) droit.class.php, (9) organisme.class.php, (10) service.class.php, (11) categorie_donnee.class.php, (12) destinataire.class.php, (13) profil.class.php, (14) tabdyn_visu.class.php, (15) categorie_personne.class.php, (16) dispense.class.php, (17) modificatif.class.php, (18) reference.class.php, and (19) utilisateur.class.php in obj/."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "63955",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63955"
                },
                {
                  "name": "63954",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63954"
                },
                {
                  "name": "63959",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63959"
                },
                {
                  "name": "63947",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63947"
                },
                {
                  "name": "63949",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63949"
                },
                {
                  "name": "63953",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63953"
                },
                {
                  "name": "63962",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63962"
                },
                {
                  "name": "63951",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63951"
                },
                {
                  "name": "63961",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63961"
                },
                {
                  "name": "63946",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63946"
                },
                {
                  "name": "63945",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63945"
                },
                {
                  "name": "39534",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39534"
                },
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/openregistrecil-rfilfi.txt"
                },
                {
                  "name": "39611",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/39611"
                },
                {
                  "name": "63956",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63956"
                },
                {
                  "name": "63950",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63950"
                },
                {
                  "name": "63960",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63960"
                },
                {
                  "name": "63957",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63957"
                },
                {
                  "name": "63952",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63952"
                },
                {
                  "name": "63963",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63963"
                },
                {
                  "name": "63958",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63958"
                },
                {
                  "name": "12313",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12313"
                },
                {
                  "name": "63948",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63948"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1946",
        "datePublished": "2010-05-18T18:00:00.000Z",
        "dateReserved": "2010-05-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:13.197Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1944 (GCVE-0-2010-1944)

    Vulnerability from cvelistv5 – Published: 2010-05-18 18:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Multiple PHP remote file inclusion vulnerabilities in openMairie openCimetiere 2.01, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation.class.php, (2) courrierautorisation.class.php, (3) droit.class.php, (4) profil.class.php, (5) temp_defunt_sansemplacement.class.php, (6) utils.class.php, (7) cimetiere.class.php, (8) defunt.class.php, (9) emplacement.class.php, (10) tab_emplacement.class.php, (11) temp_emplacement.class.php, (12) voie.class.php, (13) collectivite.class.php, (14) defunttransfert.class.php, (15) entreprise.class.php, (16) temp_autorisation.class.php, (17) travaux.class.php, (18) zone.class.php, (19) courrier.class.php, (20) dossier.class.php, (21) plans.class.php, (22) temp_defunt.class.php, and (23) utilisateur.class.php in obj/.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/64238 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64231 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64223 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64237 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64228 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64230 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64244 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.osvdb.org/64239 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64225 vdb-entryx_refsource_OSVDB
    http://www.exploit-db.com/exploits/12476 exploitx_refsource_EXPLOIT-DB
    http://www.osvdb.org/64227 vdb-entryx_refsource_OSVDB
    http://packetstormsecurity.org/1005-exploits/open… x_refsource_MISC
    http://www.securityfocus.com/bid/39883 vdb-entryx_refsource_BID
    http://www.osvdb.org/64245 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64242 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64234 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64232 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/39687 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/64229 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64235 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64233 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64241 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64240 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64236 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2010/1050 vdb-entryx_refsource_VUPEN
    http://www.osvdb.org/64226 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64243 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64224 vdb-entryx_refsource_OSVDB
    Date Public
    2010-05-01 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:14.530Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "64238",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64238"
              },
              {
                "name": "64231",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64231"
              },
              {
                "name": "64223",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64223"
              },
              {
                "name": "64237",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64237"
              },
              {
                "name": "64228",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64228"
              },
              {
                "name": "64230",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64230"
              },
              {
                "name": "64244",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64244"
              },
              {
                "name": "opencimetiere-pathom-file-include(58267)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58267"
              },
              {
                "name": "64239",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64239"
              },
              {
                "name": "64225",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64225"
              },
              {
                "name": "12476",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12476"
              },
              {
                "name": "64227",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64227"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1005-exploits/opencimetiere-rfi.txt"
              },
              {
                "name": "39883",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/39883"
              },
              {
                "name": "64245",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64245"
              },
              {
                "name": "64242",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64242"
              },
              {
                "name": "64234",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64234"
              },
              {
                "name": "64232",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64232"
              },
              {
                "name": "39687",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39687"
              },
              {
                "name": "64229",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64229"
              },
              {
                "name": "64235",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64235"
              },
              {
                "name": "64233",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64233"
              },
              {
                "name": "64241",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64241"
              },
              {
                "name": "64240",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64240"
              },
              {
                "name": "64236",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64236"
              },
              {
                "name": "ADV-2010-1050",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2010/1050"
              },
              {
                "name": "64226",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64226"
              },
              {
                "name": "64243",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64243"
              },
              {
                "name": "64224",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64224"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-05-01T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie openCimetiere 2.01, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation.class.php, (2) courrierautorisation.class.php, (3) droit.class.php, (4) profil.class.php, (5) temp_defunt_sansemplacement.class.php, (6) utils.class.php, (7) cimetiere.class.php, (8) defunt.class.php, (9) emplacement.class.php, (10) tab_emplacement.class.php, (11) temp_emplacement.class.php, (12) voie.class.php, (13) collectivite.class.php, (14) defunttransfert.class.php, (15) entreprise.class.php, (16) temp_autorisation.class.php, (17) travaux.class.php, (18) zone.class.php, (19) courrier.class.php, (20) dossier.class.php, (21) plans.class.php, (22) temp_defunt.class.php, and (23) utilisateur.class.php in obj/."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "64238",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64238"
            },
            {
              "name": "64231",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64231"
            },
            {
              "name": "64223",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64223"
            },
            {
              "name": "64237",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64237"
            },
            {
              "name": "64228",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64228"
            },
            {
              "name": "64230",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64230"
            },
            {
              "name": "64244",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64244"
            },
            {
              "name": "opencimetiere-pathom-file-include(58267)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58267"
            },
            {
              "name": "64239",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64239"
            },
            {
              "name": "64225",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64225"
            },
            {
              "name": "12476",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12476"
            },
            {
              "name": "64227",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64227"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1005-exploits/opencimetiere-rfi.txt"
            },
            {
              "name": "39883",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/39883"
            },
            {
              "name": "64245",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64245"
            },
            {
              "name": "64242",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64242"
            },
            {
              "name": "64234",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64234"
            },
            {
              "name": "64232",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64232"
            },
            {
              "name": "39687",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39687"
            },
            {
              "name": "64229",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64229"
            },
            {
              "name": "64235",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64235"
            },
            {
              "name": "64233",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64233"
            },
            {
              "name": "64241",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64241"
            },
            {
              "name": "64240",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64240"
            },
            {
              "name": "64236",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64236"
            },
            {
              "name": "ADV-2010-1050",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2010/1050"
            },
            {
              "name": "64226",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64226"
            },
            {
              "name": "64243",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64243"
            },
            {
              "name": "64224",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64224"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1944",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie openCimetiere 2.01, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation.class.php, (2) courrierautorisation.class.php, (3) droit.class.php, (4) profil.class.php, (5) temp_defunt_sansemplacement.class.php, (6) utils.class.php, (7) cimetiere.class.php, (8) defunt.class.php, (9) emplacement.class.php, (10) tab_emplacement.class.php, (11) temp_emplacement.class.php, (12) voie.class.php, (13) collectivite.class.php, (14) defunttransfert.class.php, (15) entreprise.class.php, (16) temp_autorisation.class.php, (17) travaux.class.php, (18) zone.class.php, (19) courrier.class.php, (20) dossier.class.php, (21) plans.class.php, (22) temp_defunt.class.php, and (23) utilisateur.class.php in obj/."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "64238",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64238"
                },
                {
                  "name": "64231",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64231"
                },
                {
                  "name": "64223",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64223"
                },
                {
                  "name": "64237",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64237"
                },
                {
                  "name": "64228",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64228"
                },
                {
                  "name": "64230",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64230"
                },
                {
                  "name": "64244",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64244"
                },
                {
                  "name": "opencimetiere-pathom-file-include(58267)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58267"
                },
                {
                  "name": "64239",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64239"
                },
                {
                  "name": "64225",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64225"
                },
                {
                  "name": "12476",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12476"
                },
                {
                  "name": "64227",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64227"
                },
                {
                  "name": "http://packetstormsecurity.org/1005-exploits/opencimetiere-rfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1005-exploits/opencimetiere-rfi.txt"
                },
                {
                  "name": "39883",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/39883"
                },
                {
                  "name": "64245",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64245"
                },
                {
                  "name": "64242",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64242"
                },
                {
                  "name": "64234",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64234"
                },
                {
                  "name": "64232",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64232"
                },
                {
                  "name": "39687",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39687"
                },
                {
                  "name": "64229",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64229"
                },
                {
                  "name": "64235",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64235"
                },
                {
                  "name": "64233",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64233"
                },
                {
                  "name": "64241",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64241"
                },
                {
                  "name": "64240",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64240"
                },
                {
                  "name": "64236",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64236"
                },
                {
                  "name": "ADV-2010-1050",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2010/1050"
                },
                {
                  "name": "64226",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64226"
                },
                {
                  "name": "64243",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64243"
                },
                {
                  "name": "64224",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64224"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1944",
        "datePublished": "2010-05-18T18:00:00.000Z",
        "dateReserved": "2010-05-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:14.530Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1920 (GCVE-0-2010-1920)

    Vulnerability from cvelistv5 – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/39673 third-party-advisoryx_refsource_SECUNIA
    http://www.vupen.com/english/advisories/2010/1059 vdb-entryx_refsource_VUPEN
    http://packetstormsecurity.org/1005-exploits/open… x_refsource_MISC
    http://www.exploit-db.com/exploits/12486 exploitx_refsource_EXPLOIT-DB
    http://www.securityfocus.com/bid/39887 vdb-entryx_refsource_BID
    Date Public
    2010-05-02 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:12.834Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "39673",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39673"
              },
              {
                "name": "ADV-2010-1059",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2010/1059"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt"
              },
              {
                "name": "12486",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12486"
              },
              {
                "name": "39887",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/39887"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-05-02T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-03-27T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "39673",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39673"
            },
            {
              "name": "ADV-2010-1059",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2010/1059"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt"
            },
            {
              "name": "12486",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12486"
            },
            {
              "name": "39887",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/39887"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1920",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "39673",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39673"
                },
                {
                  "name": "ADV-2010-1059",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2010/1059"
                },
                {
                  "name": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt"
                },
                {
                  "name": "12486",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12486"
                },
                {
                  "name": "39887",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/39887"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1920",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:12.834Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1926 (GCVE-0-2010-1926)

    Vulnerability from cvelistv5 – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069. NOTE: some of these details are obtained from third party information.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://www.exploit-db.com/exploits/12398 exploitx_refsource_EXPLOIT-DB
    http://www.osvdb.org/64201 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2010/1003 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/39624 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2010-04-26 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:14.133Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt"
              },
              {
                "name": "12398",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12398"
              },
              {
                "name": "64201",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64201"
              },
              {
                "name": "ADV-2010-1003",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2010/1003"
              },
              {
                "name": "39624",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39624"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-26T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.  NOTE: some of these details are obtained from third party information."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-03-27T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt"
            },
            {
              "name": "12398",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12398"
            },
            {
              "name": "64201",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64201"
            },
            {
              "name": "ADV-2010-1003",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2010/1003"
            },
            {
              "name": "39624",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39624"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1926",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.  NOTE: some of these details are obtained from third party information."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt"
                },
                {
                  "name": "12398",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12398"
                },
                {
                  "name": "64201",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64201"
                },
                {
                  "name": "ADV-2010-1003",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2010/1003"
                },
                {
                  "name": "39624",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39624"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1926",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:14.133Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1928 (GCVE-0-2010-1928)

    Vulnerability from cvelistv5 – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in openMairie openPlanning 1.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/64185 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://secunia.com/advisories/39606 third-party-advisoryx_refsource_SECUNIA
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://www.exploit-db.com/exploits/12365 exploitx_refsource_EXPLOIT-DB
    Date Public
    2010-04-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:12.843Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "64185",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64185"
              },
              {
                "name": "openpresse-soustab-file-include(58090)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58090"
              },
              {
                "name": "39606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39606"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt"
              },
              {
                "name": "12365",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12365"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in openMairie openPlanning 1.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "64185",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64185"
            },
            {
              "name": "openpresse-soustab-file-include(58090)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58090"
            },
            {
              "name": "39606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39606"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt"
            },
            {
              "name": "12365",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12365"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1928",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in openMairie openPlanning 1.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "64185",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64185"
                },
                {
                  "name": "openpresse-soustab-file-include(58090)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58090"
                },
                {
                  "name": "39606",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39606"
                },
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt"
                },
                {
                  "name": "12365",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12365"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1928",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:12.843Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1935 (GCVE-0-2010-1935)

    Vulnerability from cvelistv5 – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://www.osvdb.org/64194 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://secunia.com/advisories/39605 third-party-advisoryx_refsource_SECUNIA
    http://www.exploit-db.com/exploits/12364 exploitx_refsource_EXPLOIT-DB
    Date Public
    2010-04-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:13.765Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/openpresse-lfi.txt"
              },
              {
                "name": "64194",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64194"
              },
              {
                "name": "openpresse-soustab-file-include(58090)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58090"
              },
              {
                "name": "39605",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39605"
              },
              {
                "name": "12364",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12364"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/openpresse-lfi.txt"
            },
            {
              "name": "64194",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64194"
            },
            {
              "name": "openpresse-soustab-file-include(58090)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58090"
            },
            {
              "name": "39605",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39605"
            },
            {
              "name": "12364",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12364"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1935",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/openpresse-lfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/openpresse-lfi.txt"
                },
                {
                  "name": "64194",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64194"
                },
                {
                  "name": "openpresse-soustab-file-include(58090)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58090"
                },
                {
                  "name": "39605",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39605"
                },
                {
                  "name": "12364",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12364"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1935",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:13.765Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1921 (GCVE-0-2010-1921)

    Vulnerability from cvelistv5 – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Multiple PHP remote file inclusion vulnerabilities in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) annuaire.class.php, (2) droit.class.php, (3) collectivite.class.php, (4) profil.class.php, (5) direction.class.php, (6) service.class.php, (7) directiongenerale.class.php, and (8) utilisateur.class.php in obj/.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/64180 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64179 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64181 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/39673 third-party-advisoryx_refsource_SECUNIA
    http://www.vupen.com/english/advisories/2010/1059 vdb-entryx_refsource_VUPEN
    http://www.osvdb.org/64184 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64176 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64178 vdb-entryx_refsource_OSVDB
    http://packetstormsecurity.org/1005-exploits/open… x_refsource_MISC
    http://www.exploit-db.com/exploits/12486 exploitx_refsource_EXPLOIT-DB
    http://www.securityfocus.com/bid/39887 vdb-entryx_refsource_BID
    http://www.osvdb.org/64182 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64177 vdb-entryx_refsource_OSVDB
    Date Public
    2010-05-02 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:13.186Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "64180",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64180"
              },
              {
                "name": "64179",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64179"
              },
              {
                "name": "64181",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64181"
              },
              {
                "name": "39673",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39673"
              },
              {
                "name": "ADV-2010-1059",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2010/1059"
              },
              {
                "name": "64184",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64184"
              },
              {
                "name": "64176",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64176"
              },
              {
                "name": "64178",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64178"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt"
              },
              {
                "name": "12486",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12486"
              },
              {
                "name": "39887",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/39887"
              },
              {
                "name": "64182",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64182"
              },
              {
                "name": "64177",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64177"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-05-02T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple PHP remote file inclusion vulnerabilities in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) annuaire.class.php, (2) droit.class.php, (3) collectivite.class.php, (4) profil.class.php, (5) direction.class.php, (6) service.class.php, (7) directiongenerale.class.php, and (8) utilisateur.class.php in obj/."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-03-27T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "64180",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64180"
            },
            {
              "name": "64179",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64179"
            },
            {
              "name": "64181",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64181"
            },
            {
              "name": "39673",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39673"
            },
            {
              "name": "ADV-2010-1059",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2010/1059"
            },
            {
              "name": "64184",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64184"
            },
            {
              "name": "64176",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64176"
            },
            {
              "name": "64178",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64178"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt"
            },
            {
              "name": "12486",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12486"
            },
            {
              "name": "39887",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/39887"
            },
            {
              "name": "64182",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64182"
            },
            {
              "name": "64177",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64177"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1921",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple PHP remote file inclusion vulnerabilities in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) annuaire.class.php, (2) droit.class.php, (3) collectivite.class.php, (4) profil.class.php, (5) direction.class.php, (6) service.class.php, (7) directiongenerale.class.php, and (8) utilisateur.class.php in obj/."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "64180",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64180"
                },
                {
                  "name": "64179",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64179"
                },
                {
                  "name": "64181",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64181"
                },
                {
                  "name": "39673",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39673"
                },
                {
                  "name": "ADV-2010-1059",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2010/1059"
                },
                {
                  "name": "64184",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64184"
                },
                {
                  "name": "64176",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64176"
                },
                {
                  "name": "64178",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64178"
                },
                {
                  "name": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1005-exploits/openmairie-rfilfi.txt"
                },
                {
                  "name": "12486",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12486"
                },
                {
                  "name": "39887",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/39887"
                },
                {
                  "name": "64182",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64182"
                },
                {
                  "name": "64177",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64177"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1921",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:13.186Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1936 (GCVE-0-2010-1936)

    Vulnerability from cvelistv5 – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in openMairie openComInterne 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/64211 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://secunia.com/advisories/39623 third-party-advisoryx_refsource_SECUNIA
    http://www.exploit-db.com/exploits/12396 exploitx_refsource_EXPLOIT-DB
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    Date Public
    2010-04-26 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:13.605Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "64211",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64211"
              },
              {
                "name": "opencominterne-soustab-file-include(58129)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58129"
              },
              {
                "name": "39623",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39623"
              },
              {
                "name": "12396",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12396"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/opencominterne-lfi.txt"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-26T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in openMairie openComInterne 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "64211",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64211"
            },
            {
              "name": "opencominterne-soustab-file-include(58129)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58129"
            },
            {
              "name": "39623",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39623"
            },
            {
              "name": "12396",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12396"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/opencominterne-lfi.txt"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1936",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in openMairie openComInterne 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "64211",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64211"
                },
                {
                  "name": "opencominterne-soustab-file-include(58129)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58129"
                },
                {
                  "name": "39623",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39623"
                },
                {
                  "name": "12396",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12396"
                },
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/opencominterne-lfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/opencominterne-lfi.txt"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1936",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:13.605Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1927 (GCVE-0-2010-1927)

    Vulnerability from cvelistv5 – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Multiple PHP remote file inclusion vulnerabilities in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) bible.class.php, (2) dossier.class.php, (3) service.class.php, (4) collectivite.class.php, (5) droit.class.php, (6) tache.class.php, (7) emetteur.class.php, (8) utilisateur.class.php, (9) courrier.recherche.tab.class.php, and (10) profil.class.php in obj/. NOTE: some of these details are obtained from third party information.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://www.osvdb.org/64207 vdb-entryx_refsource_OSVDB
    http://www.exploit-db.com/exploits/12398 exploitx_refsource_EXPLOIT-DB
    http://www.vupen.com/english/advisories/2010/1003 vdb-entryx_refsource_VUPEN
    http://www.osvdb.org/64206 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64204 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64205 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64208 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64202 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64210 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64203 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/39624 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/64209 vdb-entryx_refsource_OSVDB
    Date Public
    2010-04-26 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:12.827Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt"
              },
              {
                "name": "64207",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64207"
              },
              {
                "name": "12398",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12398"
              },
              {
                "name": "ADV-2010-1003",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2010/1003"
              },
              {
                "name": "64206",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64206"
              },
              {
                "name": "64204",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64204"
              },
              {
                "name": "64205",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64205"
              },
              {
                "name": "64208",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64208"
              },
              {
                "name": "64202",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64202"
              },
              {
                "name": "64210",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64210"
              },
              {
                "name": "64203",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64203"
              },
              {
                "name": "39624",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39624"
              },
              {
                "name": "64209",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64209"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-26T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) bible.class.php, (2) dossier.class.php, (3) service.class.php, (4) collectivite.class.php, (5) droit.class.php, (6) tache.class.php, (7) emetteur.class.php, (8) utilisateur.class.php, (9) courrier.recherche.tab.class.php, and (10) profil.class.php in obj/.  NOTE: some of these details are obtained from third party information."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-02-27T17:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt"
            },
            {
              "name": "64207",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64207"
            },
            {
              "name": "12398",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12398"
            },
            {
              "name": "ADV-2010-1003",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2010/1003"
            },
            {
              "name": "64206",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64206"
            },
            {
              "name": "64204",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64204"
            },
            {
              "name": "64205",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64205"
            },
            {
              "name": "64208",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64208"
            },
            {
              "name": "64202",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64202"
            },
            {
              "name": "64210",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64210"
            },
            {
              "name": "64203",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64203"
            },
            {
              "name": "39624",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39624"
            },
            {
              "name": "64209",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64209"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1927",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) bible.class.php, (2) dossier.class.php, (3) service.class.php, (4) collectivite.class.php, (5) droit.class.php, (6) tache.class.php, (7) emetteur.class.php, (8) utilisateur.class.php, (9) courrier.recherche.tab.class.php, and (10) profil.class.php in obj/.  NOTE: some of these details are obtained from third party information."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/opencourrier-rfilfi.txt"
                },
                {
                  "name": "64207",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64207"
                },
                {
                  "name": "12398",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12398"
                },
                {
                  "name": "ADV-2010-1003",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2010/1003"
                },
                {
                  "name": "64206",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64206"
                },
                {
                  "name": "64204",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64204"
                },
                {
                  "name": "64205",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64205"
                },
                {
                  "name": "64208",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64208"
                },
                {
                  "name": "64202",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64202"
                },
                {
                  "name": "64210",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64210"
                },
                {
                  "name": "64203",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64203"
                },
                {
                  "name": "39624",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39624"
                },
                {
                  "name": "64209",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64209"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1927",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:12.827Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-1934 (GCVE-0-2010-1934)

    Vulnerability from cvelistv5 – Published: 2010-05-12 16:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Multiple PHP remote file inclusion vulnerabilities in openMairie openPlanning 1.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) categorie.class.php, (2) profil.class.php, (3) collectivite.class.php, (4) ressource.class.php, (5) droit.class.php, (6) utilisateur.class.php, and (7) planning.class.php in obj/.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/64191 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64187 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64186 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/39606 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/64188 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/64192 vdb-entryx_refsource_OSVDB
    http://packetstormsecurity.org/1004-exploits/open… x_refsource_MISC
    http://www.exploit-db.com/exploits/12365 exploitx_refsource_EXPLOIT-DB
    http://www.osvdb.org/64189 vdb-entryx_refsource_OSVDB
    Date Public
    2010-04-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:14.410Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "64191",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64191"
              },
              {
                "name": "64187",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64187"
              },
              {
                "name": "64186",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64186"
              },
              {
                "name": "39606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39606"
              },
              {
                "name": "64188",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64188"
              },
              {
                "name": "64192",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64192"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt"
              },
              {
                "name": "12365",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "http://www.exploit-db.com/exploits/12365"
              },
              {
                "name": "64189",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/64189"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie openPlanning 1.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) categorie.class.php, (2) profil.class.php, (3) collectivite.class.php, (4) ressource.class.php, (5) droit.class.php, (6) utilisateur.class.php, and (7) planning.class.php in obj/."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-02-27T17:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "64191",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64191"
            },
            {
              "name": "64187",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64187"
            },
            {
              "name": "64186",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64186"
            },
            {
              "name": "39606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39606"
            },
            {
              "name": "64188",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64188"
            },
            {
              "name": "64192",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64192"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt"
            },
            {
              "name": "12365",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "http://www.exploit-db.com/exploits/12365"
            },
            {
              "name": "64189",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/64189"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-1934",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie openPlanning 1.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) categorie.class.php, (2) profil.class.php, (3) collectivite.class.php, (4) ressource.class.php, (5) droit.class.php, (6) utilisateur.class.php, and (7) planning.class.php in obj/."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "64191",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64191"
                },
                {
                  "name": "64187",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64187"
                },
                {
                  "name": "64186",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64186"
                },
                {
                  "name": "39606",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39606"
                },
                {
                  "name": "64188",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64188"
                },
                {
                  "name": "64192",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64192"
                },
                {
                  "name": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt"
                },
                {
                  "name": "12365",
                  "refsource": "EXPLOIT-DB",
                  "url": "http://www.exploit-db.com/exploits/12365"
                },
                {
                  "name": "64189",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/64189"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-1934",
        "datePublished": "2010-05-12T16:00:00.000Z",
        "dateReserved": "2010-05-12T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:14.410Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-2069 (GCVE-0-2007-2069)

    Vulnerability from cvelistv5 – Published: 2007-04-18 02:20 – Updated: 2024-08-07 13:23
    VLAI
    Summary
    Directory traversal vulnerability in scr/soustab.php in openMairie 1.11 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the dsn[phptype] parameter.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://www.exploit-db.com/exploits/3747 exploitx_refsource_EXPLOIT-DB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/bid/23505 vdb-entryx_refsource_BID
    http://osvdb.org/37416 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2007/1421 vdb-entryx_refsource_VUPEN
    Date Public
    2007-04-16 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T13:23:50.322Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "3747",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "https://www.exploit-db.com/exploits/3747"
              },
              {
                "name": "openmairie-soustab-file-include(33700)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33700"
              },
              {
                "name": "23505",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/23505"
              },
              {
                "name": "37416",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/37416"
              },
              {
                "name": "ADV-2007-1421",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/1421"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-04-16T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in scr/soustab.php in openMairie 1.11 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the dsn[phptype] parameter."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-10-10T00:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "3747",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "https://www.exploit-db.com/exploits/3747"
            },
            {
              "name": "openmairie-soustab-file-include(33700)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33700"
            },
            {
              "name": "23505",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/23505"
            },
            {
              "name": "37416",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/37416"
            },
            {
              "name": "ADV-2007-1421",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/1421"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-2069",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in scr/soustab.php in openMairie 1.11 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the dsn[phptype] parameter."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "3747",
                  "refsource": "EXPLOIT-DB",
                  "url": "https://www.exploit-db.com/exploits/3747"
                },
                {
                  "name": "openmairie-soustab-file-include(33700)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33700"
                },
                {
                  "name": "23505",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/23505"
                },
                {
                  "name": "37416",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/37416"
                },
                {
                  "name": "ADV-2007-1421",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/1421"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-2069",
        "datePublished": "2007-04-18T02:20:00.000Z",
        "dateReserved": "2007-04-17T00:00:00.000Z",
        "dateUpdated": "2024-08-07T13:23:50.322Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }