CVE

Id
44518  
CVE No.
CVE-2010-1934  
Status
Candidate  
Description
Multiple PHP remote file inclusion vulnerabilities in openMairie openPlanning 1.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) categorie.class.php, (2) profil.class.php, (3) collectivite.class.php, (4) ressource.class.php, (5) droit.class.php, (6) utilisateur.class.php, and (7) planning.class.php in obj/.  
Phase
Assigned (20100512)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
485432 44518 CVE-2010-1934 EXPLOIT-DB:12365  View
485433 44518 CVE-2010-1934 URL:http://www.exploit-db.com/exploits/12365  View
485434 44518 CVE-2010-1934 MISC:http://packetstormsecurity.org/1004-exploits/openplanning-rfilfi.txt  View
485435 44518 CVE-2010-1934 OSVDB:64186  View
485436 44518 CVE-2010-1934 URL:http://www.osvdb.org/64186  View
485437 44518 CVE-2010-1934 OSVDB:64187  View
485438 44518 CVE-2010-1934 URL:http://www.osvdb.org/64187  View
485439 44518 CVE-2010-1934 OSVDB:64188  View
485440 44518 CVE-2010-1934 URL:http://www.osvdb.org/64188  View
485441 44518 CVE-2010-1934 OSVDB:64189  View
485442 44518 CVE-2010-1934 URL:http://www.osvdb.org/64189  View
485443 44518 CVE-2010-1934 OSVDB:64191  View
485444 44518 CVE-2010-1934 URL:http://www.osvdb.org/64191  View
485445 44518 CVE-2010-1934 OSVDB:64192  View
485446 44518 CVE-2010-1934 URL:http://www.osvdb.org/64192  View
485447 44518 CVE-2010-1934 SECUNIA:39606  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
38991 JVNDB-2010-004776 OPIE の __opiereadrec 関数におけるサービス運用妨害 (DoS) の脆弱性 FreeBSD などのプラットフォーム上で稼動する OPIE の libopie の readrec.c の __opiereadrec 関数には、一つずれエラー (Off-by-one) が発生するため、サービス運用妨害 (デーモンクラッシュ) 状態となる、または任意のコードを実行される脆弱性が存在します。 CVE-2010-1938 44518 9.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-004776.html  View