Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2010-1935
HistoryMay 12, 2010 - 4:07 p.m.

CVE-2010-1935

2010-05-1216:07:32
CWE-22
mitre
web.nvd.nist.gov
41
cve-2010-1935
directory traversal
openmairie openpresse
vulnerability
nvd
cve-2007-2069

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.1

Confidence

Low

EPSS

0.019

Percentile

88.8%

JSON

Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.

Affected configurations

Nvd
Node
openmairieopenpresseMatch1.01
VendorProductVersionCPE
openmairieopenpresse1.01cpe:2.3:a:openmairie:openpresse:1.01:*:*:*:*:*:*:*

Related

cvelist 9
nvd 9
prion 9
openvas 2
exploitdb 2
cve 8
securityvulns 1
cvelist
cvelist
CVE-2010-1935
2010-05-12 16:00:00
CVE-2007-2069
2007-04-18 02:20:00
CVE-2010-1948
2010-05-18 18:00:00
nvd
nvd
CVE-2010-1935
2010-05-12 16:07:32
CVE-2007-2069
2007-04-18 03:19:00
CVE-2010-1936
2010-05-12 16:07:32
prion
prion
Directory traversal
2010-05-12 16:07:00
Directory traversal
2007-04-18 03:19:00
Directory traversal
2010-05-19 12:07:00
openvas
openvas
openMairie openPresse 'dsn[phptype]' LFI Vulnerability
2010-05-25 00:00:00
openMairie openPresse 'dsn[phptype]' Local File Inclusion Vulnerability
2010-05-25 00:00:00
exploitdb
exploitdb
Openpresse 1.01 - Local File Inclusion
2010-04-24 00:00:00
openMairie 1.10 - '/scr/soustab.php' Local File Inclusion
2007-04-16 00:00:00
cve
cve
CVE-2007-2069
2007-04-18 03:19:00
CVE-2010-1926
2010-05-12 16:07:32
CVE-2010-1948
2010-05-19 12:07:59
securityvulns
securityvulns
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2007-04-19 00:00:00

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.1

Confidence

Low

EPSS

0.019

Percentile

88.8%

JSON
Related for CVE-2010-1935
cvelist9nvd9prion9openvas2exploitdb2cve8securityvulns1