CVE-2010-1926

2010-05-1216:07:32

CWE-22

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.019

Percentile

88.6%

JSON

Directory traversal vulnerability in scr/soustab.php in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd

Node

openmairieopencourrierMatch2.02

openmairieopencourrierMatch2.03beta

VendorProductVersionCPE
openmairieopencourrier2.02cpe:2.3:a:openmairie:opencourrier:2.02:*:*:*:*:*:*:*
openmairieopencourrier2.03cpe:2.3:a:openmairie:opencourrier:2.03:beta:*:*:*:*:*:*

Vendor	Product	Version	CPE
openmairie	opencourrier	2.02	cpe:2.3:a:openmairie:opencourrier:2.02:::::::*
openmairie	opencourrier	2.03	cpe:2.3:a:openmairie:opencourrier:2.03:beta::::::