{ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2010-1944", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Multiple PHP remote file inclusion vulnerabilities in openMairie openCimetiere 2.01, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation.class.php, (2) courrierautorisation.class.php, (3) droit.class.php, (4) profil.class.php, (5) temp_defunt_sansemplacement.class.php, (6) utils.class.php, (7) cimetiere.class.php, (8) defunt.class.php, (9) emplacement.class.php, (10) tab_emplacement.class.php, (11) temp_emplacement.class.php, (12) voie.class.php, (13) collectivite.class.php, (14) defunttransfert.class.php, (15) entreprise.class.php, (16) temp_autorisation.class.php, (17) travaux.class.php, (18) zone.class.php, (19) courrier.class.php, (20) dossier.class.php, (21) plans.class.php, (22) temp_defunt.class.php, and (23) utilisateur.class.php in obj/." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "64238", "refsource": "OSVDB", "url": "http://www.osvdb.org/64238" }, { "name": "64231", "refsource": "OSVDB", "url": "http://www.osvdb.org/64231" }, { "name": "64223", "refsource": "OSVDB", "url": "http://www.osvdb.org/64223" }, { "name": "64237", "refsource": "OSVDB", "url": "http://www.osvdb.org/64237" }, { "name": "64228", "refsource": "OSVDB", "url": "http://www.osvdb.org/64228" }, { "name": "64230", "refsource": "OSVDB", "url": "http://www.osvdb.org/64230" }, { "name": "64244", "refsource": "OSVDB", "url": "http://www.osvdb.org/64244" }, { "name": "opencimetiere-pathom-file-include(58267)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58267" }, { "name": "64239", "refsource": "OSVDB", "url": "http://www.osvdb.org/64239" }, { "name": "64225", "refsource": "OSVDB", "url": "http://www.osvdb.org/64225" }, { "name": "12476", "refsource": "EXPLOIT-DB", "url": "http://www.exploit-db.com/exploits/12476" }, { "name": "64227", "refsource": "OSVDB", "url": "http://www.osvdb.org/64227" }, { "name": "http://packetstormsecurity.org/1005-exploits/opencimetiere-rfi.txt", "refsource": "MISC", "url": "http://packetstormsecurity.org/1005-exploits/opencimetiere-rfi.txt" }, { "name": "39883", "refsource": "BID", "url": "http://www.securityfocus.com/bid/39883" }, { "name": "64245", "refsource": "OSVDB", "url": "http://www.osvdb.org/64245" }, { "name": "64242", "refsource": "OSVDB", "url": "http://www.osvdb.org/64242" }, { "name": "64234", "refsource": "OSVDB", "url": "http://www.osvdb.org/64234" }, { "name": "64232", "refsource": "OSVDB", "url": "http://www.osvdb.org/64232" }, { "name": "39687", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/39687" }, { "name": "64229", "refsource": "OSVDB", "url": "http://www.osvdb.org/64229" }, { "name": "64235", "refsource": "OSVDB", "url": "http://www.osvdb.org/64235" }, { "name": "64233", "refsource": "OSVDB", "url": "http://www.osvdb.org/64233" }, { "name": "64241", "refsource": "OSVDB", "url": "http://www.osvdb.org/64241" }, { "name": "64240", "refsource": "OSVDB", "url": "http://www.osvdb.org/64240" }, { "name": "64236", "refsource": "OSVDB", "url": "http://www.osvdb.org/64236" }, { "name": "ADV-2010-1050", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2010/1050" }, { "name": "64226", "refsource": "OSVDB", "url": "http://www.osvdb.org/64226" }, { "name": "64243", "refsource": "OSVDB", "url": "http://www.osvdb.org/64243" }, { "name": "64224", "refsource": "OSVDB", "url": "http://www.osvdb.org/64224" } ] } }