CVE-2010-1928 in openPlanning
Summary
by MITRE
Directory traversal vulnerability in scr/soustab.php in openMairie openPlanning 1.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
Be aware that VulDB is the high quality source for vulnerability data.
Analysis
by VulDB Data Team • 10/21/2025
The vulnerability identified as CVE-2010-1928 represents a critical directory traversal flaw within the openMairie openPlanning 1.00 web application. This weakness specifically affects the scr/soustab.php script and exploits the dangerous combination of register_globals being enabled in the php.ini configuration. The vulnerability stems from insufficient input validation and sanitization of user-supplied parameters, creating an avenue for malicious actors to manipulate file inclusion mechanisms within the application's code execution flow.
The technical exploitation occurs through manipulation of the dsn[phptype] parameter which is processed without adequate sanitization measures. When register_globals is enabled, PHP automatically creates global variables from request data, making it possible for attackers to inject malicious payloads directly into the application's variable scope. The directory traversal sequences allow attackers to navigate beyond the intended file system boundaries and access arbitrary local files on the server. This flaw is particularly dangerous because it can be leveraged to execute arbitrary code on the target system, potentially leading to complete system compromise.
The operational impact of this vulnerability extends beyond simple data theft or service disruption. Attackers can leverage this weakness to gain unauthorized access to sensitive system files, potentially exposing database credentials, configuration files, and other critical system information. The vulnerability's relationship to CVE-2007-2069 indicates a pattern of similar flaws in related software components, suggesting that the underlying architectural issues in input validation and file handling have not been properly addressed. This type of vulnerability falls under CWE-22 - Improper Limitation of a Pathname to a Restricted Directory and aligns with ATT&CK technique T1505.003 - Server-side Include, as it enables remote code execution through manipulated server-side file inclusion mechanisms.
Security professionals should recognize this vulnerability as part of a broader class of file inclusion attacks that have been prevalent in web applications for many years. The presence of register_globals in the configuration creates an inherently insecure environment where parameter manipulation becomes significantly easier. Organizations should immediately disable register_globals in their php.ini settings and implement comprehensive input validation mechanisms to prevent similar vulnerabilities from being exploited. Additionally, regular security audits should be conducted to identify and remediate other potential paths for directory traversal attacks within web applications. The vulnerability demonstrates the critical importance of proper parameter validation and the dangerous consequences of enabling deprecated PHP configurations that weaken application security boundaries.