2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

CVE IDSeverityCVSSDescription
CVE-2010-2845SQL injection vulnerability in the QuickFAQ (com_quickfaq) component 1.0.3 for Joomla! allows remote attackers to execut...
CVE-2010-2844Cross-site scripting (XSS) vulnerability in news_show.php in Newanz NewsOffice 2.0.18 allows remote attackers to inject ...
CVE-2010-0099Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-0092. Reason: This candidate is a duplicate of...
CVE-2010-2772HIGH7.8Siemens Simatic WinCC and PCS 7 SCADA system uses a hard-coded password, which allows local users to access a back-end d...
CVE-2010-2771solid.exe in IBM solidDB before 6.5 FP2 allows remote attackers to execute arbitrary code via a long username field in t...
CVE-2010-2667Multiple unspecified vulnerabilities in the Virtual Appliance Management Infrastructure (VAMI) in VMware Studio 2.0 allo...
CVE-2010-2568HIGH7.8Windows Shell in Microsoft Windows XP SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 SP2 and R2, and Windows 7 all...
CVE-2010-2427VMware Studio 2.0 does not properly write to temporary files, which allows local users to gain privileges via unspecifie...
CVE-2010-2056GNU gv before 3.7.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.
CVE-2010-2055Ghostscript 8.71 and earlier reads initialization files from the current working directory, which allows local users to ...
CVE-2010-1973Unspecified vulnerability in the Auditing subsystem in HP OpenVMS 8.3, 8.2, 7.3-2, and earlier on the ALPHA platform, an...
CVE-2010-1972The default configuration of HP Client Automation (HPCA) Enterprise Infrastructure (aka Radia) allows remote attackers t...
CVE-2010-1969Cross-site scripting (XSS) vulnerability in HP Virtual Connect Enterprise Manager for Windows before 6.1 allows remote a...
CVE-2010-1766Off-by-one error in the WebSocketHandshake::readServerHandshake function in websockets/WebSocketHandshake.cpp in WebCore...
CVE-2010-1971Cross-site request forgery (CSRF) vulnerability in HP Insight Software Installer for Windows before 6.1 allows remote at...
CVE-2010-1970Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify d...
CVE-2010-1968Cross-site request forgery (CSRF) vulnerability in HP Insight Software Installer for Windows before 6.1 allows remote at...
CVE-2010-1967Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify d...
CVE-2010-1966Unspecified vulnerability in HP Insight Control power management for Windows before 6.1 allows local users to read or mo...
CVE-2010-1965Unspecified vulnerability in HP Insight Orchestration for Windows before 6.1 allows remote attackers to read or modify d...
CVE-2010-1881The FieldList ActiveX control in the Microsoft Access Wizard Controls in ACCWIZ.dll in Microsoft Office Access 2003 SP3 ...
CVE-2010-0814The Microsoft Access Wizard Controls in ACCWIZ.dll in Microsoft Office Access 2003 SP3 and 2007 SP1 and SP2 do not prope...
CVE-2010-0266Microsoft Office Outlook 2002 SP3, 2003 SP3, and 2007 SP1 and SP2 does not properly verify e-mail attachments with a PR_...
CVE-2010-2403Unspecified vulnerability in the PeopleSoft Enterprise Campus Solutions component in Oracle PeopleSoft and JDEdwards Sui...
CVE-2010-2402Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8....

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now