2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2010-2462SQL injection vulnerability in withdraw_money.php in Toma Cero OroHYIP allows remote attackers to execute arbitrary SQL ...
CVE-2010-2461SQL injection vulnerability in storecat.php in JCE-Tech Overstock 1 allows remote attackers to execute arbitrary SQL com...
CVE-2010-2460SQL injection vulnerability in merchant_product_list.php in JCE-Tech Shareasale Script (SASS) 1 allows remote attackers ...
CVE-2010-2459SQL injection vulnerability in video.php in 2daybiz Video Community Portal Script 1.0 allows remote attackers to execute...
CVE-2010-2458Cross-site scripting (XSS) vulnerability in video.php in 2daybiz Video Community Portal Script 1.0 allows remote attacke...
CVE-2010-2457Cross-site scripting (XSS) vulnerability in index.php in K-Search allows remote attackers to inject arbitrary web script...
CVE-2010-2456Multiple directory traversal vulnerabilities in index.php in Linker IMG 1.0 and earlier allow remote attackers to read a...
CVE-2010-2455Opera does not properly manage the address bar between the request to open a URL and the retrieval of the new document's...
CVE-2010-2454Apple Safari does not properly manage the address bar between the request to open a URL and the retrieval of the new doc...
CVE-2010-1206The startDocumentLoad function in browser/base/content/browser.js in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x befor...
CVE-2010-2444parse/Csv2_parse.c in MaraDNS 1.3.03, and other versions before 1.4.03, does not properly handle hostnames that do not e...
CVE-2010-2434Buffer overflow in Arcext.dll 2.16.1 and earlier in pon software Explzh 5.62 and earlier allows remote attackers to exec...
CVE-2010-2443The OJPEGReadBufferFill function in tif_ojpeg.c in LibTIFF before 3.9.3 allows remote attackers to cause a denial of ser...
CVE-2010-2442Microsoft Internet Explorer, possibly 8, does not properly restrict focus changes, which allows remote attackers to read...
CVE-2010-2441WebKit does not properly restrict focus changes, which allows remote attackers to read keystrokes via "cross-domain IFRA...
CVE-2010-2440Stack-based buffer overflow in st-wizard.exe in Subtitle Translation Wizard 3.0 allows user-assisted remote attackers to...
CVE-2010-2439Stack-based buffer overflow in MoreAmp allows remote attackers to execute arbitrary code via a long line in a song list ...
CVE-2010-2438SQL injection vulnerability in G.CMS generator allows remote attackers to execute arbitrary SQL commands via the lang pa...
CVE-2010-2437Cross-site scripting (XSS) vulnerability in class/tools.class.php in AneCMS Blog 1.3 and possibly earlier allows remote ...
CVE-2010-2436SQL injection vulnerability in modules/blog/index.php in AneCMS Blog 1.3 and possibly earlier allows remote attackers to...
CVE-2010-2435Weborf HTTP Server 0.12.1 and earlier allows remote attackers to cause a denial of service (crash) via Unicode character...
CVE-2010-2224The snapshot merging functionality in Red Hat Enterprise Virtualization Manager (aka RHEV-M) before 2.2 does not properl...
CVE-2010-2223Virtual Desktop Server Manager (VDSM) in Red Hat Enterprise Virtualization Hypervisor (aka RHEV-H or rhev-hypervisor) be...
CVE-2010-0779Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server (WAS) 6.0 bef...
CVE-2010-0778Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server (WAS) 6.1 bef...

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now