2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-1755 | — | — | 1.5% | Jun 22, 2010 | Safari in Apple iOS before 4 on the iPhone and iPod touch does not properly implement the Accept Cookies preference, whi... |
| CVE-2010-1754 | — | — | 0.4% | Jun 22, 2010 | Passcode Lock in Apple iOS before 4 on the iPhone and iPod touch does not properly handle alert-based unlocks in conjunc... |
| CVE-2010-1753 | — | — | 2.9% | Jun 22, 2010 | ImageIO in Apple iOS before 4 on the iPhone and iPod touch allows remote attackers to execute arbitrary code or cause a ... |
| CVE-2010-1752 | — | — | 3.6% | Jun 22, 2010 | Stack-based buffer overflow in CFNetwork in Apple iOS before 4 on the iPhone and iPod touch allows remote attackers to e... |
| CVE-2010-1751 | — | — | 2.2% | Jun 22, 2010 | Application Sandbox in Apple iOS before 4 on the iPhone and iPod touch does not prevent photo-library access, which migh... |
| CVE-2010-1632 | — | — | 22.4% | Jun 22, 2010 | Apache Axis2 before 1.5.2, as used in IBM WebSphere Application Server (WAS) 7.0 through 7.0.0.12, IBM Feature Pack for ... |
| CVE-2010-1407 | — | — | 2.6% | Jun 22, 2010 | WebKit in Apple iOS before 4 on the iPhone and iPod touch does not properly implement the history.replaceState method in... |
| CVE-2010-2421 | — | — | 2.3% | Jun 22, 2010 | Multiple unspecified vulnerabilities in Opera before 10.54 have unknown impact and attack vectors related to (1) "extrem... |
| CVE-2010-2420 | — | — | 2.1% | Jun 22, 2010 | Multiple unspecified vulnerabilities in Fenrir Inc. ActiveGeckoBrowser 1.0.0 and 1.0.5 alpha, a module for the Sleipnir ... |
| CVE-2010-1638 | — | — | 1.3% | Jun 22, 2010 | The IMP plugin in Horde allows remote attackers to bypass firewall restrictions and use Horde as a proxy to scan interna... |
| CVE-2010-2359 | — | — | 1.0% | Jun 21, 2010 | SQL injection vulnerability in eWebQuiz.asp in ActiveWebSoftwares.com eWebquiz 8 allows remote attackers to execute arbi... |
| CVE-2010-2358 | — | — | 2.5% | Jun 21, 2010 | PHP remote file inclusion vulnerability in modules/catalog/upload_photo.php in Nakid CMS 0.5.2, when magic_quotes_gpc is... |
| CVE-2010-2357 | — | — | 1.0% | Jun 21, 2010 | SQL injection vulnerability in index.php in Eicra Realestate Script 1.0 and 1.6.0 allows remote attackers to execute arb... |
| CVE-2010-2356 | — | — | 1.4% | Jun 21, 2010 | Cross-site scripting (XSS) vulnerability in subscribe.php in Pilot Group (PG) eLMS Pro allows remote attackers to inject... |
| CVE-2010-2355 | — | — | 1.5% | Jun 21, 2010 | Cross-site scripting (XSS) vulnerability in error.php in Pilot Group (PG) eLMS Pro allows remote attackers to inject arb... |
| CVE-2010-2354 | — | — | 1.2% | Jun 21, 2010 | SQL injection vulnerability in subscribe.php in Pilot Group (PG) eLMS Pro allows remote attackers to execute arbitrary S... |
| CVE-2010-2353 | — | — | 1.8% | Jun 21, 2010 | The Node Reference module in Content Construction Kit (CCK) module 6.x before 6.x-2.7 for Drupal does not perform access... |
| CVE-2010-2352 | — | — | 2.6% | Jun 21, 2010 | The Node Reference module in Content Construction Kit (CCK) module 5.x before 5.x-1.11 and 6.x before 6.x-2.7 for Drupal... |
| CVE-2010-2351 | — | — | 15.7% | Jun 21, 2010 | Stack-based buffer overflow in the CIFS.NLM driver in Netware SMB 1.0 for Novell Netware 6.5 SP8 and earlier allows remo... |
| CVE-2010-2350 | — | — | 3.3% | Jun 21, 2010 | Heap-based buffer overflow in the PNG decoder in Ziproxy 3.1.0 allows remote attackers to cause a denial of service (cra... |
| CVE-2010-2349 | — | — | 4.8% | Jun 21, 2010 | H264WebCam 3.7 allows remote attackers to cause a denial of service (crash) via a long URI in a GET request, which trigg... |
| CVE-2010-2348 | — | — | 5.6% | Jun 21, 2010 | Stack-based buffer overflow in Batch Audio Converter Lite Edition 1.0.0.0 and earlier allows remote attackers to execute... |
| CVE-2010-2347 | — | — | 1.1% | Jun 21, 2010 | The Telnet interface in the SAP J2EE Engine Core (SAP-JEECOR) 6.40 through 7.02, and Server Core (SERVERCORE) 7.10 throu... |
| CVE-2010-1958 | — | — | 1.0% | Jun 21, 2010 | Cross-site scripting (XSS) vulnerability in the FileField module 5.x before 5.x-2.5 and 6.x before 6.x-3.4 for Drupal al... |
| CVE-2010-1622 | — | — | 52.0% | Jun 21, 2010 | SpringSource Spring Framework 2.5.x before 2.5.6.SEC02, 2.5.7 before 2.5.7.SR01, and 3.0.x before 3.0.3 allows remote at... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now