2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

CVE IDSeverityCVSSDescription
CVE-2010-0819Unspecified vulnerability in the Windows OpenType Compact Font Format (CFF) driver in Microsoft Windows 2000 SP4, XP SP2...
CVE-2010-2199lib/fsm.c in RPM 4.8.0 and earlier does not properly reset the metadata of an executable file during replacement of the ...
CVE-2010-2198lib/fsm.c in RPM 4.8.0 and earlier does not properly reset the metadata of an executable file during replacement of the ...
CVE-2010-2197rpmbuild in RPM 4.8.0 and earlier does not properly parse the syntax of spec files, which allows user-assisted remote at...
CVE-2010-2059lib/fsm.c in RPM 4.8.0 and unspecified 4.7.x and 4.6.x versions, and RPM before 4.4.3, does not properly reset the metad...
CVE-2010-1297HIGH7.8Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64; Adobe AIR before 2.0.2.12610; and Adobe Reader and Acrob...
CVE-2010-2191The (1) parse_str, (2) preg_match, (3) unpack, and (4) pack functions; the (5) ZEND_FETCH_RW, (6) ZEND_CONCAT, and (7) Z...
CVE-2010-2190The (1) trim, (2) ltrim, (3) rtrim, and (4) substr_replace functions in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 all...
CVE-2010-2159Dameng DM Database Server allows remote authenticated users to cause a denial of service (crash) and possibly execute ar...
CVE-2010-2060The put command functionality in beanstalkd 1.4.5 and earlier allows remote attackers to execute arbitrary Beanstalk com...
CVE-2010-1850Buffer overflow in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote authenticated users to execute arbitrary...
CVE-2010-1849The my_net_skip_rest function in sql/net_serv.cc in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote attacke...
CVE-2010-1848Directory traversal vulnerability in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote authenticated users to...
CVE-2010-1649Multiple cross-site scripting (XSS) vulnerabilities in the back end in Joomla! 1.5 through 1.5.17 allow remote attackers...
CVE-2010-1648Cross-site request forgery (CSRF) vulnerability in the login interface in MediaWiki 1.15 before 1.15.4 and 1.16 before 1...
CVE-2010-1647Cross-site scripting (XSS) vulnerability in MediaWiki 1.15 before 1.15.4 and 1.16 before 1.16 beta 3 allows remote attac...
CVE-2010-1636The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the btrfs functionality in the Linux kernel 2.6.29 through 2.6.32,...
CVE-2010-2156ISC DHCP 4.1 before 4.1.1-P1 and 4.0 before 4.0.2-P1 allows remote attackers to cause a denial of service (server exit) ...
CVE-2010-2058setup.py in Prewikka 0.9.14 installs prewikka.conf with world-readable permissions, which allows local users to obtain t...
CVE-2010-2053emesenelib/ProfileManager.py in emesene before 1.6.2 allows local users to overwrite arbitrary files via a symlink attac...
CVE-2010-2052Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-2155. Reason: This candidate is a duplicate of...
CVE-2010-2158Multiple cross-site scripting (XSS) vulnerabilities in the Storm module 5.x and 6.x before 6.x-1.33 for Drupal allow rem...
CVE-2010-2157Unspecified vulnerability in CA ARCserve Backup r11.5 SP4, r12.0 SP2, and r12.5 SP1 on Windows allows local users to obt...
CVE-2010-2024transports/appendfile.c in Exim before 4.72, when MBX locking is enabled, allows local users to change permissions of ar...
CVE-2010-2023transports/appendfile.c in Exim before 4.72, when a world-writable sticky-bit mail directory is used, does not verify th...

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now