2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-1819 | — | — | 4.7% | Dec 27, 2013 | Untrusted search path vulnerability in the Picture Viewer in Apple QuickTime before 7.6.8 allows local users, and possib... |
| CVE-2010-0430 | — | — | 0.5% | Dec 27, 2013 | libspice, as used in QEMU-KVM in Red Hat Enterprise Virtualization Hypervisor (aka RHEV-H or rhev-hypervisor) before 5.5... |
| CVE-2010-3443 | — | — | 2.0% | Nov 23, 2013 | ctcphandler.cpp in Quassel before 0.6.3 and 0.7.x before 0.7.1 allows remote attackers to cause a denial of service (unr... |
| CVE-2010-1159 | — | — | 7.3% | Oct 28, 2013 | Multiple heap-based buffer overflows in Aircrack-ng before 1.1 allow remote attackers to cause a denial of service (cras... |
| CVE-2010-5290 | — | — | 5.5% | Sep 20, 2013 | The authentication process in Adobe ColdFusion before 10 does not require knowledge of the cleartext password if the pas... |
| CVE-2010-5289 | — | — | 2.5% | Aug 25, 2013 | Buffer overflow in the Authenticate method in the INCREDISPOOLERLib.Pop ActiveX control in ImSpoolU.dll in IncrediMail 2... |
| CVE-2010-5288 | — | — | 3.1% | Jun 28, 2013 | Buffer overflow in the lsConnectionCached function in editcp in EDItran Communications Platform 4.1 R7 allows remote att... |
| CVE-2010-5107 | HIGH | 7.5 | 16.5% | Mar 7, 2013 | The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and c... |
| CVE-2010-5287 | — | — | 1.1% | Jan 31, 2013 | SQL injection vulnerability in default.php in Cornerstone Technologies webConductor allows remote attackers to execute a... |
| CVE-2010-2387 | — | — | 0.5% | Dec 21, 2012 | vicious-extensions/ve-misc.c in GNOME Display Manager (gdm) 2.20.x before 2.20.11, when GDM debug is enabled, logs the u... |
| CVE-2010-5286 | — | — | 11.4% | Nov 26, 2012 | Directory traversal vulnerability in Jstore (com_jstore) component for Joomla! allows remote attackers to read arbitrary... |
| CVE-2010-5285 | — | — | 1.3% | Nov 26, 2012 | Cross-site request forgery (CSRF) vulnerability in admin.php in Collabtive 0.6.5 allows remote attackers to hijack the a... |
| CVE-2010-5284 | — | — | 2.0% | Nov 26, 2012 | Multiple cross-site scripting (XSS) vulnerabilities in Collabtive 0.6.5 allow remote attackers to inject arbitrary web s... |
| CVE-2010-5283 | — | — | 0.7% | Nov 26, 2012 | Cross-site request forgery (CSRF) vulnerability in OpenText ECM (formerly Livelink ECM) 9.7.1 allows remote attackers to... |
| CVE-2010-5282 | — | — | 1.3% | Nov 26, 2012 | Multiple cross-site scripting (XSS) vulnerabilities in OpenText ECM (formerly Livelink ECM) 9.7.1 allow remote attackers... |
| CVE-2010-5281 | — | — | 2.3% | Nov 26, 2012 | Directory traversal vulnerability in ibrowser.php in the CMScout 2.09 IBrowser TinyMCE Plugin 1.4.1, when magic_quotes_g... |
| CVE-2010-5280 | — | — | 5.5% | Nov 26, 2012 | Directory traversal vulnerability in the Community Builder Enhanced (CBE) (com_cbe) component 1.4.8, 1.4.9, and 1.4.10 f... |
| CVE-2010-1330 | — | — | 2.2% | Nov 23, 2012 | The regular expression engine in JRuby before 1.4.1, when $KCODE is set to 'u', does not properly handle characters imme... |
| CVE-2010-4821 | — | — | 4.7% | Oct 22, 2012 | Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.6.9 allows remote attackers to inject arbitrary web script... |
| CVE-2010-5279 | — | — | 1.3% | Oct 8, 2012 | article.php in Virtual War (aka VWar) 1.6.1 R2 allows remote attackers to cause a denial of service (memory consumption)... |
| CVE-2010-5067 | — | — | 1.3% | Oct 8, 2012 | Virtual War (aka VWar) 1.6.1 R2 uses static session cookies that depend only on a user's password, which makes it easier... |
| CVE-2010-5066 | — | — | 1.2% | Oct 8, 2012 | The createRandomPassword function in includes/functions_common.php in Virtual War (aka VWar) 1.6.1 R2 uses a small range... |
| CVE-2010-5065 | — | — | 1.4% | Oct 8, 2012 | popup.php in Virtual War (aka VWar) 1.6.1 R2 allows remote attackers to bypass intended member restrictions and read new... |
| CVE-2010-5064 | — | — | 1.0% | Oct 8, 2012 | Multiple cross-site scripting (XSS) vulnerabilities in Virtual War (aka VWar) 1.6.1 R2 allow remote attackers to inject ... |
| CVE-2010-5063 | — | — | 1.1% | Oct 8, 2012 | SQL injection vulnerability in article.php in Virtual War (aka VWar) 1.6.1 R2 allows remote attackers to execute arbitra... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now