2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

CVE IDSeverityCVSSDescription
CVE-2010-2035Directory traversal vulnerability in the Percha Gallery (com_perchagallery) component 1.6 Beta for Joomla! allows remote...
CVE-2010-2034Directory traversal vulnerability in the Percha Image Attach (com_perchaimageattach) component 1.1 for Joomla! allows re...
CVE-2010-2033Directory traversal vulnerability in the Percha Multicategory Article (com_perchacategoriestree) component 0.6 for Jooml...
CVE-2010-2032Multiple cross-site scripting (XSS) vulnerabilities in resin-admin/digest.php in Caucho Technology Resin Professional 3....
CVE-2010-2031KAVSafe.sys 2010.4.14.609 and earlier, as used in Kingsoft Webshield 3.5.1.2 and earlier, allows local users to overwrit...
CVE-2010-2030Cross-site scripting (XSS) vulnerability in the External Link Page module 5.x before 5.x-1.0 and 6.x before 6.x-1.2 for ...
CVE-2010-2029Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote attackers to by...
CVE-2010-2028Buffer overflow in k23productions TFTPUtil GUI (aka TFTPGUI) 1.4.5 allows remote attackers to cause a denial of service ...
CVE-2010-2027Mathematica 7, when running on Linux, allows local users to overwrite arbitrary files via a symlink attack on (1) files ...
CVE-2010-1688Stack-based buffer overflow in 2BrightSparks SyncBack Freeware 3.2.20.0, and possibly other versions before 3.2.21, allo...
CVE-2010-2019SQL injection vulnerability in downlot.php in Lokomedia CMS 1.4.1, when magic_quotes_gpc is disabled, allows remote atta...
CVE-2010-2018Directory traversal vulnerability in downlot.php in Lokomedia CMS 1.4.1 and 2.0 allows remote attackers to read arbitrar...
CVE-2010-2017Cross-site scripting (XSS) vulnerability in hasil-pencarian.html in Lokomedia CMS 1.4.1 and 2.0 allows remote attackers ...
CVE-2010-2016SQL injection vulnerability in details.php in Iceberg CMS allows remote attackers to execute arbitrary SQL commands via ...
CVE-2010-2015Multiple SQL injection vulnerabilities in LiSK CMS 4.4 allow remote attackers to execute arbitrary SQL commands via (1) ...
CVE-2010-2014Cross-site scripting (XSS) vulnerability in cp/list_content.php in LiSK CMS 4.4 allows remote attackers to inject arbitr...
CVE-2010-2013Cross-site scripting (XSS) vulnerability in cp/edit_email.php in LiSK CMS 4.4 allows remote attackers to inject arbitrar...
CVE-2010-2012SQL injection vulnerability in function.php in MigasCMS 1.1, when magic_quotes_gpc is disabled, allows remote attackers ...
CVE-2010-2011Microsoft Dynamics GP uses a substitution cipher to encrypt the system password field and unspecified other fields, whic...
CVE-2010-2010Multiple cross-site scripting (XSS) vulnerabilities in the Chaos Tool Suite (aka CTools) module 6.x before 6.x-1.4 for D...
CVE-2010-1548The auto-complete functionality in the Chaos Tool Suite (aka CTools) module 6.x before 6.x-1.4 for Drupal does not follo...
CVE-2010-1547Multiple cross-site request forgery (CSRF) vulnerabilities in the Chaos Tool Suite (aka CTools) module 6.x before 6.x-1....
CVE-2010-1546Multiple eval injection vulnerabilities in the import functionality in the Chaos Tool Suite (aka CTools) module 6.x befo...
CVE-2010-0539Integer signedness error in the window drawing implementation in Apple Java for Mac OS X 10.5 before Update 7 and Java f...
CVE-2010-0538Apple Java for Mac OS X 10.5 before Update 7 and Java for Mac OS X 10.6 before Update 2 do not properly handle mediaLibI...

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now