2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

CVE IDSeverityCVSSDescription
CVE-2010-1744SQL injection vulnerability in product.html in B2B Gold Script allows remote attackers to execute arbitrary SQL commands...
CVE-2010-1743SQL injection vulnerability in projects.php in Scratcher allows remote attackers to execute arbitrary SQL commands via t...
CVE-2010-1742Cross-site scripting (XSS) vulnerability in projects.php in Scratcher allows remote attackers to inject arbitrary web sc...
CVE-2010-1741SQL injection vulnerability in request_account.php in Billwerx RC 5.2.2 PL2 allows remote attackers to execute arbitrary...
CVE-2010-1740SQL injection vulnerability in newsletter.php in GuppY 4.5.18 allows remote attackers to execute arbitrary SQL commands ...
CVE-2010-1739SQL injection vulnerability in the Newsfeeds (com_newsfeeds) component for Joomla! allows remote attackers to execute ar...
CVE-2010-1738Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-1448. Reason: This candidate is a duplicate of...
CVE-2010-1737PHP remote file inclusion vulnerability in core/includes/gfw_smarty.php in Gallo 0.1.0, when magic_quotes_gpc is disable...
CVE-2010-1736KrM Haber 1.0 stores sensitive information under the web root with insufficient access control, which allows remote atta...
CVE-2010-1731Google Chrome on the HTC Hero allows remote attackers to cause a denial of service (application crash) via JavaScript th...
CVE-2010-1730Dolphin Browser 2.5.0 on the HTC Hero allows remote attackers to cause a denial of service (application crash) via JavaS...
CVE-2010-1729WebKit.dll in WebKit, as used in Safari.exe 4.531.9.1 in Apple Safari, allows remote attackers to cause a denial of serv...
CVE-2010-1728Opera before 10.53 on Windows and Mac OS X does not properly handle a series of document modifications that occur asynch...
CVE-2010-1727SQL injection vulnerability in type.asp in JobPost 1.0 allows remote attackers to execute arbitrary SQL commands via the...
CVE-2010-1726SQL injection vulnerability in offers_buy.php in EC21 Clone 3.0 allows remote attackers to execute arbitrary SQL command...
CVE-2010-1725SQL injection vulnerability in offers_buy.php in Alibaba Clone Platinum allows remote attackers to execute arbitrary SQL...
CVE-2010-1724Multiple cross-site scripting (XSS) vulnerabilities in Zikula Application Framework 1.2.2, and possibly earlier, allow r...
CVE-2010-1438Web Application Finger Printer (WAFP) 0.01-26c3 uses fixed pathnames under /tmp for temporary files and directories, whi...
CVE-2010-0995Stack-based buffer overflow in Internet Download Manager (IDM) before 5.19 allows remote attackers to execute arbitrary ...
CVE-2010-1735The SfnLOGONNOTIFY function in win32k.sys in the kernel in Microsoft Windows 2000, XP, and Server 2003 allows local user...
CVE-2010-1734The SfnINSTRING function in win32k.sys in the kernel in Microsoft Windows 2000, XP, and Server 2003 allows local users t...
CVE-2010-1733Multiple SQL injection vulnerabilities in OCS Inventory NG before 1.02.3 allow remote attackers to execute arbitrary SQL...
CVE-2010-1732Cross-site request forgery (CSRF) vulnerability in the users module in Zikula Application Framework before 1.2.3 allows ...
CVE-2010-1681Buffer overflow in VISIODWG.DLL before 10.0.6880.4 in Microsoft Office Visio allows user-assisted remote attackers to ex...
CVE-2010-1583SQL injection vulnerability in the loadByKey function in the TznDbConnection class in tzn_mysql.php in Tirzen (aka TZN) ...

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now