2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-1618 | — | — | 1.8% | Apr 29, 2010 | Cross-site scripting (XSS) vulnerability in the phpCAS client library before 1.1.0, as used in Moodle 1.8.x before 1.8.1... |
| CVE-2010-1617 | — | — | 1.5% | Apr 29, 2010 | user/view.php in Moodle 1.8.x before 1.8.12 and 1.9.x before 1.9.8 does not properly check a role, which allows remote a... |
| CVE-2010-1616 | — | — | 1.2% | Apr 29, 2010 | Moodle 1.8.x and 1.9.x before 1.9.8 can create new roles when restoring a course, which allows teachers to create new ac... |
| CVE-2010-1615 | — | — | 1.7% | Apr 29, 2010 | Multiple SQL injection vulnerabilities in Moodle 1.8.x before 1.8.12 and 1.9.x before 1.9.8 allow remote attackers to ex... |
| CVE-2010-1614 | — | — | 1.7% | Apr 29, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in Moodle 1.8.x before 1.8.12 and 1.9.x before 1.9.8 allow remote at... |
| CVE-2010-1613 | — | — | 1.8% | Apr 29, 2010 | Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which m... |
| CVE-2010-1166 | — | — | 5.4% | Apr 29, 2010 | The fbComposite function in fbpict.c in the Render extension in the X server in X.Org X11R7.1 allows remote authenticate... |
| CVE-2010-0817 | — | — | 28.7% | Apr 29, 2010 | Cross-site scripting (XSS) vulnerability in _layouts/help.aspx in Microsoft SharePoint Server 2007 12.0.0.6421 and possi... |
| CVE-2010-1612 | — | — | 1.7% | Apr 29, 2010 | The IBM WebSphere DataPower XML Accelerator XA35, Low Latency Appliance XM70, Integration Appliance XI50, B2B Appliance ... |
| CVE-2010-1611 | — | — | 1.0% | Apr 29, 2010 | Cross-site request forgery (CSRF) vulnerability in AlegroCart 1.1 allows remote attackers to hijack the authentication o... |
| CVE-2010-1610 | — | — | 0.6% | Apr 29, 2010 | Cross-site request forgery (CSRF) vulnerability in index.php in OpenCart 1.4 allows remote attackers to hijack the authe... |
| CVE-2010-1609 | — | — | 1.0% | Apr 29, 2010 | Cross-site scripting (XSS) vulnerability in SAP NetWeaver 2004 before SP21 and 2004s before SP13 allows remote attackers... |
| CVE-2010-1608 | — | — | 5.8% | Apr 29, 2010 | Stack-based buffer overflow in IBM Lotus Notes 8.5 and 8.5fp1, and possibly other versions, allows remote attackers to e... |
| CVE-2010-1607 | — | — | 8.2% | Apr 29, 2010 | Directory traversal vulnerability in wmi.php in the Webmoney Web Merchant Interface (aka WMI or com_wmi) component 1.5.0... |
| CVE-2010-1606 | — | — | 1.4% | Apr 29, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in NCT Jobs Portal Script allow remote attackers to inject arbitrary... |
| CVE-2010-1605 | — | — | 1.0% | Apr 29, 2010 | Multiple SQL injection vulnerabilities in isearch.php in NCT Jobs Portal Script allow remote attackers to execute arbitr... |
| CVE-2010-1604 | — | — | 0.9% | Apr 29, 2010 | Multiple SQL injection vulnerabilities in admin_login.php in NCT Jobs Portal Script allow remote attackers to execute ar... |
| CVE-2010-1603 | — | — | 7.4% | Apr 29, 2010 | Directory traversal vulnerability in the ZiMB Core (aka ZiMBCore or com_zimbcore) component 0.1 in the ZiMB Manager coll... |
| CVE-2010-1602 | — | — | 15.7% | Apr 29, 2010 | Directory traversal vulnerability in the ZiMB Comment (com_zimbcomment) component 0.8.1 for Joomla! allows remote attack... |
| CVE-2010-1601 | — | — | 16.0% | Apr 29, 2010 | Directory traversal vulnerability in the JA Comment (com_jacomment) component for Joomla! allows remote attackers to rea... |
| CVE-2010-1600 | — | — | 1.2% | Apr 29, 2010 | SQL injection vulnerability in the Media Mall Factory (com_mediamall) component 1.0.4 for Joomla! allows remote attacker... |
| CVE-2010-1599 | — | — | 1.0% | Apr 29, 2010 | SQL injection vulnerability in loadorder.php in NKInFoWeb 2.5 and 5.2.2.0 allows remote attackers to execute arbitrary S... |
| CVE-2010-1598 | — | — | 1.7% | Apr 29, 2010 | phpThumb.php in phpThumb() 1.7.9 and possibly other versions, when ImageMagick is installed, allows remote attackers to ... |
| CVE-2010-1597 | — | — | 11.9% | Apr 29, 2010 | Stack-based buffer overflow in zgtips.dll in ZipGenius 6.3.1.2552 allows user-assisted remote attackers to execute arbit... |
| CVE-2010-1596 | — | — | 1.5% | Apr 28, 2010 | Support Incident Tracker before 3.51, when using LDAP authentication with anonymous binds, allows remote attackers to by... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now