2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-1302 | — | — | 8.5% | Apr 7, 2010 | Directory traversal vulnerability in dwgraphs.php in the DecryptWeb DW Graphs (com_dwgraphs) component 1.0 for Joomla! a... |
| CVE-2010-1301 | — | — | 2.6% | Apr 7, 2010 | SQL injection vulnerability in main.php in Centreon 2.1.5 allows remote attackers to execute arbitrary SQL commands via ... |
| CVE-2010-1300 | — | — | 1.9% | Apr 7, 2010 | SQL injection vulnerability in index.php in Yamamah (aka Dove Photo Album) 1.00 allows remote attackers to execute arbit... |
| CVE-2010-1299 | — | — | 10.7% | Apr 7, 2010 | Multiple PHP remote file inclusion vulnerabilities in DynPG CMS 4.1.0, and possibly earlier, when magic_quotes_gpc is di... |
| CVE-2010-1223 | — | — | 16.8% | Apr 7, 2010 | Multiple buffer overflows in CA XOsoft r12.0 and r12.5 allow remote attackers to execute arbitrary code via (1) a malfor... |
| CVE-2010-1222 | — | — | 2.1% | Apr 7, 2010 | CA XOsoft r12.5 does not properly perform authentication, which allows remote attackers to obtain potentially sensitive ... |
| CVE-2010-1221 | — | — | 2.1% | Apr 7, 2010 | CA XOsoft r12.0 and r12.5 does not properly perform authentication, which allows remote attackers to enumerate usernames... |
| CVE-2010-1186 | — | — | 4.7% | Apr 7, 2010 | Cross-site scripting (XSS) vulnerability in xml/media-rss.php in the NextGEN Gallery plugin before 1.5.2 for WordPress a... |
| CVE-2010-0400 | — | — | 1.7% | Apr 7, 2010 | SQL injection vulnerability in lib/user.php in mahara 1.0.4 allows remote attackers to execute arbitrary SQL commands vi... |
| CVE-2010-1298 | — | — | 1.2% | Apr 6, 2010 | Directory traversal vulnerability in view.php in Pulse CMS 1.2.2 allows remote attackers to read arbitrary files via dir... |
| CVE-2010-1088 | — | — | 2.8% | Apr 6, 2010 | fs/namei.c in Linux kernel 2.6.18 through 2.6.34 does not always follow NFS automount "symlinks," which allows attackers... |
| CVE-2010-1087 | — | — | 3.6% | Apr 6, 2010 | The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause... |
| CVE-2010-1086 | — | — | 3.6% | Apr 6, 2010 | The ULE decapsulation functionality in drivers/media/dvb/dvb-core/dvb_net.c in dvb-core in Linux kernel 2.6.33 and earli... |
| CVE-2010-1085 | — | — | 2.9% | Apr 6, 2010 | The azx_position_ok function in hda_intel.c in Linux kernel 2.6.33-rc4 and earlier, when running on the AMD780V chip set... |
| CVE-2010-1084 | — | — | 3.0% | Apr 6, 2010 | Linux kernel 2.6.18 through 2.6.33, and possibly other versions, allows remote attackers to cause a denial of service (m... |
| CVE-2010-1083 | — | — | 0.4% | Apr 6, 2010 | The processcompl_compat function in drivers/usb/core/devio.c in Linux kernel 2.6.x through 2.6.32, and possibly other ve... |
| CVE-2010-1277 | — | — | 1.7% | Apr 6, 2010 | SQL injection vulnerability in the user.authenticate method in the API in Zabbix 1.8 before 1.8.2 allows remote attacker... |
| CVE-2010-1276 | — | — | 0.9% | Apr 6, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in BBSXP 2008 SP2 allow remote attackers to inject arbitrary web scr... |
| CVE-2010-1275 | — | — | 1.1% | Apr 6, 2010 | Cross-site scripting (XSS) vulnerability in ShowPost.asp in BBSXP 2008 allows remote attackers to inject arbitrary web s... |
| CVE-2010-1274 | — | — | 1.1% | Apr 6, 2010 | Cross-site scripting (XSS) vulnerability in Emweb Wt before 3.1.1 allows remote attackers to inject arbitrary web script... |
| CVE-2010-1273 | — | — | 1.3% | Apr 6, 2010 | Emweb Wt before 3.1.1 does not validate the UTF-8 encoding of (1) form values and (2) JSignal arguments, which has unspe... |
| CVE-2010-1272 | — | — | 2.3% | Apr 6, 2010 | PHP remote file inclusion vulnerability in includes/tgpinc.php in Gnat-TGP 1.2.20 and earlier allows remote attackers to... |
| CVE-2010-1271 | — | — | 1.2% | Apr 6, 2010 | SQL injection vulnerability in showplugs.php in smartplugs 1.3 allows remote attackers to execute arbitrary SQL commands... |
| CVE-2010-1147 | — | — | 8.2% | Apr 6, 2010 | Stack-based buffer overflow in Open Direct Connect Hub (aka Open DC Hub or OpenDCHub) 0.8.1 allows remote authenticated ... |
| CVE-2010-1144 | — | — | — | Apr 6, 2010 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-0751, CVE-2010-1277. Reason: this candidate wa... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now