2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2010-1184The Microsoft wireless keyboard uses XOR encryption with a key derived from the MAC address, which makes it easier for r...
CVE-2010-1183Certain patch-installation scripts in Oracle Solaris allow local users to append data to arbitrary files via a symlink a...
CVE-2010-0451The installation process for NFS/ONCplus B.11.31_08 and earlier on HP HP-UX B.11.31 changes the NFS_SERVER setting in th...
CVE-2010-1182Multiple unspecified vulnerabilities in the administrative console in IBM WebSphere Application Server (WAS) 7.0.x befor...
CVE-2010-1181Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) ...
CVE-2010-1180Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) ...
CVE-2010-1179Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) ...
CVE-2010-1178Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) ...
CVE-2010-1177Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) ...
CVE-2010-1176Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) ...
CVE-2010-1175Microsoft Internet Explorer 7.0 on Windows XP and Windows Server 2003 allows remote attackers to have an unspecified imp...
CVE-2010-1174Cisco TFTP Server 1.1 allows remote attackers to cause a denial of service (daemon crash) via a crafted (1) read (aka RR...
CVE-2010-0452Multiple cross-site scripting (XSS) vulnerabilities in HP Project and Portfolio Management Center (PPMC, formerly Mercur...
CVE-2010-1136The Standard Remember method in TikiWiki CMS/Groupware 3.x before 3.5 allows remote attackers to bypass access restricti...
CVE-2010-1135The user_logout function in TikiWiki CMS/Groupware 4.x before 4.2 does not properly delete user login cookies, which all...
CVE-2010-1134SQL injection vulnerability in the _find function in searchlib.php in TikiWiki CMS/Groupware 3.x before 3.5 allows remot...
CVE-2010-1133Multiple SQL injection vulnerabilities in TikiWiki CMS/Groupware 4.x before 4.2 allow remote attackers to execute arbitr...
CVE-2010-1132The mlfi_envrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using the expand option, allow...
CVE-2010-1131JavaScriptCore.dll, as used in Apple Safari 4.0.5 on Windows XP SP3, allows remote attackers to cause a denial of servic...
CVE-2010-1130session.c in the session extension in PHP before 5.2.13, and 5.3.1, does not properly interpret ; (semicolon) characters...
CVE-2010-1129The safe_mode implementation in PHP before 5.2.13 does not properly handle directory pathnames that lack a trailing / (s...
CVE-2010-1128The Linear Congruential Generator (LCG) in PHP before 5.2.13 does not provide the expected entropy, which makes it easie...
CVE-2010-1127Microsoft Internet Explorer 6 and 7 does not initialize certain data structures during execution of the createElement me...
CVE-2010-1126The JavaScript implementation in WebKit allows remote attackers to send selected keystrokes to a form field in a hidden ...
CVE-2010-1125The JavaScript implementation in Mozilla Firefox 3.x before 3.5.10 and 3.6.x before 3.6.4, and SeaMonkey before 2.0.5, a...

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now