2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2010-0172toolkit/components/passwordmgr/src/nsLoginManagerPrompter.js in the asynchronous Authorization Prompt implementation in ...
CVE-2010-0171Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x before 3.6.2; Thunderbird before 3.0.2; and SeaMonkey...
CVE-2010-0170Mozilla Firefox 3.6 before 3.6.2 does not offer plugins the expected window.location protection mechanism, which might a...
CVE-2010-0169The CSSLoaderImpl::DoSheetComplete function in layout/style/nsCSSLoader.cpp in Mozilla Firefox 3.0.x before 3.0.18, 3.5....
CVE-2010-0168The nsDocument::MaybePreLoadImage function in content/base/src/nsDocument.cpp in the image-preloading implementation in ...
CVE-2010-0167The browser engine in Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x before 3.6.2; Thunderbird befor...
CVE-2010-0166The gfxTextRun::SanitizeGlyphRuns function in gfx/thebes/src/gfxFont.cpp in the browser engine in Mozilla Firefox 3.6 be...
CVE-2010-0165The TraceRecorder::traverseScopeChain function in js/src/jstracer.cpp in the browser engine in Mozilla Firefox 3.6 befor...
CVE-2010-0164Use-after-free vulnerability in the imgContainer::InternalAddFrameHelper function in src/imgContainer.cpp in libpr0n in ...
CVE-2010-1116LookMer Music Portal stores sensitive information under the web root with insufficient access control, which allows remo...
CVE-2010-1115Directory traversal vulnerability in news/include/customize.php in Web Server Creator - Web Portal 0.1 allows remote att...
CVE-2010-1114Multiple PHP remote file inclusion vulnerabilities in Web Server Creator - Web Portal 0.1 allow remote attackers to exec...
CVE-2010-1113Cross-site scripting (XSS) vulnerability in the forum page in Web Server Creator - Web Portal 0.1 allows remote attacker...
CVE-2010-1112Cross-site scripting (XSS) vulnerability in cat.php in KloNews 2.0 allows remote attackers to inject arbitrary web scrip...
CVE-2010-1111Multiple cross-site scripting (XSS) vulnerabilities in Jokes Complete Website allow remote attackers to inject arbitrary...
CVE-2010-1110Directory traversal vulnerability in index.php in phpMySport 1.4 allows remote attackers to list arbitrary directories v...
CVE-2010-1109Multiple SQL injection vulnerabilities in index.php in phpMySport 1.4, when magic_quotes_gpc is disabled, allow remote a...
CVE-2010-1108Cross-site scripting (XSS) vulnerability in the Control Panel module 5.x through 5.x-1.5 and 6.x through 6.x-1.2 for Dru...
CVE-2010-1107Cross-site scripting (XSS) vulnerability in the Recent Comments module 5.x through 5.x-1.2 and 6.x through 6.x-1.0 for D...
CVE-2010-1106PHP remote file inclusion vulnerability in cgi/index.php in AdvertisementManager 3.1.0 allows remote attackers to execut...
CVE-2010-1105Cross-site scripting (XSS) vulnerability in cgi/index.php in AdvertisementManager 3.1.0 and 3.6 allows remote attackers ...
CVE-2010-1104Cross-site scripting (XSS) vulnerability in Zope 2.8.x before 2.8.12, 2.9.x before 2.9.12, 2.10.x before 2.10.11, 2.11.x...
CVE-2010-1103Integer overflow in Stainless allows remote attackers to bypass intended port restrictions on outbound TCP connections v...
CVE-2010-1102Integer overflow in OmniWeb allows remote attackers to bypass intended port restrictions on outbound TCP connections via...
CVE-2010-1101Integer overflow in Alexander Clauss iCab allows remote attackers to bypass intended port restrictions on outbound TCP c...

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now