2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-1048 | — | — | 1.4% | Mar 23, 2010 | Cross-site scripting (XSS) vulnerability in blog/index.php in Uiga Business Portal allows remote attackers to inject arb... |
| CVE-2010-1047 | — | — | 1.0% | Mar 23, 2010 | SQL injection vulnerability in index.php in MASA2EL Music City 1.0 and 1.1 allows remote attackers to execute arbitrary ... |
| CVE-2010-1046 | — | — | 1.0% | Mar 23, 2010 | Multiple SQL injection vulnerabilities in index.php in Rostermain 1.1 and earlier allow remote attackers to execute arbi... |
| CVE-2010-1045 | — | — | 1.0% | Mar 23, 2010 | SQL injection vulnerability in the Productbook (com_productbook) component 1.0.4 for Joomla! allows remote attackers to ... |
| CVE-2010-1044 | — | — | 1.0% | Mar 23, 2010 | SQL injection vulnerability in Login.do in ManageEngine OpUtils 5.0 allows remote attackers to execute arbitrary SQL com... |
| CVE-2010-1043 | — | — | 2.4% | Mar 23, 2010 | Directory traversal vulnerability in index.php in jaxCMS 1.0 allows remote attackers to include and execute arbitrary lo... |
| CVE-2010-1042 | — | — | 10.3% | Mar 23, 2010 | Microsoft Windows Media Player 11 does not properly perform colorspace conversion, which allows remote attackers to caus... |
| CVE-2010-1041 | — | — | 2.3% | Mar 23, 2010 | Unspecified vulnerability in the single sign-on functionality in the Web Services implementation in IBM DB2 Content Mana... |
| CVE-2010-0163 | — | — | 3.2% | Mar 23, 2010 | Mozilla Thunderbird before 2.0.0.24 and SeaMonkey before 1.1.19 process e-mail attachments with a parser that performs c... |
| CVE-2010-0161 | — | — | 1.7% | Mar 23, 2010 | The nsAuthSSPI::Unwrap function in extensions/auth/nsAuthSSPI.cpp in Mozilla Thunderbird before 2.0.0.24 and SeaMonkey b... |
| CVE-2010-1029 | — | — | 10.4% | Mar 19, 2010 | Stack consumption vulnerability in the WebCore::CSSSelector function in WebKit, as used in Apple Safari 4.0.4, Apple Saf... |
| CVE-2010-1028 | — | — | 9.2% | Mar 19, 2010 | Integer overflow in the decompression functionality in the Web Open Fonts Format (WOFF) decoder in Mozilla Firefox 3.6 b... |
| CVE-2010-1003 | — | — | 5.1% | Mar 19, 2010 | Directory traversal vulnerability in www/editor/tiny_mce/langs/language.php in eFront 3.5.x through 3.5.5 allows remote ... |
| CVE-2010-0688 | — | — | 37.9% | Mar 19, 2010 | Stack-based buffer overflow in Orbital Viewer 1.04 allows user-assisted remote attackers to execute arbitrary code via a... |
| CVE-2010-0736 | — | — | 1.7% | Mar 19, 2010 | Cross-site scripting (XSS) vulnerability in the view_queryform function in lib/viewvc.py in ViewVC before 1.0.10, and 1.... |
| CVE-2010-0734 | — | — | 4.4% | Mar 19, 2010 | content_encoding.c in libcurl 7.10.5 through 7.19.7, when zlib is enabled, does not properly restrict the amount of call... |
| CVE-2010-0733 | — | — | 6.9% | Mar 19, 2010 | Integer overflow in src/backend/executor/nodeHash.c in PostgreSQL 8.4.1 and earlier, and 8.5 through 8.5alpha2, allows r... |
| CVE-2010-0732 | — | — | 0.3% | Mar 19, 2010 | gdk/gdkwindow.c in GTK+ before 2.18.5, as used in gnome-screensaver before 2.28.1, performs implicit paints on windows o... |
| CVE-2010-0465 | — | — | 1.0% | Mar 19, 2010 | Cross-site scripting (XSS) vulnerability in the online Documents functionality in SugarCRM 5.2.x before 5.2.0l and 5.5.x... |
| CVE-2010-0008 | — | — | 4.5% | Mar 19, 2010 | The sctp_rcv_ootb function in the SCTP implementation in the Linux kernel before 2.6.23 allows remote attackers to cause... |
| CVE-2010-1027 | — | — | 1.1% | Mar 19, 2010 | SQL injection vulnerability in the Meet Travelmates (travelmate) extension 0.1.1 and earlier for TYPO3 allows remote att... |
| CVE-2010-1026 | — | — | 1.1% | Mar 19, 2010 | SQL injection vulnerability in the CleanDB - DBAL (tmsw_cleandb) extension 2.1.0 and earlier for TYPO3 allows remote att... |
| CVE-2010-1025 | — | — | 1.0% | Mar 19, 2010 | Cross-site scripting (XSS) vulnerability in the TGM-Newsletter (tgm_newsletter) extension 0.0.2 for TYPO3 allows remote ... |
| CVE-2010-1024 | — | — | 1.1% | Mar 19, 2010 | SQL injection vulnerability in the TGM-Newsletter (tgm_newsletter) extension 0.0.2 for TYPO3 allows remote attackers to ... |
| CVE-2010-1023 | — | — | 1.3% | Mar 19, 2010 | Cross-site scripting (XSS) vulnerability in the UserTask Center, Recent (taskcenter_recent) extension 0.1.0 and earlier ... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now