2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2010-0656WebKit before r51295, as used in Google Chrome before 4.0.249.78, presents a directory-listing page in response to an XM...
CVE-2010-0655Use-after-free vulnerability in Google Chrome before 4.0.249.78 allows user-assisted remote attackers to cause a denial ...
CVE-2010-0654Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and S...
CVE-2010-0653Opera before 10.10 permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MI...
CVE-2010-0652Microsoft Internet Explorer permits cross-origin loading of CSS stylesheets even when the stylesheet download has an inc...
CVE-2010-0651WebKit before r52784, as used in Google Chrome before 4.0.249.78 and Apple Safari before 4.0.5, permits cross-origin loa...
CVE-2010-0650WebKit, as used in Google Chrome before 4.0.249.78 and Apple Safari, allows remote attackers to bypass intended restrict...
CVE-2010-0649Integer overflow in the CrossCallParamsEx::CreateFromBuffer function in sandbox/src/crosscall_server.cc in Google Chrome...
CVE-2010-0648Mozilla Firefox, possibly before 3.6, allows remote attackers to discover a redirect's target URL, for the session of a ...
CVE-2010-0647WebKit before r53525, as used in Google Chrome before 4.0.249.89, allows remote attackers to execute arbitrary code in t...
CVE-2010-0646Multiple integer signedness errors in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, ...
CVE-2010-0645Multiple integer overflows in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow re...
CVE-2010-0644Google Chrome before 4.0.249.89, when a SOCKS 5 proxy server is configured, sends DNS queries directly, which allows rem...
CVE-2010-0643Google Chrome before 4.0.249.89 attempts to make direct connections to web sites when all configured proxy servers are u...
CVE-2010-0556browser/login/login_prompt.cc in Google Chrome before 4.0.249.89 populates an authentication dialog with credentials tha...
CVE-2010-0642Cisco Collaboration Server (CCS) 5 allows remote attackers to read the source code of JHTML files via URL encoded charac...
CVE-2010-0641Cross-site scripting (XSS) vulnerability in webline/html/admin/wcs/LoginPage.jhtml in Cisco Collaboration Server (CCS) 5...
CVE-2010-0415The do_pages_move function in mm/migrate.c in the Linux kernel before 2.6.33-rc7 does not validate node values, which al...
CVE-2010-0307The load_elf_binary function in fs/binfmt_elf.c in the Linux kernel before 2.6.32.8 on the x86_64 platform does not ensu...
CVE-2010-0136OpenOffice.org (OOo) 2.0.4, 2.4.1, and 3.1.1 does not properly enforce Visual Basic for Applications (VBA) macro securit...
CVE-2010-0639The htcpHandleTstRequest function in htcp.c in Squid 2.x before 2.6.STABLE24 and 2.7 before 2.7.STABLE8, and htcp.cc in ...
CVE-2010-0638Cross-site request forgery (CSRF) vulnerability in WebCalendar 1.2.0 allows remote attackers to hijack the authenticatio...
CVE-2010-0623The futex_lock_pi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly manage a certain re...
CVE-2010-0622The wake_futex_pi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly handle certain unlo...
CVE-2010-0291The Linux kernel before 2.6.32.4 allows local users to gain privileges or cause a denial of service (panic) by calling t...

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now