2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-2473 | MEDIUM | 6.5 | 1.0% | Nov 7, 2019 | Drupal 6.x before 6.16 and 5.x before version 5.22 does not properly block users under certain circumstances. A user wit... |
| CVE-2010-2472 | MEDIUM | 4.8 | 0.8% | Nov 7, 2019 | Locale module and dependent contributed modules in Drupal 6.x before 6.16 and 5.x before version 5.22 do not sanitize th... |
| CVE-2010-2250 | MEDIUM | 6.1 | 1.0% | Nov 7, 2019 | Drupal 5.x and 6.x before 6.16 uses a user-supplied value in output during site installation which could allow an attack... |
| CVE-2010-4178 | MEDIUM | 5.5 | 0.4% | Nov 6, 2019 | MySQL-GUI-tools (mysql-administrator) leaks passwords into process list after with launch of mysql text console |
| CVE-2010-2471 | MEDIUM | 6.1 | 1.1% | Nov 6, 2019 | Drupal versions 5.x and 6.x has open redirection |
| CVE-2010-3674 | MEDIUM | 6.1 | 1.0% | Nov 5, 2019 | TYPO3 before 4.4.1 allows XSS in the frontend search box. |
| CVE-2010-3673 | MEDIUM | 5.3 | 1.2% | Nov 5, 2019 | TYPO3 before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows information disclosure in the mail header of the H... |
| CVE-2010-3672 | MEDIUM | 6.1 | 1.0% | Nov 5, 2019 | TYPO3 before 4.3.4 and 4.4.x before 4.4.1 allows XSS in the textarea view helper in an extbase extension. |
| CVE-2010-3671 | MEDIUM | 6.5 | 1.6% | Nov 5, 2019 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 is open to a session fixation attack... |
| CVE-2010-3670 | MEDIUM | 4.8 | 0.5% | Nov 5, 2019 | TYPO3 before 4.3.4 and 4.4.x before 4.4.1 contains insecure randomness during generation of a hash with the "forgot pass... |
| CVE-2010-3669 | MEDIUM | 5.4 | 0.7% | Nov 4, 2019 | TYPO3 before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows XSS and Open Redirection in the frontend login box... |
| CVE-2010-3667 | MEDIUM | 5.3 | 1.1% | Nov 4, 2019 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows Spam Abuse in the native form... |
| CVE-2010-3666 | MEDIUM | 5.3 | 1.2% | Nov 4, 2019 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 contains insecure randomness in the ... |
| CVE-2010-3665 | MEDIUM | 5.4 | 0.8% | Nov 4, 2019 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows XSS on the Extension Manager. |
| CVE-2010-3664 | MEDIUM | 6.5 | 1.2% | Nov 4, 2019 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows Information Disclosure on the... |
| CVE-2010-3661 | MEDIUM | 6.1 | 0.9% | Nov 1, 2019 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows Open Redirection on the backe... |
| CVE-2010-3660 | MEDIUM | 5.4 | 0.8% | Nov 1, 2019 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows XSS on the backend. |
| CVE-2010-2490 | MEDIUM | 6.5 | 1.6% | Oct 31, 2019 | Mumble: murmur-server has DoS due to malformed client query |
| CVE-2010-1673 | MEDIUM | 6.1 | 0.8% | Oct 30, 2019 | A cross-site scripting (XSS) vulnerability in ikiwiki before 3.20101112 allows remote attackers to inject arbitrary web ... |
| CVE-2010-0749 | MEDIUM | 5.3 | 1.6% | Oct 30, 2019 | Transmission before 1.92 allows attackers to prevent download of a file by corrupted data during the endgame. |
| CVE-2010-0398 | MEDIUM | 6.5 | 1.0% | Oct 30, 2019 | The init script in autokey before 0.61.3-2 allows local attackers to write to arbitrary files via a symlink attack. |
| CVE-2010-0207 | MEDIUM | 5.5 | 0.8% | Oct 30, 2019 | In xpdf, the xref table contains an infinite loop which allows remote attackers to cause a denial of service (applicatio... |
| CVE-2010-0206 | MEDIUM | 5.5 | 1.1% | Oct 30, 2019 | xpdf allows remote attackers to cause a denial of service (NULL pointer dereference and crash) in the way it processes J... |
| CVE-2010-4237 | MEDIUM | 5.9 | 0.8% | Oct 29, 2019 | Mercurial before 1.6.4 fails to verify the Common Name field of SSL certificates which allows remote attackers who acqui... |
| CVE-2010-3373 | MEDIUM | 5.5 | 0.4% | Oct 29, 2019 | paxtest handles temporary files insecurely |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now