2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-4809 | — | — | 1.0% | Jul 8, 2011 | SQL injection vulnerability in index.php in DBSite 1.0 allows remote attackers to execute arbitrary SQL commands via the... |
| CVE-2010-4808 | — | — | 1.0% | Jul 8, 2011 | SQL injection vulnerability in index.php in Webmatic allows remote attackers to execute arbitrary SQL commands via the p... |
| CVE-2010-4667 | — | — | 1.1% | Jun 14, 2011 | Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery (CPG) before 1.4.27 allows remote attackers to inje... |
| CVE-2010-4804 | — | — | 27.0% | Jun 9, 2011 | The Android browser in Android before 2.3.4 allows remote attackers to obtain SD card contents via crafted content:// UR... |
| CVE-2010-4663 | — | — | 1.5% | Jun 8, 2011 | Unspecified vulnerability in the News module in CMS Made Simple (CMSMS) before 1.9.1 has unknown impact and attack vecto... |
| CVE-2010-2246 | — | — | 6.6% | May 26, 2011 | feh before 1.8, when the --wget-timestamp option is enabled, might allow remote attackers to execute arbitrary commands ... |
| CVE-2010-4807 | — | — | 0.6% | May 26, 2011 | Race condition in IBM Web Content Manager (WCM) 7.0.0.1 before CF003 allows remote authenticated users to cause a denial... |
| CVE-2010-4806 | — | — | 1.0% | May 26, 2011 | The authoring tool in IBM Web Content Manager (WCM) 6.1.5, and 7.0.0.1 before CF003, allows remote authenticated users t... |
| CVE-2010-4805 | HIGH | 7.5 | 3.6% | May 26, 2011 | The socket implementation in net/core/sock.c in the Linux kernel before 2.6.35 does not properly manage a backlog of rec... |
| CVE-2010-4251 | HIGH | 7.5 | 3.9% | May 26, 2011 | The socket implementation in net/core/sock.c in the Linux kernel before 2.6.34 does not properly manage a backlog of rec... |
| CVE-2010-3908 | — | — | 3.0% | May 20, 2011 | FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (memory... |
| CVE-2010-0217 | — | — | 1.3% | May 20, 2011 | Zeacom Chat Server before 5.1 uses too short a random string for the JSESSIONID value, which makes it easier for remote ... |
| CVE-2010-0216 | — | — | 1.6% | May 10, 2011 | authenticate_ad_setup_finished.cfm in MediaCAST 8 and earlier allows remote attackers to discover usernames and cleartex... |
| CVE-2010-4284 | — | — | 1.8% | May 9, 2011 | SQL injection vulnerability in the authentication form in the integrated web server in the Data Management Server (DMS) ... |
| CVE-2010-4665 | — | — | 2.6% | May 3, 2011 | Integer overflow in the ReadDirectory function in tiffdump.c in tiffdump in LibTIFF before 3.9.5 allows remote attackers... |
| CVE-2010-4803 | — | — | 2.0% | May 3, 2011 | Mojolicious before 0.999927 does not properly implement HMAC-MD5 checksums, which has unspecified impact and remote atta... |
| CVE-2010-4802 | — | — | 2.1% | May 3, 2011 | Commands.pm in Mojolicious before 0.999928 does not properly perform CGI environment detection, which has unspecified im... |
| CVE-2010-4801 | — | — | 2.0% | Apr 27, 2011 | Directory traversal vulnerability in admin/updatelist.php in BaconMap 1.0 allows remote attackers to include and execute... |
| CVE-2010-4800 | — | — | 1.2% | Apr 27, 2011 | SQL injection vulnerability in doadd.php in BaconMap 1.0 allows remote attackers to execute arbitrary SQL commands via t... |
| CVE-2010-4799 | — | — | 1.1% | Apr 27, 2011 | Multiple SQL injection vulnerabilities in Chipmunk Pwngame 1.0, when magic_quotes_gpc is disabled, allow remote attacker... |
| CVE-2010-4798 | — | — | 2.3% | Apr 27, 2011 | Directory traversal vulnerability in index.php in OrangeHRM 2.6.0.1 allows remote attackers to include and execute arbit... |
| CVE-2010-4797 | — | — | 1.2% | Apr 27, 2011 | Multiple SQL injection vulnerabilities in the log-in form in Truworth Flex Timesheet allow remote attackers to execute a... |
| CVE-2010-4796 | — | — | 1.1% | Apr 27, 2011 | Multiple SQL injection vulnerabilities in PHPYun 1.1.6 allow remote attackers to execute arbitrary SQL commands via the ... |
| CVE-2010-4795 | — | — | 1.1% | Apr 27, 2011 | SQL injection vulnerability in the JS Calendar (com_jscalendar) component 1.5.1 and 1.5.4 for Joomla! allows remote atta... |
| CVE-2010-4794 | — | — | 1.7% | Apr 27, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in the JoomlaSeller JS Calendar (com_jscalendar) component 1.5.1 and... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now