2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-4402 | — | — | 2.1% | Dec 6, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in wp-login.php in the Register Plus plugin 3.5.1 and earlier for Wo... |
| CVE-2010-4401 | — | — | 5.6% | Dec 6, 2010 | languages.inc.php in DynPG CMS 4.2.0 allows remote attackers to obtain sensitive information via a direct request, which... |
| CVE-2010-4400 | — | — | 2.2% | Dec 6, 2010 | SQL injection vulnerability in _rights.php in DynPG CMS 4.2.0 allows remote attackers to execute arbitrary SQL commands ... |
| CVE-2010-4399 | — | — | 5.6% | Dec 6, 2010 | Directory traversal vulnerability in languages.inc.php in DynPG CMS 4.1.1 and 4.2.0, when magic_quotes_gpc is disabled, ... |
| CVE-2010-4313 | — | — | 2.7% | Dec 2, 2010 | Unrestricted file upload vulnerability in fileman_file_upload.php in Orbis CMS 1.0.2 allows remote authenticated users t... |
| CVE-2010-4283 | — | — | 9.4% | Dec 2, 2010 | PHP remote file inclusion vulnerability in extras/pandora_diag.php in Pandora FMS before 3.1.1 allows remote attackers t... |
| CVE-2010-4282 | — | — | 19.5% | Dec 2, 2010 | Multiple directory traversal vulnerabilities in Pandora FMS before 3.1.1 allow remote attackers to include and execute a... |
| CVE-2010-4281 | — | — | 9.6% | Dec 2, 2010 | Incomplete blacklist vulnerability in the safe_url_extraclean function in ajax.php in Pandora FMS before 3.1.1 allows re... |
| CVE-2010-4280 | — | — | 5.3% | Dec 2, 2010 | Multiple SQL injection vulnerabilities in Pandora FMS before 3.1.1 allow remote authenticated users to execute arbitrary... |
| CVE-2010-4279 | — | — | 65.6% | Dec 2, 2010 | The default configuration of Pandora FMS 3.1 and earlier specifies an empty string for the loginhash_pwd field, which al... |
| CVE-2010-4278 | — | — | 11.3% | Dec 2, 2010 | operation/agentes/networkmap.php in Pandora FMS before 3.1.1 allows remote authenticated users to execute arbitrary comm... |
| CVE-2010-4374 | — | — | 1.9% | Dec 2, 2010 | The in_mkv plugin in Winamp before 5.6 allows remote attackers to cause a denial of service (application crash) via a Ma... |
| CVE-2010-4373 | — | — | 1.9% | Dec 2, 2010 | The in_mp4 plugin in Winamp before 5.6 allows remote attackers to cause a denial of service (application crash) via craf... |
| CVE-2010-4372 | — | — | 2.8% | Dec 2, 2010 | Integer overflow in the in_nsv plugin in Winamp before 5.6 allows remote attackers to have an unspecified impact via vec... |
| CVE-2010-4371 | — | — | 6.1% | Dec 2, 2010 | Buffer overflow in the in_mod plugin in Winamp before 5.6 allows remote attackers to have an unspecified impact via vect... |
| CVE-2010-4370 | — | — | 5.1% | Dec 2, 2010 | Multiple integer overflows in the in_midi plugin in Winamp before 5.6 allow remote attackers to execute arbitrary code v... |
| CVE-2010-4369 | — | — | 2.7% | Dec 2, 2010 | Directory traversal vulnerability in AWStats before 7.0 allows remote attackers to have an unspecified impact via a craf... |
| CVE-2010-4368 | — | — | 2.5% | Dec 2, 2010 | awstats.cgi in AWStats before 7.0 on Windows accepts a configdir parameter in the URL, which allows remote attackers to ... |
| CVE-2010-4367 | — | — | 27.7% | Dec 2, 2010 | awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the URL, which allows remote attackers to execute arb... |
| CVE-2010-4329 | — | — | 2.5% | Dec 2, 2010 | Cross-site scripting (XSS) vulnerability in the PMA_linkOrButton function in libraries/common.lib.php in the database (d... |
| CVE-2010-4021 | — | — | 2.1% | Dec 2, 2010 | The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 does not properly restrict the use of TGT credentials... |
| CVE-2010-4020 | — | — | 1.9% | Dec 2, 2010 | MIT Kerberos 5 (aka krb5) 1.8.x through 1.8.3 does not reject RC4 key-derivation checksums, which might allow remote aut... |
| CVE-2010-3267 | — | — | 1.9% | Dec 2, 2010 | Multiple SQL injection vulnerabilities in BugTracker.NET before 3.4.5 allow remote authenticated users to execute arbitr... |
| CVE-2010-3266 | — | — | 2.8% | Dec 2, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in BugTracker.NET before 3.4.5 allow remote authenticated users to i... |
| CVE-2010-2586 | — | — | 5.5% | Dec 2, 2010 | Multiple integer overflows in in_nsv.dll in the in_nsv plugin in Winamp before 5.6 allow remote attackers to execute arb... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now