Strix
26.1K

2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

CRITICAL54

1.0%

HIGH133

2.5%

MEDIUM83

1.6%

LOW2

0.0%

UNKNOWN4,977

94.8%

CVE IDSeverityCVSSDescription
CVE-2010-3674MEDIUM6.1TYPO3 before 4.4.1 allows XSS in the frontend search box.
CVE-2010-3673MEDIUM5.3TYPO3 before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows information disclosure in the mail header of the H...
CVE-2010-3672MEDIUM6.1TYPO3 before 4.3.4 and 4.4.x before 4.4.1 allows XSS in the textarea view helper in an extbase extension.
CVE-2010-3671MEDIUM6.5TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 is open to a session fixation attack...
CVE-2010-3670MEDIUM4.8TYPO3 before 4.3.4 and 4.4.x before 4.4.1 contains insecure randomness during generation of a hash with the "forgot pass...
CVE-2010-2222HIGH7.5The _ger_parse_control function in Red Hat Directory Server 8 and the 389 Directory Server allows attackers to cause a d...
CVE-2010-3669MEDIUM5.4TYPO3 before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows XSS and Open Redirection in the frontend login box...
CVE-2010-3668HIGH7.5TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows Header Injection in the secur...
CVE-2010-3667MEDIUM5.3TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows Spam Abuse in the native form...
CVE-2010-3666MEDIUM5.3TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 contains insecure randomness in the ...
CVE-2010-3665MEDIUM5.4TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows XSS on the Extension Manager.
CVE-2010-3664MEDIUM6.5TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows Information Disclosure on the...
CVE-2010-3663HIGH8.8TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 contains an insecure default value o...
CVE-2010-3662HIGH8.8TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows SQL Injection on the backend.
CVE-2010-3661MEDIUM6.1TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows Open Redirection on the backe...
CVE-2010-3660MEDIUM5.4TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows XSS on the backend.
CVE-2010-2783CRITICAL9.1IcedTea6 before 1.7.4 allow unsigned apps to read and write arbitrary files, related to Extended JNLP Services.
CVE-2010-2548CRITICAL9.1IcedTea6 before 1.7.4 does not properly check property access, which allows unsigned apps to read and write arbitrary fi...
CVE-2010-2490MEDIUM6.5Mumble: murmur-server has DoS due to malformed client query
CVE-2010-1673MEDIUM6.1A cross-site scripting (XSS) vulnerability in ikiwiki before 3.20101112 allows remote attackers to inject arbitrary web ...
CVE-2010-0749MEDIUM5.3Transmission before 1.92 allows attackers to prevent download of a file by corrupted data during the endgame.
CVE-2010-0748CRITICAL9.8Transmission before 1.92 allows an attacker to cause a denial of service (crash) or possibly have other unspecified impa...
CVE-2010-0747HIGH7.8drbd8 allows local users to bypass intended restrictions for certain actions via netlink packets, similar to CVE-2009-37...
CVE-2010-0737HIGH8A missing permission check was found in The CLI in JBoss Operations Network before 2.3.1 does not properly check permiss...
CVE-2010-0398MEDIUM6.5The init script in autokey before 0.61.3-2 allows local attackers to write to arbitrary files via a symlink attack.

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now