2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

CVE IDSeverityCVSSDescription
CVE-2010-3768Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey b...
CVE-2010-3767Integer overflow in the NewIdArray function in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey befo...
CVE-2010-3766Use-after-free vulnerability in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, allo...
CVE-2010-4518Cross-site scripting (XSS) vulnerability in wp-safe-search/wp-safe-search-jx.php in the Safe Search plugin 0.7 for WordP...
CVE-2010-4517SQL injection vulnerability in the JExtensions JE Auto (com_jeauto) component 1.0 for Joomla!, when magic_quotes_gpc is ...
CVE-2010-4516Multiple cross-site scripting (XSS) vulnerabilities in the JXtended Comments component before 1.3.1 for Joomla allow rem...
CVE-2010-4515Cross-site scripting (XSS) vulnerability in Citrix Web Interface 5.0, 5.1, and 5.3 allows remote attackers to inject arb...
CVE-2010-4514Cross-site scripting (XSS) vulnerability in Install/InstallWizard.aspx in DotNetNuke 5.05.01 and 5.06.00 allows remote a...
CVE-2010-4513Multiple cross-site scripting (XSS) vulnerabilities in Zimplit CMS 3.0, and possibly earlier, allow remote attackers to ...
CVE-2010-4512Cobbler before 2.0.4 uses an incorrect umask value, which allows local users to have an unspecified impact by leveraging...
CVE-2010-4511Unspecified vulnerability in Movable Type 4.x before 4.35 and 5.x before 5.04 has unknown impact and attack vectors rela...
CVE-2010-4509Multiple unspecified vulnerabilities in Movable Type 4.x before 4.35 and 5.x before 5.04 have unknown impact and attack ...
CVE-2010-4508The WebSockets implementation in Mozilla Firefox 4 through 4.0 Beta 7 does not properly perform proxy upgrade negotiatio...
CVE-2010-4009Integer overflow in Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of ...
CVE-2010-3922SQL injection vulnerability in Movable Type 4.x before 4.35 and 5.x before 5.04 allows remote attackers to execute arbit...
CVE-2010-3921Cross-site scripting (XSS) vulnerability in Movable Type 4.x before 4.35 and 5.x before 5.04 allows remote attackers to ...
CVE-2010-3802Integer signedness error in Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a de...
CVE-2010-3801Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corr...
CVE-2010-3800Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corr...
CVE-2010-2235template_api.py in Cobbler before 2.0.7, as used in Red Hat Network Satellite Server and other products, does not disabl...
CVE-2010-1508Heap-based buffer overflow in Apple QuickTime before 7.6.9 on Windows allows remote attackers to execute arbitrary code ...
CVE-2010-0530Apple QuickTime before 7.6.9 on Windows sets weak permissions for the Apple Computer directory in the profile of a user ...
CVE-2010-4505Multiple SQL injection vulnerabilities in login.php in Injader 2.4.4, when magic_quotes_gpc is disabled, allow remote at...
CVE-2010-4504Multiple cross-site scripting (XSS) vulnerabilities in eSyndiCat Directory 2.3 allow remote attackers to inject arbitrar...
CVE-2010-4503SQL injection vulnerability in indexlight.php in Aigaion 1.3.4 allows remote attackers to execute arbitrary SQL commands...

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now