2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-3987 | — | — | 1.5% | Oct 28, 2010 | Cross-site scripting (XSS) vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attac... |
| CVE-2010-0112 | — | — | 5.8% | Oct 28, 2010 | Multiple SQL injection vulnerabilities in the Administrative Interface in the IIS extension in Symantec IM Manager befor... |
| CVE-2010-3933 | — | — | 2.3% | Oct 28, 2010 | Ruby on Rails 2.3.9 and 3.0.0 does not properly handle nested attributes, which allows remote attackers to modify arbitr... |
| CVE-2010-3842 | — | — | 1.7% | Oct 28, 2010 | Absolute path traversal vulnerability in curl 7.20.0 through 7.21.1, when the --remote-header-name or -J option is used,... |
| CVE-2010-3713 | — | — | 1.2% | Oct 28, 2010 | rss.php in UseBB before 1.0.11 does not properly handle forum configurations in which a user has the view permission but... |
| CVE-2010-3712 | — | — | 1.5% | Oct 28, 2010 | Cross-site scripting (XSS) vulnerability in Joomla! 1.5.x before 1.5.21 and 1.6.x before 1.6.1 allows remote attackers t... |
| CVE-2010-3711 | — | — | 3.3% | Oct 28, 2010 | libpurple in Pidgin before 2.7.4 does not properly validate the return value of the purple_base64_decode function, which... |
| CVE-2010-2891 | — | — | 14.0% | Oct 28, 2010 | Buffer overflow in the smiGetNode function in lib/smi.c in libsmi 0.4.8 allows context-dependent attackers to execute ar... |
| CVE-2010-4099 | — | — | 2.7% | Oct 27, 2010 | ess.pm in NitroSecurity NitroView ESM 8.4.0a, when ESSPMDebug is enabled, allows remote attackers to execute arbitrary c... |
| CVE-2010-4098 | — | — | 2.1% | Oct 27, 2010 | monotone before 0.48.1, when configured to allow remote commands, allows remote attackers to cause a denial of service (... |
| CVE-2010-4097 | — | — | 1.7% | Oct 27, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in index.php in Aardvark Topsites PHP 5.2.0 and 5.2.1 allow remote a... |
| CVE-2010-4096 | — | — | 0.5% | Oct 27, 2010 | share/ma/keys_for_user in Monkeysphere 0.31 and 0.32 allows local users to execute arbitrary code via unknown manipulati... |
| CVE-2010-3227 | — | — | 21.1% | Oct 26, 2010 | Stack-based buffer overflow in the UpdateFrameTitleForDocument method in the CFrameWnd class in mfc42.dll in the Microso... |
| CVE-2010-4095 | — | — | 1.6% | Oct 26, 2010 | Directory traversal vulnerability in the FTP client in Serengeti Systems Incorporated Robo-FTP 3.7.3, and probably other... |
| CVE-2010-3985 | — | — | 2.0% | Oct 26, 2010 | Cross-site scripting (XSS) vulnerability in HP Operations Orchestration before 9.0, when Internet Explorer 6.0 is used, ... |
| CVE-2010-3491 | — | — | 4.5% | Oct 26, 2010 | The (1) ActiveMatrix Runtime and (2) ActiveMatrix Administrator components in TIBCO ActiveMatrix Service Grid before 2.3... |
| CVE-2010-2886 | — | — | 1.8% | Oct 26, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in Adobe RoboHelp 7 and 8, and RoboHelp Server 7 and 8, allow remote... |
| CVE-2010-2885 | — | — | 1.7% | Oct 26, 2010 | Cross-site scripting (XSS) vulnerability in Adobe RoboHelp 7 and 8, and RoboHelp Server 7 and 8, allows remote attackers... |
| CVE-2010-2585 | — | — | 4.7% | Oct 26, 2010 | Multiple buffer overflows in the RealPage Module Upload ActiveX control in Realpage.dll 1.0.0.9 in RealPage Module Activ... |
| CVE-2010-2584 | — | — | 1.2% | Oct 26, 2010 | The Upload method in the RealPage Module Upload ActiveX control in Realpage.dll 1.0.0.9 in RealPage Module ActiveX Contr... |
| CVE-2010-1693 | — | — | 0.3% | Oct 26, 2010 | openibd in OpenFabrics Enterprise Distribution (OFED) 1.5.2 allows local users to overwrite arbitrary files via a symlin... |
| CVE-2010-4094 | — | — | 64.5% | Oct 26, 2010 | The Tomcat server in IBM Rational Quality Manager and Rational Test Lab Manager has a default password for the ADMIN acc... |
| CVE-2010-3986 | — | — | 2.2% | Oct 26, 2010 | Unspecified vulnerability in HP Virtual Connect Enterprise Manager (VCEM) 6.0 and 6.1 allows remote attackers to read ar... |
| CVE-2010-3653 | — | — | 74.6% | Oct 26, 2010 | The Director module (dirapi.dll) in Adobe Shockwave Player before 11.5.9.615 allows remote attackers to execute arbitrar... |
| CVE-2010-4070 | — | — | 5.2% | Oct 25, 2010 | Integer overflow in librpc.dll in portmap.exe (aka the ISM Portmapper service) in ISM before 2.20.TC1.117 in IBM Informi... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now