2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

CVE IDSeverityCVSSDescription
CVE-2010-3994Cross-site scripting (XSS) vulnerability in HP Version Control Repository Manager (VCRM) before 6.2 allows remote attack...
CVE-2010-3993Unspecified vulnerability in HP Insight Control Server Migration before 6.2 allows remote attackers to obtain sensitive ...
CVE-2010-3992Unspecified vulnerability in HP Insight Control Server Migration before 6.2 allows remote authenticated users to gain pr...
CVE-2010-3991Cross-site scripting (XSS) vulnerability in HP Insight Control Server Migration before 6.2 allows remote attackers to in...
CVE-2010-3990Unspecified vulnerability in HP Virtual Server Environment before 6.2 allows remote attackers to read arbitrary files vi...
CVE-2010-3989Cross-site request forgery (CSRF) vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remot...
CVE-2010-3988Unspecified vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attackers to bypass ...
CVE-2010-3987Cross-site scripting (XSS) vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attac...
CVE-2010-0112Multiple SQL injection vulnerabilities in the Administrative Interface in the IIS extension in Symantec IM Manager befor...
CVE-2010-3933Ruby on Rails 2.3.9 and 3.0.0 does not properly handle nested attributes, which allows remote attackers to modify arbitr...
CVE-2010-3842Absolute path traversal vulnerability in curl 7.20.0 through 7.21.1, when the --remote-header-name or -J option is used,...
CVE-2010-3765CRITICAL9.8Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunderbird 3.1.6 before 3.1.6 and 3.0.x before 3.0.10, a...
CVE-2010-3713rss.php in UseBB before 1.0.11 does not properly handle forum configurations in which a user has the view permission but...
CVE-2010-3712Cross-site scripting (XSS) vulnerability in Joomla! 1.5.x before 1.5.21 and 1.6.x before 1.6.1 allows remote attackers t...
CVE-2010-3711libpurple in Pidgin before 2.7.4 does not properly validate the return value of the purple_base64_decode function, which...
CVE-2010-2891Buffer overflow in the smiGetNode function in lib/smi.c in libsmi 0.4.8 allows context-dependent attackers to execute ar...
CVE-2010-4099ess.pm in NitroSecurity NitroView ESM 8.4.0a, when ESSPMDebug is enabled, allows remote attackers to execute arbitrary c...
CVE-2010-4098monotone before 0.48.1, when configured to allow remote commands, allows remote attackers to cause a denial of service (...
CVE-2010-4097Multiple cross-site scripting (XSS) vulnerabilities in index.php in Aardvark Topsites PHP 5.2.0 and 5.2.1 allow remote a...
CVE-2010-4096share/ma/keys_for_user in Monkeysphere 0.31 and 0.32 allows local users to execute arbitrary code via unknown manipulati...
CVE-2010-3227Stack-based buffer overflow in the UpdateFrameTitleForDocument method in the CFrameWnd class in mfc42.dll in the Microso...
CVE-2010-4095Directory traversal vulnerability in the FTP client in Serengeti Systems Incorporated Robo-FTP 3.7.3, and probably other...
CVE-2010-3985Cross-site scripting (XSS) vulnerability in HP Operations Orchestration before 9.0, when Internet Explorer 6.0 is used, ...
CVE-2010-3491The (1) ActiveMatrix Runtime and (2) ActiveMatrix Administrator components in TIBCO ActiveMatrix Service Grid before 2.3...
CVE-2010-2886Multiple cross-site scripting (XSS) vulnerabilities in Adobe RoboHelp 7 and 8, and RoboHelp Server 7 and 8, allow remote...

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now