2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-3092 | — | — | 1.6% | Sep 21, 2010 | The upload module in Drupal 5.x before 5.23 and 6.x before 6.18 does not properly support case-insensitive filename hand... |
| CVE-2010-1820 | — | — | 1.8% | Sep 21, 2010 | Apple Filing Protocol (AFP) Server in Apple Mac OS X 10.6.x through 10.6.4 does not properly handle errors, which allows... |
| CVE-2010-0781 | — | — | 1.8% | Sep 21, 2010 | Unspecified vulnerability in the administrative console in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.33 al... |
| CVE-2010-3080 | — | — | 0.4% | Sep 21, 2010 | Double free vulnerability in the snd_seq_oss_open function in sound/core/seq/oss/seq_oss_init.c in the Linux kernel befo... |
| CVE-2010-3067 | — | — | 0.4% | Sep 21, 2010 | Integer overflow in the do_io_submit function in fs/aio.c in the Linux kernel before 2.6.36-rc4-next-20100915 allows loc... |
| CVE-2010-3476 | — | — | 2.5% | Sep 20, 2010 | Open Ticket Request System (OTRS) 2.3.x before 2.3.6 and 2.4.x before 2.4.8 does not properly handle the matching of Per... |
| CVE-2010-3475 | — | — | 2.8% | Sep 20, 2010 | IBM DB2 9.7 before FP3 does not properly enforce privilege requirements for execution of entries in the dynamic SQL cach... |
| CVE-2010-3474 | — | — | 2.6% | Sep 20, 2010 | IBM DB2 9.7 before FP3 does not perform the expected drops or invalidations of dependent functions upon a loss of privil... |
| CVE-2010-3473 | — | — | 1.1% | Sep 20, 2010 | Open redirect vulnerability in the Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 before... |
| CVE-2010-3472 | — | — | 1.1% | Sep 20, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in the Workplace (aka WP) component in IBM FileNet P8 Application En... |
| CVE-2010-3471 | — | — | 1.1% | Sep 20, 2010 | Session fixation vulnerability in the Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 4.0.2.x b... |
| CVE-2010-3470 | — | — | 1.3% | Sep 20, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in the Workplace (aka WP) component in IBM FileNet P8 Application En... |
| CVE-2010-3262 | — | — | 1.1% | Sep 20, 2010 | Cross-site scripting (XSS) vulnerability in Flock Browser 3.x before 3.0.0.4114 allows remote attackers to inject arbitr... |
| CVE-2010-3200 | — | — | 10.6% | Sep 20, 2010 | MSO.dll in Microsoft Word 2003 SP3 11.8326.11.8324 allows remote attackers to cause a denial of service (NULL pointer de... |
| CVE-2010-3072 | — | — | 64.2% | Sep 20, 2010 | The string-comparison functions in String.cci in Squid 3.x before 3.1.8 and 3.2.x before 3.2.0.2 allow remote attackers ... |
| CVE-2010-2080 | — | — | 1.5% | Sep 20, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in Open Ticket Request System (OTRS) 2.3.x before 2.3.6 and 2.4.x be... |
| CVE-2010-3467 | — | — | 0.9% | Sep 17, 2010 | SQL injection vulnerability in modules/sections/index.php in E-Xoopport Samsara 3.1 and earlier, when the Tutorial modul... |
| CVE-2010-3466 | — | — | 1.1% | Sep 17, 2010 | Cross-site scripting (XSS) vulnerability in index.php in the hosted_signup module in NetArt Media iBoutique.MALL 1.2 all... |
| CVE-2010-3465 | — | — | 1.1% | Sep 17, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in XSE Shopping Cart 1.5.2.1 and 1.5.3.0 allow remote attackers to i... |
| CVE-2010-3464 | — | — | 0.6% | Sep 17, 2010 | Cross-site request forgery (CSRF) vulnerability in admin/manager_users.class.php in SantaFox 2.02, and possibly earlier,... |
| CVE-2010-3463 | — | — | 1.1% | Sep 17, 2010 | Cross-site scripting (XSS) vulnerability in modules/search/search.class.php in SantaFox 2.02, and possibly earlier, allo... |
| CVE-2010-3462 | — | — | 3.0% | Sep 17, 2010 | Cross-site scripting (XSS) vulnerability in backend/plugin/Registration/index.php in Mollify 1.6, 1.6.5.5, and possibly ... |
| CVE-2010-3461 | — | — | 0.9% | Sep 17, 2010 | SQL injection vulnerability in the Publisher module in eNdonesia 8.4 allows remote attackers to execute arbitrary SQL co... |
| CVE-2010-3460 | — | — | 8.4% | Sep 17, 2010 | Directory traversal vulnerability in the HTTP interface in AXIGEN Mail Server 7.4.1 for Windows allows remote attackers ... |
| CVE-2010-3459 | — | — | 1.3% | Sep 17, 2010 | Cross-site scripting (XSS) vulnerability in the Ajax WebMail interface in AXIGEN Mail Server before 7.4.2 allows remote ... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now