2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2010-3458SQL injection vulnerability in lib/toolkit/events/event.section.php in Symphony CMS 2.0.7 and 2.1.1 allows remote attack...
CVE-2010-3457Multiple cross-site scripting (XSS) vulnerabilities in Symphony CMS 2.0.7 and 2.1.1 allow remote attackers to inject arb...
CVE-2010-3456Directory traversal vulnerability in download.php in EnergyScripts (ES) Simple Download 1.0 allows remote attackers to r...
CVE-2010-3455Cross-site scripting (XSS) vulnerability in index.php in AChecker 1.0 allows remote attackers to inject arbitrary web sc...
CVE-2010-3012Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to in...
CVE-2010-3324The toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft Windows SharePoint Se...
CVE-2010-3075EncFS before 1.7.0 encrypts multiple blocks by means of the CFB cipher mode with the same initialization vector, which m...
CVE-2010-3074SSL_Cipher.cpp in EncFS before 1.7.0 uses an improper combination of an AES cipher and a CBC cipher mode for encrypted f...
CVE-2010-3073SSL_Cipher.cpp in EncFS before 1.7.0 does not properly handle integer data sizes when constructing headers intended for ...
CVE-2010-3011CRLF injection vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to inject arbitra...
CVE-2010-3428SQL injection vulnerability in modules/notes/json.php in Intermesh Group-Office 3.5.9 allows remote attackers to execute...
CVE-2010-3427Multiple cross-site scripting (XSS) vulnerabilities in Open Classifieds 1.7.0.2 allow remote attackers to inject arbitra...
CVE-2010-3426Directory traversal vulnerability in jphone.php in the JPhone (com_jphone) component 1.0 Alpha 3 for Joomla! allows remo...
CVE-2010-3425Cross-site scripting (XSS) vulnerability in UserControls/Popups/frmHelp.aspx in SmarterStats 5.3, 5.3.3819, and possibly...
CVE-2010-3424Cross-site scripting (XSS) vulnerability in admin/sources/classes/bbcode/custom/defaults.php in Invision Power Board (IP...
CVE-2010-3423SQL injection vulnerability in the Yr Weatherdata module for Drupal 6.x before 6.x-1.6 allows remote attackers to execut...
CVE-2010-3422SQL injection vulnerability in the JGen (com_jgen) component 0.9.33 for Joomla! allows remote attackers to execute arbit...
CVE-2010-3421Cross-site scripting (XSS) vulnerability in AffiliateLogin.asp in ProductCart 3, 4.1 SP1, and possibly other versions al...
CVE-2010-3420Cross-site scripting (XSS) vulnerability in Products_Results.php in PowerStore 3.0 allows remote attackers to inject arb...
CVE-2010-3419Multiple PHP remote file inclusion vulnerabilities in Haudenschilt Family Connections CMS (FCMS) 2.2.3 allow remote atta...
CVE-2010-3418Multiple cross-site scripting (XSS) vulnerabilities in NetArt Media Car Portal 2.0 and earlier allow remote attackers to...
CVE-2010-3417Google Chrome before 6.0.472.59 does not prompt the user before granting access to the extension history, which allows a...
CVE-2010-3415Google Chrome before 6.0.472.59 does not properly implement Geolocation, which allows remote attackers to cause a denial...
CVE-2010-3414Google Chrome before 6.0.472.59 on Mac OS X does not properly implement file dialogs, which allows attackers to cause a ...
CVE-2010-3413Unspecified vulnerability in the pop-up blocking functionality in Google Chrome before 6.0.472.59 allows remote attacker...

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now