2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-5294 | — | — | 1.4% | Jan 21, 2014 | Multiple cross-site scripting (XSS) vulnerabilities in the request_filesystem_credentials function in wp-admin/includes/... |
| CVE-2010-5293 | — | — | 2.5% | Jan 21, 2014 | wp-includes/comment.php in WordPress before 3.0.2 does not properly whitelist trackbacks and pingbacks in the blogroll, ... |
| CVE-2010-0746 | — | — | 0.6% | Jan 13, 2014 | Directory traversal vulnerability in DeviceKit-disks in DeviceKit, as used in Fedora 11 and 12 and possibly other operat... |
| CVE-2010-5292 | — | — | 0.3% | Jan 10, 2014 | Amberdms Billing System (ABS) before 1.4.1, when a multi-instance installation is configured, might allow local users to... |
| CVE-2010-5291 | — | — | 1.1% | Jan 10, 2014 | Amberdms Billing System (ABS) before 1.4.1 does not properly implement blacklisting after detection of invalid login att... |
| CVE-2010-4174 | — | — | — | Dec 27, 2013 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-3282. Reason: This candidate is a duplicate of... |
| CVE-2010-1819 | — | — | 4.7% | Dec 27, 2013 | Untrusted search path vulnerability in the Picture Viewer in Apple QuickTime before 7.6.8 allows local users, and possib... |
| CVE-2010-0430 | — | — | 0.5% | Dec 27, 2013 | libspice, as used in QEMU-KVM in Red Hat Enterprise Virtualization Hypervisor (aka RHEV-H or rhev-hypervisor) before 5.5... |
| CVE-2010-3443 | — | — | 2.0% | Nov 23, 2013 | ctcphandler.cpp in Quassel before 0.6.3 and 0.7.x before 0.7.1 allows remote attackers to cause a denial of service (unr... |
| CVE-2010-1159 | — | — | 7.3% | Oct 28, 2013 | Multiple heap-based buffer overflows in Aircrack-ng before 1.1 allow remote attackers to cause a denial of service (cras... |
| CVE-2010-5290 | — | — | 5.5% | Sep 20, 2013 | The authentication process in Adobe ColdFusion before 10 does not require knowledge of the cleartext password if the pas... |
| CVE-2010-5289 | — | — | 2.5% | Aug 25, 2013 | Buffer overflow in the Authenticate method in the INCREDISPOOLERLib.Pop ActiveX control in ImSpoolU.dll in IncrediMail 2... |
| CVE-2010-5288 | — | — | 3.1% | Jun 28, 2013 | Buffer overflow in the lsConnectionCached function in editcp in EDItran Communications Platform 4.1 R7 allows remote att... |
| CVE-2010-5287 | — | — | 1.1% | Jan 31, 2013 | SQL injection vulnerability in default.php in Cornerstone Technologies webConductor allows remote attackers to execute a... |
| CVE-2010-2387 | — | — | 0.5% | Dec 21, 2012 | vicious-extensions/ve-misc.c in GNOME Display Manager (gdm) 2.20.x before 2.20.11, when GDM debug is enabled, logs the u... |
| CVE-2010-5286 | — | — | 11.4% | Nov 26, 2012 | Directory traversal vulnerability in Jstore (com_jstore) component for Joomla! allows remote attackers to read arbitrary... |
| CVE-2010-5285 | — | — | 1.3% | Nov 26, 2012 | Cross-site request forgery (CSRF) vulnerability in admin.php in Collabtive 0.6.5 allows remote attackers to hijack the a... |
| CVE-2010-5284 | — | — | 2.0% | Nov 26, 2012 | Multiple cross-site scripting (XSS) vulnerabilities in Collabtive 0.6.5 allow remote attackers to inject arbitrary web s... |
| CVE-2010-5283 | — | — | 0.7% | Nov 26, 2012 | Cross-site request forgery (CSRF) vulnerability in OpenText ECM (formerly Livelink ECM) 9.7.1 allows remote attackers to... |
| CVE-2010-5282 | — | — | 1.3% | Nov 26, 2012 | Multiple cross-site scripting (XSS) vulnerabilities in OpenText ECM (formerly Livelink ECM) 9.7.1 allow remote attackers... |
| CVE-2010-5281 | — | — | 2.3% | Nov 26, 2012 | Directory traversal vulnerability in ibrowser.php in the CMScout 2.09 IBrowser TinyMCE Plugin 1.4.1, when magic_quotes_g... |
| CVE-2010-5280 | — | — | 5.5% | Nov 26, 2012 | Directory traversal vulnerability in the Community Builder Enhanced (CBE) (com_cbe) component 1.4.8, 1.4.9, and 1.4.10 f... |
| CVE-2010-1330 | — | — | 2.2% | Nov 23, 2012 | The regular expression engine in JRuby before 1.4.1, when $KCODE is set to 'u', does not properly handle characters imme... |
| CVE-2010-4821 | — | — | 4.7% | Oct 22, 2012 | Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.6.9 allows remote attackers to inject arbitrary web script... |
| CVE-2010-5279 | — | — | 1.3% | Oct 8, 2012 | article.php in Virtual War (aka VWar) 1.6.1 R2 allows remote attackers to cause a denial of service (memory consumption)... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now