2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-3079 | MEDIUM | 5.5 | 0.4% | Sep 30, 2010 | kernel/trace/ftrace.c in the Linux kernel before 2.6.35.5, when debugfs is enabled, does not properly handle interaction... |
| CVE-2010-2943 | HIGH | 8.1 | 17.0% | Sep 30, 2010 | The xfs implementation in the Linux kernel before 2.6.35 does not look up inode allocation btrees before reading inode b... |
| CVE-2010-2538 | MEDIUM | 5.5 | 0.4% | Sep 30, 2010 | Integer overflow in the btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the Linux kernel before 2.6.35 might allow loc... |
| CVE-2010-2537 | HIGH | 7.1 | 0.4% | Sep 30, 2010 | The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the Linux kernel before 2.6.35 allows local users to overwrite an ... |
| CVE-2010-3688 | — | — | 1.3% | Sep 29, 2010 | Directory traversal vulnerability in ADMIN/login.php in NetArtMEDIA WebSiteAdmin allows remote emote attackers to includ... |
| CVE-2010-3687 | — | — | 1.2% | Sep 29, 2010 | Unspecified vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to bypass valid... |
| CVE-2010-3686 | — | — | 2.4% | Sep 29, 2010 | The OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x before 5.x-1.4 for Drupal, violates the OpenID 2.... |
| CVE-2010-3685 | — | — | 2.4% | Sep 29, 2010 | The OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x before 5.x-1.4 for Drupal, violates the OpenID 2.... |
| CVE-2010-3684 | — | — | 0.3% | Sep 29, 2010 | The FTP authentication module in Synology Disk Station 2.x logs passwords to the web application interface in cases of i... |
| CVE-2010-3468 | — | — | 7.0% | Sep 29, 2010 | Directory traversal vulnerability in fileManager.cfc in Mura CMS 5.1 before 5.1.498 and 5.2 before 5.2.2809, and Sava CM... |
| CVE-2010-3380 | — | — | 0.3% | Sep 29, 2010 | The (1) init.d/slurm and (2) init.d/slurmdbd scripts in SLURM before 2.1.14 place the . (dot) directory in the LD_LIBRAR... |
| CVE-2010-3310 | — | — | 0.4% | Sep 29, 2010 | Multiple integer signedness errors in net/rose/af_rose.c in the Linux kernel before 2.6.36-rc5-next-20100923 allow local... |
| CVE-2010-3091 | — | — | 2.4% | Sep 29, 2010 | The OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x before 5.x-1.4 for Drupal, violates the OpenID 2.... |
| CVE-2010-3084 | — | — | 0.4% | Sep 29, 2010 | Buffer overflow in the niu_get_ethtool_tcam_all function in drivers/net/niu.c in the Linux kernel before 2.6.36-rc4 allo... |
| CVE-2010-2946 | — | — | 0.4% | Sep 29, 2010 | fs/jfs/xattr.c in the Linux kernel before 2.6.35.2 does not properly handle a certain legacy format for storage of exten... |
| CVE-2010-2530 | — | — | 0.3% | Sep 29, 2010 | Multiple integer signedness errors in smb_subr.c in the netsmb module in the kernel in NetBSD 5.0.2 and earlier, FreeBSD... |
| CVE-2010-2478 | — | — | 0.4% | Sep 29, 2010 | Integer overflow in the ethtool_get_rxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.33.7 on 32-bit p... |
| CVE-2010-2453 | — | — | 0.9% | Sep 29, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in Synology Disk Station 2.x before DSM3.0-1337 allow remote attacke... |
| CVE-2010-3490 | — | — | 9.6% | Sep 28, 2010 | Directory traversal vulnerability in page.recordings.php in the System Recordings component in the configuration interfa... |
| CVE-2010-3277 | — | — | 0.3% | Sep 28, 2010 | The installer in VMware Workstation 7.x before 7.1.2 build 301548 and VMware Player 3.x before 3.1.2 build 301548 render... |
| CVE-2010-3087 | — | — | 3.2% | Sep 28, 2010 | LibTIFF before 3.9.2-5.2.1 in SUSE openSUSE 11.3 allows remote attackers to cause a denial of service (memory corruption... |
| CVE-2010-3070 | — | — | 6.2% | Sep 28, 2010 | Cross-site scripting (XSS) vulnerability in NuSOAP 0.9.5, as used in MantisBT and other products, allows remote attacker... |
| CVE-2010-2950 | — | — | 5.7% | Sep 28, 2010 | Format string vulnerability in stream.c in the phar extension in PHP 5.3.x through 5.3.3 allows context-dependent attack... |
| CVE-2010-0405 | — | — | 3.3% | Sep 28, 2010 | Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-depend... |
| CVE-2010-3608 | — | — | 1.0% | Sep 24, 2010 | Multiple SQL injection vulnerabilities in wpQuiz 2.7 allow remote attackers to execute arbitrary SQL commands via the (1... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now