2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-10016 | CRITICAL | 10 | 0.7% | Aug 30, 2025 | BS.Player version 2.57 (build 1051) contains a vulnerability in its playlist import functionality. When processing .m3u ... |
| CVE-2010-20122 | CRITICAL | 9.3 | 0.9% | Aug 21, 2025 | Xftp FTP Client version up to and including 3.0 (build 0238) contain a stack-based buffer overflow vulnerability trigger... |
| CVE-2010-20115 | CRITICAL | 9.3 | 0.9% | Aug 21, 2025 | Arcane Software’s Vermillion FTP Daemon (vftpd) versions up to and including 1.31 contains a memory corruption vulnerabi... |
| CVE-2010-20113 | CRITICAL | 9.3 | 1.5% | Aug 21, 2025 | EasyFTP Server 1.7.0.11 and earlier contains a stack-based buffer overflow vulnerability in its HTTP interface. When pro... |
| CVE-2010-20121 | CRITICAL | 9.3 | 3.0% | Aug 21, 2025 | EasyFTP Server versions up to 1.7.0.11 contain a stack-based buffer overflow vulnerability in the FTP command parser. Wh... |
| CVE-2010-20112 | CRITICAL | 9.3 | 1.0% | Aug 21, 2025 | Amlib’s NetOpacs webquery.dll contains a stack-based buffer overflow vulnerability triggered by improper handling of HTT... |
| CVE-2010-20103 | CRITICAL | 9.3 | 4.8% | Aug 20, 2025 | A malicious backdoor was embedded in the official ProFTPD 1.3.3c source tarball distributed between November 28 and Dece... |
| CVE-2010-20059 | CRITICAL | 9.3 | 1.0% | Aug 20, 2025 | FreeNAS 0.7.2 prior to revision 5543 includes an unauthenticated command‐execution backdoor in its web interface. The ex... |
| CVE-2010-20049 | CRITICAL | 9.3 | 0.7% | Aug 20, 2025 | LeapFTP < 3.1.x contains a stack-based buffer overflow vulnerability in its FTP client parser. When the client receives ... |
| CVE-2010-10013 | CRITICAL | 9.3 | 1.1% | Aug 8, 2025 | An unauthenticated remote command execution vulnerability exists in AjaXplorer (now known as Pydio Cells) versions prior... |
| CVE-2010-10009 | CRITICAL | 9.8 | 0.6% | Jan 18, 2023 | A vulnerability was found in frioux ptome. It has been rated as critical. This issue affects some unknown processing. Th... |
| CVE-2010-10007 | CRITICAL | 9.8 | 0.7% | Jan 18, 2023 | ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in lierdakil click-reminder. It has been rated as critical. Th... |
| CVE-2010-10003 | CRITICAL | 9.8 | 0.7% | Jan 4, 2023 | A vulnerability classified as critical was found in gesellix titlelink on Joomla. Affected by this vulnerability is an u... |
| CVE-2010-1435 | CRITICAL | 9.8 | 1.1% | Jun 21, 2021 | Joomla! Core is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise... |
| CVE-2010-1433 | CRITICAL | 9.8 | 1.1% | Jun 21, 2021 | Joomla! Core is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to pro... |
| CVE-2010-4815 | CRITICAL | 9.8 | 2.3% | Feb 5, 2020 | Coppermine gallery before 1.4.26 has an input validation vulnerability that allows for code execution. |
| CVE-2010-4660 | CRITICAL | 9.8 | 1.3% | Nov 20, 2019 | Unspecified vulnerability in statusnet through 2010 due to the way addslashes are used in SQL string escapes.. |
| CVE-2010-4533 | CRITICAL | 9.8 | 1.0% | Nov 13, 2019 | offlineimap before 6.3.4 added support for SSL server certificate validation but it is still possible to use SSL v2 prot... |
| CVE-2010-3438 | CRITICAL | 9.8 | 1.7% | Nov 12, 2019 | libpoe-component-irc-perl before v6.32 does not remove carriage returns and line feeds. This can be used to execute arbi... |
| CVE-2010-2476 | CRITICAL | 9.8 | 1.7% | Nov 7, 2019 | syscp 1.4.2.1 allows attackers to add arbitrary paths via the documentroot of a domain by appending a colon to it and se... |
| CVE-2010-2447 | CRITICAL | 9.8 | 1.8% | Nov 7, 2019 | gitolite before 1.4.1 does not filter src/ or hooks/ from path names. |
| CVE-2010-2446 | CRITICAL | 9.8 | 3.4% | Nov 6, 2019 | Rbot Reaction plugin allows command execution |
| CVE-2010-2783 | CRITICAL | 9.1 | 1.9% | Oct 31, 2019 | IcedTea6 before 1.7.4 allow unsigned apps to read and write arbitrary files, related to Extended JNLP Services. |
| CVE-2010-2548 | CRITICAL | 9.1 | 2.0% | Oct 31, 2019 | IcedTea6 before 1.7.4 does not properly check property access, which allows unsigned apps to read and write arbitrary fi... |
| CVE-2010-0748 | CRITICAL | 9.8 | 1.9% | Oct 30, 2019 | Transmission before 1.92 allows an attacker to cause a denial of service (crash) or possibly have other unspecified impa... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now