2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-10010 | MEDIUM | 6.1 | 0.5% | Jun 1, 2023 | A vulnerability classified as problematic has been found in Stars Alliance PsychoStats up to 3.2.2a. This affects an unk... |
| CVE-2010-10008 | MEDIUM | 5.4 | 0.6% | Jan 17, 2023 | ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in simplesamlphp simplesamlphp-module-openidprovider up to 0.8... |
| CVE-2010-10004 | MEDIUM | 6.1 | 0.5% | Jan 9, 2023 | A vulnerability was found in Information Cards Module on simpleSAMLphp and classified as problematic. This issue affects... |
| CVE-2010-10002 | MEDIUM | 6.1 | 0.6% | Jan 1, 2023 | ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as problematic has been found in SimpleSAMLphp simplesamlphp-... |
| CVE-2010-10001 | MEDIUM | 5.5 | 0.8% | Mar 28, 2022 | A vulnerability, which was classified as problematic, was found in Shemes GrabIt up to 1.7.2 Beta 4. This affects the co... |
| CVE-2010-2496 | MEDIUM | 5.5 | 0.2% | Oct 18, 2021 | stonith-ng in pacemaker and cluster-glue passed passwords as commandline parameters, making it possible for local attack... |
| CVE-2010-4266 | MEDIUM | 6.1 | 0.6% | Jun 22, 2021 | It was found in vanilla forums before 2.0.10 a potential linkbait vulnerability in dispatcher. |
| CVE-2010-4264 | MEDIUM | 6.1 | 0.7% | Jun 22, 2021 | It was found in vanilla forums before 2.0.10 a cross-site scripting vulnerability where a filename could contain arbitra... |
| CVE-2010-3300 | MEDIUM | 5.9 | 0.4% | Jun 22, 2021 | It was found that all OWASP ESAPI for Java up to version 2.0 RC2 are vulnerable to padding oracle attacks. |
| CVE-2010-4658 | MEDIUM | 5.3 | 0.9% | Feb 7, 2020 | statusnet through 2010 allows attackers to spoof syslog messages via newline injection attacks. |
| CVE-2010-3917 | MEDIUM | 6.5 | 0.8% | Feb 6, 2020 | Google Chrome before 3.0 does not properly handle XML documents, which allows remote attackers to obtain sensitive infor... |
| CVE-2010-4662 | MEDIUM | 6.1 | 0.8% | Feb 5, 2020 | PmWiki before 2.2.21 has XSS. |
| CVE-2010-4659 | MEDIUM | 6.1 | 0.9% | Nov 20, 2019 | Cross-site scripting (XSS) vulnerability in statusnet through 2010 in error message contents. |
| CVE-2010-4817 | MEDIUM | 5.5 | 0.4% | Nov 13, 2019 | pithos before 0.3.5 allows overwrite of arbitrary files via symlinks. |
| CVE-2010-4653 | MEDIUM | 6.5 | 1.8% | Nov 13, 2019 | An integer overflow condition in poppler before 0.16.3 can occur when parsing CharCodes for fonts. |
| CVE-2010-4532 | MEDIUM | 5.9 | 0.6% | Nov 13, 2019 | offlineimap before 6.3.2 does not check for SSL server certificate validation when "ssl = yes" option is specified which... |
| CVE-2010-4177 | MEDIUM | 5.5 | 0.3% | Nov 12, 2019 | mysql-gui-tools (mysql-query-browser and mysql-admin) before 5.0r14+openSUSE-2.3 exposes the password of a user connecte... |
| CVE-2010-3857 | MEDIUM | 6.1 | 0.9% | Nov 12, 2019 | JBoss BRMS before 5.1.0 has a XSS vulnerability via asset=UUID parameter. |
| CVE-2010-3440 | MEDIUM | 5.5 | 0.3% | Nov 12, 2019 | babiloo 2.0.9 before 2.0.11 creates temporary files with predictable names when downloading and unpacking dictionary fil... |
| CVE-2010-3299 | MEDIUM | 6.5 | 1.1% | Nov 12, 2019 | The encrypt/decrypt functions in Ruby on Rails 2.3 are vulnerable to padding oracle attacks. |
| CVE-2010-3292 | MEDIUM | 5.5 | 0.2% | Nov 12, 2019 | The update{_bad,}_phishing_sites scripts in mailscanner 4.79.11-2 downloads files and trusts them without using encrypti... |
| CVE-2010-3095 | MEDIUM | 4.7 | 0.3% | Nov 12, 2019 | mailscanner before 4.79.11-2.1 might allow local users to overwrite arbitrary files via a symlink attack on certain temp... |
| CVE-2010-3439 | MEDIUM | 6.5 | 1.8% | Nov 12, 2019 | It is possible to cause a DoS condition by causing the server to crash in alien-arena 7.33 by supplying various invalid ... |
| CVE-2010-3359 | MEDIUM | 4.8 | 0.3% | Nov 12, 2019 | If LD_LIBRARY_PATH is undefined in gargoyle-free before 2009-08-25, the variable will point to the current directory. Th... |
| CVE-2010-2449 | MEDIUM | 6.5 | 1.7% | Nov 7, 2019 | Gource through 0.26 logs to a predictable file name (/tmp/gource-$UID.tmp), enabling attackers to overwrite an arbitrary... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now