CVE List - 2010 / December
Showing 1 - 100 of 359 CVEs for December 2010 (Page 1 of 4)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2008-7267 | 2010-12-01 | SQL injection vulnerability in announcements.php in SiteEngine 5.x allows remote... |
| CVE-2008-7268 | 2010-12-01 | The phpinfo function in SiteEngine 5.x allows remote attackers to... |
| CVE-2008-7269 | 2010-12-01 | Open redirect vulnerability in api.php in SiteEngine 5.x allows user-assisted... |
| CVE-2009-5019 | 2010-12-01 | Web Wiz NewsPad stores sensitive information under the web root... |
| CVE-2010-4355 | 2010-12-01 | Cross-site scripting (XSS) vulnerability in DaDaBIK before 4.3 beta2, when... |
| CVE-2010-4358 | 2010-12-01 | Multiple cross-site scripting (XSS) vulnerabilities in gb.cgi in MRCGIGUY (MCG)... |
| CVE-2010-4362 | 2010-12-01 | Multiple SQL injection vulnerabilities in MicroNetsoft RV Dealer Website allow... |
| CVE-2010-4363 | 2010-12-01 | Multiple SQL injection vulnerabilities in contact.php in MRCGIGUY (MCG) FreeTicket... |
| CVE-2010-4364 | 2010-12-01 | DaDaBIK 4.3 beta3, when running in a case-sensitive environment, does... |
| CVE-2010-4366 | 2010-12-01 | Multiple cross-site scripting (XSS) vulnerabilities in forum_new_topic.php in Chameleon Social... |
| CVE-2010-4356 | 2010-12-01 | SQL injection vulnerability in news_default.asp in Site2Nite Big Truck Broker... |
| CVE-2010-4357 | 2010-12-01 | SQL injection vulnerability in comments.php in SiteEngine 7.1 allows remote... |
| CVE-2010-4359 | 2010-12-01 | SQL injection vulnerability in index.php in Jurpopage 0.2.0 allows remote... |
| CVE-2010-4360 | 2010-12-01 | Multiple SQL injection vulnerabilities in index.php in Jurpopage 0.2.0 allow... |
| CVE-2010-4361 | 2010-12-01 | Cross-site scripting (XSS) vulnerability in url-gateway.php in Jurpopage 0.2.0 allows... |
| CVE-2010-4365 | 2010-12-01 | SQL injection vulnerability in JE Ajax Event Calendar (com_jeajaxeventcalendar) component... |
| CVE-2010-1323 | 2010-12-02 | MIT Kerberos 5 (aka krb5) 1.3.x, 1.4.x, 1.5.x, 1.6.x, 1.7.x,... |
| CVE-2010-1324 | 2010-12-02 | MIT Kerberos 5 (aka krb5) 1.7.x and 1.8.x through 1.8.3... |
| CVE-2010-2586 | 2010-12-02 | Multiple integer overflows in in_nsv.dll in the in_nsv plugin in... |
| CVE-2010-3266 | 2010-12-02 | Multiple cross-site scripting (XSS) vulnerabilities in BugTracker.NET before 3.4.5 allow... |
| CVE-2010-3267 | 2010-12-02 | Multiple SQL injection vulnerabilities in BugTracker.NET before 3.4.5 allow remote... |
| CVE-2010-4020 | 2010-12-02 | MIT Kerberos 5 (aka krb5) 1.8.x through 1.8.3 does not... |
| CVE-2010-4021 | 2010-12-02 | The Key Distribution Center (KDC) in MIT Kerberos 5 (aka... |
| CVE-2010-4329 | 2010-12-02 | Cross-site scripting (XSS) vulnerability in the PMA_linkOrButton function in libraries/common.lib.php... |
| CVE-2010-4367 | 2010-12-02 | awstats.cgi in AWStats before 7.0 accepts a configdir parameter in... |
| CVE-2010-4369 | 2010-12-02 | Directory traversal vulnerability in AWStats before 7.0 allows remote attackers... |
| CVE-2010-4370 | 2010-12-02 | Multiple integer overflows in the in_midi plugin in Winamp before... |
| CVE-2010-4371 | 2010-12-02 | Buffer overflow in the in_mod plugin in Winamp before 5.6... |
| CVE-2010-4372 | 2010-12-02 | Integer overflow in the in_nsv plugin in Winamp before 5.6... |
| CVE-2010-4373 | 2010-12-02 | The in_mp4 plugin in Winamp before 5.6 allows remote attackers... |
| CVE-2010-4374 | 2010-12-02 | The in_mkv plugin in Winamp before 5.6 allows remote attackers... |
| CVE-2009-5020 | 2010-12-02 | Open redirect vulnerability in awredir.pl in AWStats before 6.95 allows... |
| CVE-2010-4368 | 2010-12-02 | awstats.cgi in AWStats before 7.0 on Windows accepts a configdir... |
| CVE-2010-4278 | 2010-12-02 | operation/agentes/networkmap.php in Pandora FMS before 3.1.1 allows remote authenticated users... |
| CVE-2010-4279 | 2010-12-02 | The default configuration of Pandora FMS 3.1 and earlier specifies... |
| CVE-2010-4280 | 2010-12-02 | Multiple SQL injection vulnerabilities in Pandora FMS before 3.1.1 allow... |
| CVE-2010-4281 | 2010-12-02 | Incomplete blacklist vulnerability in the safe_url_extraclean function in ajax.php in... |
| CVE-2010-4282 | 2010-12-02 | Multiple directory traversal vulnerabilities in Pandora FMS before 3.1.1 allow... |
| CVE-2010-4283 | 2010-12-02 | PHP remote file inclusion vulnerability in extras/pandora_diag.php in Pandora FMS... |
| CVE-2010-4313 | 2010-12-02 | Unrestricted file upload vulnerability in fileman_file_upload.php in Orbis CMS 1.0.2... |
| CVE-2010-3613 | 2010-12-03 | named in ISC BIND 9.6.2 before 9.6.2-P3, 9.6-ESV before 9.6-ESV-R3,... |
| CVE-2010-3614 | 2010-12-03 | named in ISC BIND 9.x before 9.6.2-P3, 9.7.x before 9.7.2-P3,... |
| CVE-2010-3615 | 2010-12-03 | named in ISC BIND 9.7.2-P2 does not check all intended... |
| CVE-2010-4254 | 2010-12-03 | Mono, when Moonlight before 2.3.0.1 or 2.99.x before 2.99.0.10 is... |
| CVE-2010-4398 | 2010-12-03 | Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in... |
| CVE-2010-4400 | 2010-12-04 | SQL injection vulnerability in _rights.php in DynPG CMS 4.2.0 allows... |
| CVE-2010-4401 | 2010-12-04 | languages.inc.php in DynPG CMS 4.2.0 allows remote attackers to obtain... |
| CVE-2010-4402 | 2010-12-04 | Multiple cross-site scripting (XSS) vulnerabilities in wp-login.php in the Register... |
| CVE-2010-4403 | 2010-12-04 | The Register Plus plugin 3.5.1 and earlier for WordPress allows... |
| CVE-2010-4406 | 2010-12-04 | Directory traversal vulnerability in gallery.php in Brunetton LittlePhpGallery 1.0.2, when... |
| CVE-2010-4407 | 2010-12-04 | Multiple cross-site scripting (XSS) vulnerabilities in index.php in AlGuest 1.1c-patched... |
| CVE-2010-4399 | 2010-12-04 | Directory traversal vulnerability in languages.inc.php in DynPG CMS 4.1.1 and... |
| CVE-2010-4404 | 2010-12-04 | SQL injection vulnerability in the Yannick Gaultier sh404SEF component before... |
| CVE-2010-4405 | 2010-12-04 | Cross-site scripting (XSS) vulnerability in the Yannick Gaultier sh404SEF component... |
| CVE-2010-2639 | 2010-12-06 | IBM WebSphere Commerce Enterprise 7.0 before 7.0.0.2 allows remote attackers... |
| CVE-2010-2761 | 2010-12-06 | The multipart_init function in (1) CGI.pm before 3.50 and (2)... |
| CVE-2010-3066 | 2010-12-06 | The io_submit_one function in fs/aio.c in the Linux kernel before... |
| CVE-2010-3449 | 2010-12-06 | Cross-site request forgery (CSRF) vulnerability in Redback before 1.2.4, as... |
| CVE-2010-4408 | 2010-12-06 | Apache Archiva 1.0 through 1.0.3, 1.1 through 1.1.4, 1.2 through... |
| CVE-2010-4409 | 2010-12-06 | Integer overflow in the NumberFormatter::getSymbol (aka numfmt_get_symbol) function in PHP... |
| CVE-2010-4410 | 2010-12-06 | CRLF injection vulnerability in the header function in (1) CGI.pm... |
| CVE-2010-4411 | 2010-12-06 | Unspecified vulnerability in CGI.pm 3.50 and earlier allows remote attackers... |
| CVE-2010-3904 | 2010-12-06 | The rds_page_copy_user function in net/rds/page.c in the Reliable Datagram Sockets... |
| CVE-2010-4180 | 2010-12-06 | OpenSSL before 0.9.8q, and 1.0.x before 1.0.0c, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG is... |
| CVE-2010-4252 | 2010-12-06 | OpenSSL before 1.0.0c, when J-PAKE is enabled, does not properly... |
| CVE-2010-4294 | 2010-12-06 | The frame decompression functionality in the VMnc media codec in... |
| CVE-2010-4295 | 2010-12-06 | Race condition in the mounting process in vmware-mount in VMware... |
| CVE-2010-4296 | 2010-12-06 | vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on... |
| CVE-2010-4297 | 2010-12-06 | The VMware Tools update functionality in VMware Workstation 6.5.x before... |
| CVE-2008-7270 | 2010-12-06 | OpenSSL before 0.9.8j, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG is enabled, does not prevent... |
| CVE-2010-4478 | 2010-12-06 | OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not... |
| CVE-2010-4257 | 2010-12-07 | SQL injection vulnerability in the do_trackbacks function in wp-includes/comment.php in... |
| CVE-2010-4259 | 2010-12-07 | Stack-based buffer overflow in FontForge 20100501 allows remote attackers to... |
| CVE-2010-4260 | 2010-12-07 | Multiple unspecified vulnerabilities in pdf.c in libclamav in ClamAV before... |
| CVE-2010-4261 | 2010-12-07 | Off-by-one error in the icon_cb function in pe_icons.c in libclamav... |
| CVE-2010-4330 | 2010-12-07 | Directory traversal vulnerability in includes/controller.php in Pulse CMS Basic before... |
| CVE-2010-4479 | 2010-12-07 | Unspecified vulnerability in pdf.c in libclamav in ClamAV before 0.96.5... |
| CVE-2010-4246 | 2010-12-07 | Multiple cross-site scripting (XSS) vulnerabilities in graph.php in pfSense 1.2.3... |
| CVE-2010-4412 | 2010-12-07 | Multiple cross-site scripting (XSS) vulnerabilities in pfSense 2 beta 4... |
| CVE-2010-4482 | 2010-12-07 | Unspecified vulnerability in Google Chrome before 8.0.552.215 allows remote attackers... |
| CVE-2010-4483 | 2010-12-07 | Google Chrome before 8.0.552.215 does not properly restrict read access... |
| CVE-2010-4484 | 2010-12-07 | Google Chrome before 8.0.552.215 does not properly handle HTML5 databases,... |
| CVE-2010-4485 | 2010-12-07 | Google Chrome before 8.0.552.215 does not properly restrict the generation... |
| CVE-2010-4486 | 2010-12-07 | Use-after-free vulnerability in Google Chrome before 8.0.552.215 allows remote attackers... |
| CVE-2010-4487 | 2010-12-07 | Incomplete blacklist vulnerability in Google Chrome before 8.0.552.215 on Linux... |
| CVE-2010-4488 | 2010-12-07 | Google Chrome before 8.0.552.215 does not properly handle HTTP proxy... |
| CVE-2010-4489 | 2010-12-07 | libvpx, as used in Google Chrome before 8.0.552.215 and possibly... |
| CVE-2010-4490 | 2010-12-07 | Google Chrome before 8.0.552.215 allows remote attackers to cause a... |
| CVE-2010-4491 | 2010-12-07 | Google Chrome before 8.0.552.215 does not properly restrict privileged extensions,... |
| CVE-2010-4492 | 2010-12-07 | Use-after-free vulnerability in Google Chrome before 8.0.552.215 allows remote attackers... |
| CVE-2010-4493 | 2010-12-07 | Use-after-free vulnerability in Google Chrome before 8.0.552.215 allows remote attackers... |
| CVE-2010-4494 | 2010-12-07 | Double free vulnerability in libxml2 2.7.8 and other versions, as... |
| CVE-2010-4150 | 2010-12-07 | Double free vulnerability in the imap_do_open function in the IMAP... |
| CVE-2010-4170 | 2010-12-07 | The staprun runtime tool in SystemTap 1.3 does not properly... |
| CVE-2010-4171 | 2010-12-07 | The staprun runtime tool in SystemTap 1.3 does not verify... |
| CVE-2010-4176 | 2010-12-07 | plymouth-pretrigger.sh in dracut and udev, when running on Fedora 13... |
| CVE-2010-4179 | 2010-12-07 | The installation documentation for Red Hat Enterprise Messaging, Realtime and... |
| CVE-2010-4480 | 2010-12-08 | error.php in PhpMyAdmin 3.3.8.1, and other versions before 3.4.0-beta1, allows... |
| CVE-2010-4500 | 2010-12-08 | Multiple SQL injection vulnerabilities in contact.php in MRCGIGUY (MCG) FreeTicket... |
| CVE-2010-3372 | 2010-12-08 | Untrusted search path vulnerability in NorduGrid Advanced Resource Connector (ARC)... |