2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-2710 | — | — | 1.3% | Jul 27, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.7.0 allow remote attackers to inject arbitrary w... |
| CVE-2011-2509 | — | — | 1.1% | Jul 27, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.6.4 allow remote attackers to inject arbitrary w... |
| CVE-2011-2488 | — | — | 1.4% | Jul 27, 2011 | Joomla! before 1.5.23 does not properly check for errors, which allows remote attackers to obtain sensitive information ... |
| CVE-2011-1152 | — | — | — | Jul 27, 2011 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-3712. Reason: This candidate is a duplicate of... |
| CVE-2011-2745 | — | — | 2.0% | Jul 27, 2011 | upload_handler.php in the swfupload extension in Chyrp 2.0 and earlier relies on client-side JavaScript code to restrict... |
| CVE-2011-2696 | — | — | 4.6% | Jul 27, 2011 | Integer overflow in libsndfile before 1.0.25 allows remote attackers to cause a denial of service (application crash) or... |
| CVE-2011-2687 | — | — | 3.1% | Jul 27, 2011 | Drupal 7.x before 7.3 allows remote attackers to bypass intended node_access restrictions via vectors related to a listi... |
| CVE-2011-2588 | — | — | 3.7% | Jul 27, 2011 | Heap-based buffer overflow in the AVI_ChunkRead_strf function in libavi.c in the AVI demuxer in VideoLAN VLC media playe... |
| CVE-2011-2587 | — | — | 3.7% | Jul 27, 2011 | Heap-based buffer overflow in the DemuxAudioSipr function in real.c in the RealMedia demuxer in VideoLAN VLC media playe... |
| CVE-2011-2490 | — | — | 0.5% | Jul 27, 2011 | opielogin.c in opielogin in OPIE 2.4.1-test1 and earlier does not check the return value of the setuid system call, whic... |
| CVE-2011-2489 | — | — | 0.5% | Jul 27, 2011 | Multiple off-by-one errors in opiesu.c in opiesu in OPIE 2.4.1-test1 and earlier might allow local users to gain privile... |
| CVE-2011-2467 | — | — | 0.7% | Jul 27, 2011 | SQL injection vulnerability in lsassd in Lsass in the Likewise Security Authority in Likewise Open 5.4 through 6.1, and ... |
| CVE-2011-2196 | — | — | 2.6% | Jul 27, 2011 | jboss-seam.jar in the JBoss Seam 2 framework 2.2.x and earlier, as distributed in Red Hat JBoss Enterprise SOA Platform ... |
| CVE-2011-2185 | — | — | 0.3% | Jul 27, 2011 | Fabric before 1.1.0 allows local users to overwrite arbitrary files via a symlink attack on (1) a /tmp/fab.*.tar file or... |
| CVE-2011-1829 | — | — | 1.7% | Jul 27, 2011 | APT before 0.8.15.2 does not properly validate inline GPG signatures, which allows man-in-the-middle attackers to instal... |
| CVE-2011-1782 | — | — | 3.4% | Jul 27, 2011 | Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro (PSP) plugin in GIMP 2.... |
| CVE-2011-1484 | — | — | 2.3% | Jul 27, 2011 | jboss-seam.jar in the JBoss Seam 2 framework 2.2.x and earlier, as distributed in Red Hat JBoss Enterprise SOA Platform ... |
| CVE-2011-2883 | — | — | 1.5% | Jul 21, 2011 | The NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 before 8.1-67.7, 9.0 ... |
| CVE-2011-2882 | — | — | 56.4% | Jul 21, 2011 | Stack-based buffer overflow in the NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Ed... |
| CVE-2011-2685 | — | — | 7.0% | Jul 21, 2011 | Stack-based buffer overflow in the Lotus Word Pro import filter in LibreOffice before 3.3.3 allows remote attackers to e... |
| CVE-2011-1797 | — | — | 4.4% | Jul 21, 2011 | WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of ser... |
| CVE-2011-1774 | — | — | 43.2% | Jul 21, 2011 | WebKit in Apple Safari before 5.0.6 has improper libxslt security settings, which allows remote attackers to create arbi... |
| CVE-2011-1462 | — | — | 3.9% | Jul 21, 2011 | WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of ser... |
| CVE-2011-1457 | — | — | 3.9% | Jul 21, 2011 | WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of ser... |
| CVE-2011-1453 | — | — | 3.9% | Jul 21, 2011 | WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of ser... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now