2011 CVE Vulnerabilities

4,898 CVEs published in 2011.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2011-2710Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.7.0 allow remote attackers to inject arbitrary w...
CVE-2011-2509Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.6.4 allow remote attackers to inject arbitrary w...
CVE-2011-2488Joomla! before 1.5.23 does not properly check for errors, which allows remote attackers to obtain sensitive information ...
CVE-2011-1152Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-3712. Reason: This candidate is a duplicate of...
CVE-2011-2745upload_handler.php in the swfupload extension in Chyrp 2.0 and earlier relies on client-side JavaScript code to restrict...
CVE-2011-2696Integer overflow in libsndfile before 1.0.25 allows remote attackers to cause a denial of service (application crash) or...
CVE-2011-2687Drupal 7.x before 7.3 allows remote attackers to bypass intended node_access restrictions via vectors related to a listi...
CVE-2011-2588Heap-based buffer overflow in the AVI_ChunkRead_strf function in libavi.c in the AVI demuxer in VideoLAN VLC media playe...
CVE-2011-2587Heap-based buffer overflow in the DemuxAudioSipr function in real.c in the RealMedia demuxer in VideoLAN VLC media playe...
CVE-2011-2490opielogin.c in opielogin in OPIE 2.4.1-test1 and earlier does not check the return value of the setuid system call, whic...
CVE-2011-2489Multiple off-by-one errors in opiesu.c in opiesu in OPIE 2.4.1-test1 and earlier might allow local users to gain privile...
CVE-2011-2467SQL injection vulnerability in lsassd in Lsass in the Likewise Security Authority in Likewise Open 5.4 through 6.1, and ...
CVE-2011-2196jboss-seam.jar in the JBoss Seam 2 framework 2.2.x and earlier, as distributed in Red Hat JBoss Enterprise SOA Platform ...
CVE-2011-2185Fabric before 1.1.0 allows local users to overwrite arbitrary files via a symlink attack on (1) a /tmp/fab.*.tar file or...
CVE-2011-1829APT before 0.8.15.2 does not properly validate inline GPG signatures, which allows man-in-the-middle attackers to instal...
CVE-2011-1782Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro (PSP) plugin in GIMP 2....
CVE-2011-1484jboss-seam.jar in the JBoss Seam 2 framework 2.2.x and earlier, as distributed in Red Hat JBoss Enterprise SOA Platform ...
CVE-2011-2883The NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 before 8.1-67.7, 9.0 ...
CVE-2011-2882Stack-based buffer overflow in the NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Ed...
CVE-2011-2685Stack-based buffer overflow in the Lotus Word Pro import filter in LibreOffice before 3.3.3 allows remote attackers to e...
CVE-2011-1797WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of ser...
CVE-2011-1774WebKit in Apple Safari before 5.0.6 has improper libxslt security settings, which allows remote attackers to create arbi...
CVE-2011-1462WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of ser...
CVE-2011-1457WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of ser...
CVE-2011-1453WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of ser...

Check if your code is affected by 2011 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now