2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-4953 | — | — | 2.2% | Oct 27, 2014 | The set_mgmt_parameters function in item.py in cobbler before 2.2.2 allows context-dependent attackers to execute arbitr... |
| CVE-2011-4104 | — | — | 2.4% | Oct 27, 2014 | The from_yaml method in serializers.py in Django Tastypie before 0.9.10 does not properly deserialize YAML data, which a... |
| CVE-2011-4103 | — | — | 2.4% | Oct 27, 2014 | emitters.py in Django Piston before 0.2.3 and 0.2.x before 0.2.2.1 does not properly deserialize YAML data, which allows... |
| CVE-2011-4624 | — | — | 7.1% | Oct 1, 2014 | Cross-site scripting (XSS) vulnerability in facebook.php in the GRAND FlAGallery plugin (flash-album-gallery) before 1.5... |
| CVE-2011-4887 | — | — | 1.3% | Sep 11, 2014 | Cross-site scripting (XSS) vulnerability in the Violations Table in the management GUI in the MX Management Server in Im... |
| CVE-2011-2944 | — | — | 2.7% | Aug 12, 2014 | SQL injection vulnerability in login.php in MegaLab The Uploader before 2.0.5 allows remote attackers to execute arbitra... |
| CVE-2011-2593 | — | — | 4.0% | Aug 12, 2014 | Integer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access Gateway Enterprise ... |
| CVE-2011-1381 | — | — | 1.2% | Jun 27, 2014 | Unspecified vulnerability in IBM OpenPages GRC Platform 6.1.0.1 before IF4 allows remote attackers to bypass intended ac... |
| CVE-2011-4821 | — | — | 2.1% | Jun 20, 2014 | Directory traversal vulnerability in the TFTP server in D-Link DIR-601 Wireless N150 Home Router with firmware 1.02NA al... |
| CVE-2011-4367 | — | — | 33.5% | Jun 19, 2014 | Multiple directory traversal vulnerabilities in MyFaces JavaServer Faces (JSF) in Apache MyFaces Core 2.0.x before 2.0.1... |
| CVE-2011-2592 | — | — | 14.9% | Jun 18, 2014 | Heap-based buffer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access Gateway E... |
| CVE-2011-3625 | — | — | 24.1% | Jun 11, 2014 | Stack-based buffer overflow in the sub_read_line_sami function in subreader.c in MPlayer, as used in SMPlayer 0.6.9, all... |
| CVE-2011-5280 | — | — | 2.7% | Jun 2, 2014 | Multiple stack-based buffer overflows in BOINC 6.13.x allow remote attackers to cause a denial of service (crash) via a ... |
| CVE-2011-2198 | — | — | 2.2% | May 21, 2014 | The "insert-blank-characters" capability in caps.c in gnome-terminal (vte) before 0.28.1 allows remote authenticated use... |
| CVE-2011-5249 | — | — | 1.4% | May 14, 2014 | Cross-site scripting (XSS) vulnerability in the events page in the System iNtrusion Analysis and Reporting Environment (... |
| CVE-2011-4407 | — | — | 0.6% | May 14, 2014 | ppa.py in Software Properties before 0.81.13.3 does not validate the server certificate when downloading PPA GPG key fin... |
| CVE-2011-2514 | — | — | 2.4% | May 14, 2014 | The Java Network Launching Protocol (JNLP) implementation in IcedTea6 1.9.x before 1.9.9 and before 1.8.9, and IcedTea-W... |
| CVE-2011-2513 | — | — | 2.5% | May 14, 2014 | The Java Network Launching Protocol (JNLP) implementation in IcedTea6 1.9.x before 1.9.9 and before 1.8.9, and IcedTea-W... |
| CVE-2011-4970 | — | — | 1.5% | May 13, 2014 | Multiple SQL injection vulnerabilities in LCG Disk Pool Manager (DPM) before 1.8.6, as used in EGI UDM, allow remote att... |
| CVE-2011-3603 | — | — | 0.4% | Apr 27, 2014 | The router advertisement daemon (radvd) before 1.8.2 does not properly handle errors in the privsep_init function, which... |
| CVE-2011-3602 | — | — | 2.8% | Apr 27, 2014 | Directory traversal vulnerability in device-linux.c in the router advertisement daemon (radvd) before 1.8.2 allows local... |
| CVE-2011-3152 | — | — | 2.3% | Apr 27, 2014 | DistUpgrade/DistUpgradeFetcherCore.py in Update Manager before 1:0.87.31.1, 1:0.134.x before 1:0.134.11.1, 1:0.142.x bef... |
| CVE-2011-5279 | — | — | 19.1% | Apr 23, 2014 | CRLF injection vulnerability in the CGI implementation in Microsoft Internet Information Services (IIS) 4.x and 5.x on W... |
| CVE-2011-3154 | — | — | 0.3% | Apr 17, 2014 | DistUpgrade/DistUpgradeViewKDE.py in Update Manager before 1:0.87.31.1, 1:0.134.x before 1:0.134.11.1, 1:0.142.x before ... |
| CVE-2011-4406 | — | — | 0.4% | Apr 16, 2014 | The Ubuntu AccountsService package before 0.6.14-1git1ubuntu1.1 does not properly drop privileges when changing language... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now