2011 CVE Vulnerabilities

4,898 CVEs published in 2011.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2011-2366Mozilla Gecko before 5.0, as used in Firefox before 5.0 and Thunderbird before 5.0, does not block use of a cross-domain...
CVE-2011-2197The cross-site scripting (XSS) prevention feature in Ruby on Rails 2.x before 2.3.12, 3.0.x before 3.0.8, and 3.1.x befo...
CVE-2011-2470Cross-site scripting (XSS) vulnerability in chat/base/admin/login.php in A Really Simple Chat (ARSC) 3.3-rc2 allows remo...
CVE-2011-2351Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a denial of service o...
CVE-2011-2350The HTML parser in Google Chrome before 12.0.742.112 does not properly address "lifetime and re-entrancy issues," which ...
CVE-2011-2349Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a denial of service o...
CVE-2011-2348Google V8, as used in Google Chrome before 12.0.742.112, performs an incorrect bounds check, which allows remote attacke...
CVE-2011-2347Google Chrome before 12.0.742.112 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows re...
CVE-2011-2346Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a denial of service o...
CVE-2011-2345The NPAPI implementation in Google Chrome before 12.0.742.112 does not properly handle strings, which allows remote atta...
CVE-2011-2204Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.17, when the MemoryUserDatabase is used, create...
CVE-2011-2181Multiple SQL injection vulnerabilities in A Really Simple Chat (ARSC) 3.3-rc2 allow remote attackers to execute arbitrar...
CVE-2011-2180Cross-site scripting (XSS) vulnerability in dereferer.php in A Really Simple Chat (ARSC) 3.3-rc2 allows remote attackers...
CVE-2011-1335Cross-site scripting (XSS) vulnerability in Cybozu Office 6, 7, and 8 before 8.1.1 allows remote attackers to inject arb...
CVE-2011-1334Cross-site scripting (XSS) vulnerability in Cybozu Office 6, Cybozu Garoon 2.0.0 through 2.1.3, Cybozu Dezie before 6.1,...
CVE-2011-1333Cross-site scripting (XSS) vulnerability in Cybozu Office 6 and Cybozu Garoon 2.0.0 through 2.1.3 allows remote attacker...
CVE-2011-1332Cross-site scripting (XSS) vulnerability in Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to inject arbitrar...
CVE-2011-2484The add_del_listener function in kernel/taskstats.c in the Linux kernel 2.6.39.1 and earlier does not prevent multiple r...
CVE-2011-2194Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to...
CVE-2011-2193Multiple buffer overflows in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 2.x before 2...
CVE-2011-1908Integer overflow in the Type 1 font decoder in the FreeType engine in Foxit Reader before 4.0.0.0619 allows remote attac...
CVE-2011-1409Frams's Fast File EXchange (F*EX, aka fex) 20100208, and possibly other versions before 20110610, allows remote attacker...
CVE-2011-1132The IPv6 implementation in the kernel in Apple Mac OS X before 10.6.8 allows local users to cause a denial of service (N...
CVE-2011-0213Buffer overflow in QuickTime in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause ...
CVE-2011-0212servermgrd in Apple Mac OS X before 10.6.8 allows remote attackers to read arbitrary files, and possibly send HTTP reque...

Check if your code is affected by 2011 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now