2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-2530 | — | — | 7.6% | Jun 22, 2011 | Buffer overflow in RSEds.dll in RSHWare.exe in the EDS Hardware Installation Tool 1.0.5.1 and earlier in Rockwell Automa... |
| CVE-2011-2205 | — | — | 2.1% | Jun 22, 2011 | Prosody before 0.8.1 does not properly detect recursion during entity expansion, which allows remote attackers to cause ... |
| CVE-2011-2188 | — | — | 1.7% | Jun 21, 2011 | LuaExpat before 1.2.0 does not properly detect recursion during entity expansion, which allows remote attackers to cause... |
| CVE-2011-1757 | — | — | 1.1% | Jun 21, 2011 | DJabberd 0.84 and earlier does not properly detect recursion during entity expansion, which allows remote attackers to c... |
| CVE-2011-1756 | — | — | 2.7% | Jun 21, 2011 | modules/xmpp/serv_xmpp.c in Citadel 7.86 and earlier does not properly detect recursion during entity expansion, which a... |
| CVE-2011-1754 | — | — | 2.3% | Jun 21, 2011 | jabberd14 1.6.1.1 and earlier does not properly detect recursion during entity expansion, which allows remote attackers ... |
| CVE-2011-1753 | — | — | 2.1% | Jun 21, 2011 | expat_erl.c in ejabberd before 2.1.7 and 3.x before 3.0.0-alpha-3, and exmpp before 0.9.7, does not properly detect recu... |
| CVE-2011-1482 | — | — | 0.6% | Jun 21, 2011 | Multiple cross-site request forgery (CSRF) vulnerabilities in mainfile.php in Francisco Burzi PHP-Nuke 8.0 and earlier a... |
| CVE-2011-1481 | — | — | 1.1% | Jun 21, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in Francisco Burzi PHP-Nuke 8.0 and earlier allow remote attackers t... |
| CVE-2011-1480 | — | — | 1.2% | Jun 21, 2011 | SQL injection vulnerability in admin.php in the administration backend in Francisco Burzi PHP-Nuke 8.0 and earlier allow... |
| CVE-2011-1131 | — | — | 1.2% | Jun 21, 2011 | The PlushSearch2 function in Search.php in Simple Machines Forum (SMF) before 1.1.13, and 2.x before 2.0 RC5, uses certa... |
| CVE-2011-1130 | — | — | 1.1% | Jun 21, 2011 | Simple Machines Forum (SMF) before 1.1.13, and 2.x before 2.0 RC5, does not properly validate the start parameter, which... |
| CVE-2011-1129 | — | — | 0.9% | Jun 21, 2011 | Cross-site scripting (XSS) vulnerability in the EditNews function in ManageNews.php in Simple Machines Forum (SMF) befor... |
| CVE-2011-1128 | — | — | 1.4% | Jun 21, 2011 | The loadUserSettings function in Load.php in Simple Machines Forum (SMF) before 1.1.13, and 2.x before 2.0 RC5, does not... |
| CVE-2011-1127 | — | — | 2.2% | Jun 21, 2011 | SSI.php in Simple Machines Forum (SMF) before 1.1.13, and 2.x before 2.0 RC5, does not properly restrict guest access, w... |
| CVE-2011-2202 | — | — | 19.2% | Jun 16, 2011 | The rfc1867_post_handler function in main/rfc1867.c in PHP before 5.3.7 does not properly restrict filenames in multipar... |
| CVE-2011-2128 | — | — | 4.4% | Jun 16, 2011 | Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory... |
| CVE-2011-2127 | — | — | 4.4% | Jun 16, 2011 | Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory... |
| CVE-2011-2126 | — | — | 7.3% | Jun 16, 2011 | Buffer overflow in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code via unspecified v... |
| CVE-2011-2125 | — | — | 7.3% | Jun 16, 2011 | Buffer overflow in Dirapix.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code vi... |
| CVE-2011-2124 | — | — | 4.4% | Jun 16, 2011 | Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service (memory... |
| CVE-2011-2123 | — | — | 7.2% | Jun 16, 2011 | Integer overflow in the Shockwave 3D Asset x32 component in Adobe Shockwave Player before 11.6.0.626 allows remote attac... |
| CVE-2011-2122 | — | — | 4.4% | Jun 16, 2011 | Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of s... |
| CVE-2011-2121 | — | — | 6.1% | Jun 16, 2011 | Integer overflow in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code via unspecified ... |
| CVE-2011-2120 | — | — | 4.6% | Jun 16, 2011 | Integer overflow in the CursorAsset x32 component in Adobe Shockwave Player before 11.6.0.626 allows attackers to execut... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now