2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-4195 | — | — | 1.9% | Apr 16, 2014 | kiwi before 4.98.05, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.... |
| CVE-2011-4193 | — | — | 0.9% | Apr 16, 2014 | Cross-site scripting (XSS) vulnerability in the overlay files tab in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio... |
| CVE-2011-4192 | — | — | 1.5% | Apr 16, 2014 | kiwi before 4.85.1, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2... |
| CVE-2011-4089 | — | — | 1.0% | Apr 16, 2014 | The bzexe command in bzip2 1.0.5 and earlier generates compressed executables that do not properly handle temporary file... |
| CVE-2011-3180 | — | — | 2.6% | Apr 16, 2014 | kiwi before 4.98.08, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.... |
| CVE-2011-0993 | — | — | 0.4% | Apr 16, 2014 | SUSE Lifecycle Management Server before 1.1 uses world readable postgres credentials, which allows local users to obtain... |
| CVE-2011-0460 | — | — | 0.3% | Apr 16, 2014 | The init script in kbd, possibly 1.14.1 and earlier, allows local users to overwrite arbitrary files via a symlink attac... |
| CVE-2011-3628 | — | — | 0.4% | Apr 15, 2014 | Untrusted search path vulnerability in pam_motd (aka the MOTD module) in libpam-modules before 1.1.3-2ubuntu2.1 on Ubunt... |
| CVE-2011-5278 | — | — | 1.3% | Apr 8, 2014 | SQL injection vulnerability in signature.php in Advanced Forum Signatures plugin (aka afsignatures) 2.0.4 for MyBB allow... |
| CVE-2011-5277 | — | — | 1.3% | Apr 8, 2014 | Multiple SQL injection vulnerabilities in signature.php in the Advanced Forum Signatures (aka afsignatures) plugin 2.0.4... |
| CVE-2011-4958 | — | — | 4.3% | Apr 8, 2014 | Cross-site scripting (XSS) vulnerability in the process function in SSViewer.php in SilverStripe before 2.3.13 and 2.4.x... |
| CVE-2011-4573 | — | — | 0.8% | Apr 1, 2014 | Red Hat JBoss Operations Network (JON) before 2.4.2 does not properly enforce "modify resource" permissions for remote a... |
| CVE-2011-3346 | — | — | 0.5% | Apr 1, 2014 | Buffer overflow in hw/scsi-disk.c in the SCSI subsystem in QEMU before 0.15.2, as used by Xen, might allow local guest u... |
| CVE-2011-5276 | — | — | 1.1% | Mar 21, 2014 | SQL injection vulnerability in the drawAdminTools_PackageInstaller function in shared/inc/forms/packager.php in Domain T... |
| CVE-2011-5275 | — | — | 1.3% | Mar 21, 2014 | The install script in Domain Technologie Control (DTC) before 0.34.1 gives sudo permissions for chrootuid to the dtc use... |
| CVE-2011-5274 | — | — | 2.0% | Mar 21, 2014 | The drawAdminTools_PackageInstaller function in shared/inc/forms/packager.php in Domain Technologie Control (DTC) before... |
| CVE-2011-5273 | — | — | 1.5% | Mar 21, 2014 | Directory traversal vulnerability in shared/package-installer in Domain Technologie Control (DTC) before 0.34.1 allows r... |
| CVE-2011-5272 | — | — | 1.1% | Mar 21, 2014 | SQL injection vulnerability in Domain Technologie Control (DTC) before 0.34.1 allows remote authenticated users to execu... |
| CVE-2011-3199 | — | — | 1.0% | Mar 21, 2014 | Multiple cross-site scripting (XSS) vulnerabilities in Domain Technologie Control (DTC) before 0.34.1 allow remote authe... |
| CVE-2011-3198 | — | — | 0.3% | Mar 21, 2014 | Domain Technologie Control (DTC) before 0.34.1 includes a password in the -b command line argument to htpasswd, which mi... |
| CVE-2011-3197 | — | — | 1.2% | Mar 21, 2014 | SQL injection vulnerability in Domain Technologie Control (DTC) before 0.34.1 allows remote authenticated users to execu... |
| CVE-2011-3196 | — | — | 0.3% | Mar 21, 2014 | The setup script in Domain Technologie Control (DTC) before 0.34.1 uses world-readable permissions for /etc/apache2/apac... |
| CVE-2011-3195 | — | — | 1.5% | Mar 21, 2014 | shared/inc/sql/lists.php in Domain Technologie Control (DTC) before 0.34.1 allows remote authenticated users to execute ... |
| CVE-2011-3153 | — | — | 0.3% | Mar 6, 2014 | dmrc.c in Light Display Manager (aka LightDM) before 1.1.1 allows local users to read arbitrary files via a symlink atta... |
| CVE-2011-4696 | — | — | 0.8% | Mar 3, 2014 | Directory traversal vulnerability in Eye-Fi Helper before 3.4.23 allows man-in-the-middle attackers to create arbitrary ... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now