2011 CVE Vulnerabilities

4,898 CVEs published in 2011.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2011-1926The STARTTLS implementation in Cyrus IMAP Server before 2.4.7 does not properly restrict I/O buffering, which allows man...
CVE-2011-1920The make include files in NetBSD before 1.6.2, as used in pmake 1.111 and other products, allow local users to overwrite...
CVE-2011-1766includes/User.php in MediaWiki before 1.16.5, when wgBlockDisablesLogin is enabled, does not clear certain cached data a...
CVE-2011-1765Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.5, when Internet Explorer 6 or earlier is used, allows...
CVE-2011-1575The STARTTLS implementation in ftp_parser.c in Pure-FTPd before 1.0.30 does not properly restrict I/O buffering, which a...
CVE-2011-2164Multiple unspecified vulnerabilities in Adobe Photoshop before 12.0.4 have unknown impact and attack vectors.
CVE-2011-2163Unspecified vulnerability in Virtualization Manager 1.2.2 in IBM Systems Director 1.2.2 has unknown impact and attack ve...
CVE-2011-2162Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other products, in Mandri...
CVE-2011-2161The ape_read_header function in ape.c in libavformat in FFmpeg before 0.5.4, as used in MPlayer, VideoLAN VLC media play...
CVE-2011-2160The VC-1 decoding functionality in FFmpeg before 0.5.4, as used in MPlayer and other products, does not properly restric...
CVE-2011-2159The SmarterTools SmarterStats 6.0 web server omits the Content-Type header for certain resources, which might allow remo...
CVE-2011-2158The SmarterTools SmarterStats 6.0 web server sends incorrect Content-Type headers for certain resources, which might all...
CVE-2011-2157The (1) Admin/frmEmailReportSettings.aspx and (2) Admin/frmGeneralSettings.aspx components in the SmarterTools SmarterSt...
CVE-2011-2156The SmarterTools SmarterStats 6.0 web server allows remote attackers to obtain directory listings via a direct request f...
CVE-2011-2155Login.aspx in the SmarterTools SmarterStats 6.0 web server generates a ctl00$MPH$txtPassword password form field without...
CVE-2011-2154login.aspx in the SmarterTools SmarterStats 6.0 web server does not include the HTTPOnly flag in a Set-Cookie header for...
CVE-2011-2153Login.aspx in the SmarterTools SmarterStats 6.0 web server supports URLs containing txtUser and txtPass parameters in th...
CVE-2011-2152The SmarterTools SmarterStats 6.0 web server generates web pages containing external links in response to GET requests w...
CVE-2011-2151The (1) Admin/frmEmailReportSettings.aspx, (2) Admin/frmGeneralSettings.aspx, (3) Admin/frmSite.aspx, (4) Client/frmUser...
CVE-2011-2150The SmarterTools SmarterStats 6.0 web server does not properly validate string data that is intended for storage in an X...
CVE-2011-2149Multiple SQL injection vulnerabilities in the SmarterTools SmarterStats 6.0 web server allow remote attackers to execute...
CVE-2011-2148Admin/frmSite.aspx in the SmarterTools SmarterStats 6.0 web server allows remote attackers to execute arbitrary commands...
CVE-2011-2147Openswan 2.2.x does not properly restrict permissions for (1) /var/run/starter.pid, related to starter.c in the IPsec st...
CVE-2011-2021Session fixation vulnerability in TIBCO iProcess Engine before 11.1.3 and iProcess Workspace before 11.3.1 allows remote...
CVE-2011-2020Cross-site scripting (XSS) vulnerability in TIBCO iProcess Engine before 11.1.3 and iProcess Workspace before 11.3.1 all...

Check if your code is affected by 2011 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now