2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-1926 | — | — | 4.0% | May 23, 2011 | The STARTTLS implementation in Cyrus IMAP Server before 2.4.7 does not properly restrict I/O buffering, which allows man... |
| CVE-2011-1920 | — | — | 0.4% | May 23, 2011 | The make include files in NetBSD before 1.6.2, as used in pmake 1.111 and other products, allow local users to overwrite... |
| CVE-2011-1766 | — | — | 2.2% | May 23, 2011 | includes/User.php in MediaWiki before 1.16.5, when wgBlockDisablesLogin is enabled, does not clear certain cached data a... |
| CVE-2011-1765 | — | — | 2.1% | May 23, 2011 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.5, when Internet Explorer 6 or earlier is used, allows... |
| CVE-2011-1575 | — | — | 33.3% | May 23, 2011 | The STARTTLS implementation in ftp_parser.c in Pure-FTPd before 1.0.30 does not properly restrict I/O buffering, which a... |
| CVE-2011-2164 | — | — | 4.1% | May 20, 2011 | Multiple unspecified vulnerabilities in Adobe Photoshop before 12.0.4 have unknown impact and attack vectors. |
| CVE-2011-2163 | — | — | 1.7% | May 20, 2011 | Unspecified vulnerability in Virtualization Manager 1.2.2 in IBM Systems Director 1.2.2 has unknown impact and attack ve... |
| CVE-2011-2162 | — | — | 2.3% | May 20, 2011 | Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other products, in Mandri... |
| CVE-2011-2161 | — | — | 1.2% | May 20, 2011 | The ape_read_header function in ape.c in libavformat in FFmpeg before 0.5.4, as used in MPlayer, VideoLAN VLC media play... |
| CVE-2011-2160 | — | — | 1.7% | May 20, 2011 | The VC-1 decoding functionality in FFmpeg before 0.5.4, as used in MPlayer and other products, does not properly restric... |
| CVE-2011-2159 | — | — | 4.4% | May 20, 2011 | The SmarterTools SmarterStats 6.0 web server omits the Content-Type header for certain resources, which might allow remo... |
| CVE-2011-2158 | — | — | 4.4% | May 20, 2011 | The SmarterTools SmarterStats 6.0 web server sends incorrect Content-Type headers for certain resources, which might all... |
| CVE-2011-2157 | — | — | 2.6% | May 20, 2011 | The (1) Admin/frmEmailReportSettings.aspx and (2) Admin/frmGeneralSettings.aspx components in the SmarterTools SmarterSt... |
| CVE-2011-2156 | — | — | 2.6% | May 20, 2011 | The SmarterTools SmarterStats 6.0 web server allows remote attackers to obtain directory listings via a direct request f... |
| CVE-2011-2155 | — | — | 3.9% | May 20, 2011 | Login.aspx in the SmarterTools SmarterStats 6.0 web server generates a ctl00$MPH$txtPassword password form field without... |
| CVE-2011-2154 | — | — | 2.7% | May 20, 2011 | login.aspx in the SmarterTools SmarterStats 6.0 web server does not include the HTTPOnly flag in a Set-Cookie header for... |
| CVE-2011-2153 | — | — | 2.0% | May 20, 2011 | Login.aspx in the SmarterTools SmarterStats 6.0 web server supports URLs containing txtUser and txtPass parameters in th... |
| CVE-2011-2152 | — | — | 2.6% | May 20, 2011 | The SmarterTools SmarterStats 6.0 web server generates web pages containing external links in response to GET requests w... |
| CVE-2011-2151 | — | — | 2.7% | May 20, 2011 | The (1) Admin/frmEmailReportSettings.aspx, (2) Admin/frmGeneralSettings.aspx, (3) Admin/frmSite.aspx, (4) Client/frmUser... |
| CVE-2011-2150 | — | — | 3.0% | May 20, 2011 | The SmarterTools SmarterStats 6.0 web server does not properly validate string data that is intended for storage in an X... |
| CVE-2011-2149 | — | — | 2.4% | May 20, 2011 | Multiple SQL injection vulnerabilities in the SmarterTools SmarterStats 6.0 web server allow remote attackers to execute... |
| CVE-2011-2148 | — | — | 5.3% | May 20, 2011 | Admin/frmSite.aspx in the SmarterTools SmarterStats 6.0 web server allows remote attackers to execute arbitrary commands... |
| CVE-2011-2147 | — | — | 0.3% | May 20, 2011 | Openswan 2.2.x does not properly restrict permissions for (1) /var/run/starter.pid, related to starter.c in the IPsec st... |
| CVE-2011-2021 | — | — | 2.0% | May 20, 2011 | Session fixation vulnerability in TIBCO iProcess Engine before 11.1.3 and iProcess Workspace before 11.3.1 allows remote... |
| CVE-2011-2020 | — | — | 1.3% | May 20, 2011 | Cross-site scripting (XSS) vulnerability in TIBCO iProcess Engine before 11.1.3 and iProcess Workspace before 11.3.1 all... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now