2011 CVE Vulnerabilities

4,898 CVEs published in 2011.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2011-1472The Nokia E75 phone with firmware before 211.12.01 allows physically proximate attackers to bypass the Device Lock code ...
CVE-2011-1205Multiple buffer overflows in unspecified COM objects in Rational Common Licensing 7.0 through 7.1.1.4 in IBM Rational Cl...
CVE-2011-1176The configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 fo...
CVE-2011-0892Cross-site scripting (XSS) vulnerability in HP Diagnostics 7.5x and 8.0x before 8.05.54.225 allows remote attackers to i...
CVE-2011-0728Cross-site scripting (XSS) vulnerability in templatefunctions.py in Loggerhead before 1.18.1 allows remote authenticated...
CVE-2011-0441The Debian GNU/Linux /etc/cron.d/php5 cron job for PHP 5.3.5 allows local users to delete arbitrary files via a symlink ...
CVE-2011-1524Cross-site scripting (XSS) vulnerability in the management login GUI page in Symantec LiveUpdate Administrator (LUA) bef...
CVE-2011-1420EMC Data Protection Advisor Collector 5.7 and 5.7.1 on Solaris SPARC platforms uses weak permissions for unspecified fil...
CVE-2011-1167Heap-based buffer overflow in the thunder (aka ThunderScan) decoder in tif_thunder.c in LibTIFF 3.9.4 and earlier allows...
CVE-2011-0760Multiple cross-site request forgery (CSRF) vulnerabilities in the configuration screen in wp-relatedposts.php in the WP ...
CVE-2011-0545Cross-site request forgery (CSRF) vulnerability in adduser.do in Symantec LiveUpdate Administrator (LUA) before 2.3 allo...
CVE-2011-0458Untrusted search path vulnerability in the Locate on Disk feature in Google Picasa before 3.8 allows local users to gain...
CVE-2011-0440Cross-site request forgery (CSRF) vulnerability in Mahara 1.2.x before 1.2.7 and 1.3.x before 1.3.4 allows remote attack...
CVE-2011-0439Cross-site scripting (XSS) vulnerability in Mahara 1.2.x before 1.2.7 and 1.3.x before 1.3.4 allows remote attackers to ...
CVE-2011-0024Heap-based buffer overflow in wiretap/pcapng.c in Wireshark before 1.2 allows remote attackers to cause a denial of serv...
CVE-2011-1520The default configuration of the server console in IBM Lotus Domino does not require a password (aka Server_Console_Pass...
CVE-2011-1519The remote console in the Server Controller in IBM Lotus Domino 7.x and 8.x verifies credentials against a file located ...
CVE-2011-1400The default configuration of the shell_escape_commands directive in conf/texmf.d/95NonPath.cnf in the tex-common package...
CVE-2011-1296Google Chrome before 10.0.648.204 does not properly handle SVG text, which allows remote attackers to cause a denial of ...
CVE-2011-1295WebKit, as used in Google Chrome before 10.0.648.204 and Apple Safari before 5.0.6, does not properly handle node parent...
CVE-2011-1294Google Chrome before 10.0.648.204 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows re...
CVE-2011-1293Use-after-free vulnerability in the HTMLCollection implementation in Google Chrome before 10.0.648.204 allows remote att...
CVE-2011-1292Use-after-free vulnerability in the frame-loader implementation in Google Chrome before 10.0.648.204 allows remote attac...
CVE-2011-1291Google Chrome before 10.0.648.204 does not properly handle base strings, which allows remote attackers to cause a denial...
CVE-2011-0890HP Discovery & Dependency Mapping Inventory (DDMI) 7.50, 7.51, 7.60, 7.61, 7.70, and 9.30 launches the Windows SNMP serv...

Check if your code is affected by 2011 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now