2011 CVE Vulnerabilities

4,898 CVEs published in 2011.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2011-0759Multiple cross-site request forgery (CSRF) vulnerabilities in the configuration page in the Recaptcha (aka WP-reCAPTCHA)...
CVE-2011-0331Use-after-free vulnerability in the addOSPLext method in the Honeywell ScanServer ActiveX control 780.0.20.5 allows remo...
CVE-2011-1471Integer signedness error in zip_stream.c in the Zip extension in PHP before 5.3.6 allows context-dependent attackers to ...
CVE-2011-1470The Zip extension in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (application crash...
CVE-2011-1469Unspecified vulnerability in the Streams component in PHP before 5.3.6 allows context-dependent attackers to cause a den...
CVE-2011-1468Multiple memory leaks in the OpenSSL extension in PHP before 5.3.6 might allow remote attackers to cause a denial of ser...
CVE-2011-1467Unspecified vulnerability in the NumberFormatter::setSymbol (aka numfmt_set_symbol) function in the Intl extension in PH...
CVE-2011-1466Integer overflow in the SdnToJulian function in the Calendar extension in PHP before 5.3.6 allows context-dependent atta...
CVE-2011-1465The SPDY implementation in net/http/http_network_transaction.cc in Google Chrome before 11.0.696.14 drains the bodies fr...
CVE-2011-1464Buffer overflow in the strval function in PHP before 5.3.6, when the precision configuration option has a large value, m...
CVE-2011-1081modrdn.c in slapd in OpenLDAP 2.4.x before 2.4.24 allows remote attackers to cause a denial of service (daemon crash) vi...
CVE-2011-1027Off-by-one error in the convert_query_hexchar function in html.c in cgit.cgi in cgit before 0.8.3.5 allows remote attack...
CVE-2011-1025bind.cpp in back-ndb in OpenLDAP 2.4.x before 2.4.24 does not require authentication for the root Distinguished Name (DN...
CVE-2011-1024chain.c in back-ldap in OpenLDAP 2.4.x before 2.4.24, when a master-slave configuration with a chain overlay and ppolicy...
CVE-2011-0708exif.c in the Exif extension in PHP before 5.3.6 on 64-bit platforms performs an incorrect cast, which allows remote att...
CVE-2011-0421The _zip_name_locate function in zip_name_locate.c in the Zip extension in PHP before 5.3.6 does not properly handle a Z...
CVE-2011-0284Double free vulnerability in the prepare_error_as function in do_as_req.c in the Key Distribution Center (KDC) in MIT Ke...
CVE-2011-1433The (1) AgentInterface and (2) CustomerInterface components in Open Ticket Request System (OTRS) before 3.0.6 place clea...
CVE-2011-1148Use-after-free vulnerability in the substr_replace function in PHP 5.3.6 and earlier allows context-dependent attackers ...
CVE-2011-1432The STARTTLS implementation in SCO SCOoffice Server does not properly restrict I/O buffering, which allows man-in-the-mi...
CVE-2011-1431The STARTTLS implementation in qmail-smtpd.c in qmail-smtpd in the netqmail-1.06-tls patch for netqmail 1.06 does not pr...
CVE-2011-1430The STARTTLS implementation in the server in Ipswitch IMail 11.03 and earlier does not properly restrict I/O buffering, ...
CVE-2011-1429Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, whic...
CVE-2011-1428Wee Enhanced Environment for Chat (aka WeeChat) 0.3.4 and earlier does not properly verify that the server hostname matc...
CVE-2011-1153Multiple format string vulnerabilities in phar_object.c in the phar extension in PHP 5.3.5 and earlier allow context-dep...

Check if your code is affected by 2011 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now