2011 CVE Vulnerabilities

4,898 CVEs published in 2011.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2011-0535Cross-site request forgery (CSRF) vulnerability in the Users module in Zikula before 1.2.5 allows remote attackers to hi...
CVE-2011-0910The cookie implementation in Vanilla Forums before 2.0.17.6 makes it easier for remote attackers to spoof signed request...
CVE-2011-0909Cross-site scripting (XSS) vulnerability in Vanilla Forums before 2.0.17.6 allows remote attackers to inject arbitrary w...
CVE-2011-0908Open redirect vulnerability in Vanilla Forums before 2.0.17.6 allows remote attackers to redirect users to arbitrary web...
CVE-2011-0526Cross-site scripting (XSS) vulnerability in index.php in Vanilla Forums before 2.0.17 allows remote attackers to inject ...
CVE-2011-0903Multiple directory traversal vulnerabilities in AR Web Content Manager (AWCM) 2.2 allow remote attackers to read arbitra...
CVE-2011-0902Multiple untrusted search path vulnerabilities in the Java Service in Sun Microsystems SunScreen Firewall on SunOS 5.9 a...
CVE-2011-0901Multiple stack-based buffer overflows in the tsc_launch_remote function (src/support.c) in Terminal Server Client (tscli...
CVE-2011-0900Stack-based buffer overflow in the tsc_launch_remote function (src/support.c) in Terminal Server Client (tsclient) 0.150...
CVE-2011-0899The AES encryption module 7.x-1.4 for Drupal leaves certain debugging code enabled in release, which records the plainte...
CVE-2011-0531demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media player 1.1.6.1 and earlier allows remote attackers to ...
CVE-2011-0522The StripTags function in (1) the USF decoder (modules/codec/subtitles/subsdec.c) and (2) the Text decoder (modules/code...
CVE-2011-0324Multiple heap-based buffer overflows in Topaz Systems SigPlus Pro ActiveX Control 3.95, and possibly other versions befo...
CVE-2011-0323Topaz Systems SigPlus Pro ActiveX Control 3.95, and possibly other versions before 4.29, allows remote attackers to exec...
CVE-2011-0025IcedTea 1.7 before 1.7.8, 1.8 before 1.8.5, and 1.9 before 1.9.5 does not properly verify signatures for JAR files that ...
CVE-2011-0784Race condition in Google Chrome before 9.0.597.84 allows remote attackers to execute arbitrary code via vectors related ...
CVE-2011-0783Unspecified vulnerability in Google Chrome before 9.0.597.84 allows user-assisted remote attackers to cause a denial of ...
CVE-2011-0782Google Chrome before 9.0.597.84 on Mac OS X does not properly mitigate an unspecified flaw in the Mac OS X 10.5 SSL libr...
CVE-2011-0781Google Chrome before 9.0.597.84 does not properly handle autofill profile merging, which has unspecified impact and remo...
CVE-2011-0780The PDF event handler in Google Chrome before 9.0.597.84 does not properly interact with print operations, which allows ...
CVE-2011-0779Google Chrome before 9.0.597.84 does not properly handle a missing key in an extension, which allows remote attackers to...
CVE-2011-0778Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers ...
CVE-2011-0777Use-after-free vulnerability in Google Chrome before 9.0.597.84 allows remote attackers to cause a denial of service or ...
CVE-2011-0776The sandbox implementation in Google Chrome before 9.0.597.84 on Mac OS X might allow remote attackers to obtain potenti...
CVE-2011-0775pivotx/modules/module_image.php in PivotX 2.2.2 allows remote attackers to obtain sensitive information via a non-existe...

Check if your code is affected by 2011 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now