2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-5147 | — | — | 2.3% | Aug 31, 2012 | Static code injection vulnerability in ajax_save_name.php in the Ajax File Manager module in the tinymce plugin in FreeW... |
| CVE-2011-5146 | — | — | 0.3% | Aug 31, 2012 | Bokken before 1.6 and 1.5-x before 1.5-3 for Debian allows local users to overwrite arbitrary files via a symlink attack... |
| CVE-2011-5145 | — | — | 1.2% | Aug 31, 2012 | Multiple SQL injection vulnerabilities in Open Business Management (OBM) 2.4.0-rc13 and probably earlier allow remote au... |
| CVE-2011-5144 | — | — | 1.5% | Aug 31, 2012 | Open Business Management (OBM) 2.4.0-rc13 and earlier allows remote attackers to obtain configuration information via a ... |
| CVE-2011-5143 | — | — | 0.9% | Aug 31, 2012 | Multiple cross-site scripting (XSS) vulnerabilities in Open Business Management (OBM) 2.3.20 and probably earlier allow ... |
| CVE-2011-5142 | — | — | 1.2% | Aug 31, 2012 | Multiple cross-site scripting (XSS) vulnerabilities in Open Business Management (OBM) 2.4.0-rc13 and probably earlier al... |
| CVE-2011-5141 | — | — | 1.3% | Aug 31, 2012 | Directory traversal vulnerability in exportcsv/exportcsv_index.php in Open Business Management (OBM) 2.4.0-rc13 and earl... |
| CVE-2011-5140 | — | — | 1.8% | Aug 31, 2012 | Multiple SQL injection vulnerabilities in the blog module 1.0 for DiY-CMS allow remote attackers to execute arbitrary SQ... |
| CVE-2011-5139 | — | — | 1.1% | Aug 31, 2012 | SQL injection vulnerability in page.php in Pre Studio Business Cards Designer allows remote attackers to execute arbitra... |
| CVE-2011-5138 | — | — | 1.0% | Aug 31, 2012 | Cross-site scripting (XSS) vulnerability in member.php in tForum b0.915 allows remote attackers to inject arbitrary web ... |
| CVE-2011-5137 | — | — | 1.2% | Aug 31, 2012 | Multiple SQL injection vulnerabilities in tForum b0.915 allow remote attackers to execute arbitrary SQL commands via the... |
| CVE-2011-5136 | — | — | 1.6% | Aug 30, 2012 | showImg.php in EPractize Labs Subscription Manager, possibly 1.0, allows remote attackers to overwrite arbitrary files v... |
| CVE-2011-5135 | — | — | 0.9% | Aug 30, 2012 | Multiple SQL injection vulnerabilities in the save_connection function in lib/lib.iotask.php in the iotask module in Doc... |
| CVE-2011-5134 | — | — | 1.1% | Aug 30, 2012 | Unrestricted file upload vulnerability in editor/extensions/browser/file.php in the JCE component before 2.0.18 for Joom... |
| CVE-2011-5133 | — | — | 1.7% | Aug 30, 2012 | Unspecified vulnerability in MyBB before 1.6.5 has unknown impact and attack vectors, related to an "unparsed user avata... |
| CVE-2011-5132 | — | — | 1.2% | Aug 30, 2012 | Cross-site scripting (XSS) vulnerability in MyBB before 1.6.5 allows remote attackers to inject arbitrary web script or ... |
| CVE-2011-5131 | — | — | 1.0% | Aug 30, 2012 | Cross-site request forgery (CSRF) vulnerability in global.php in MyBB before 1.6.5 allows remote attackers to hijack the... |
| CVE-2011-5130 | — | — | 36.5% | Aug 30, 2012 | dev/less.php in Family Connections CMS (FCMS) 2.5.0 - 2.7.1, when register_globals is enabled, allows remote attackers t... |
| CVE-2011-5129 | — | — | 7.7% | Aug 30, 2012 | Heap-based buffer overflow in XChat 2.8.9 and earlier allows remote attackers to cause a denial of service (crash) and p... |
| CVE-2011-1398 | — | — | 10.2% | Aug 30, 2012 | The sapi_header_op function in main/SAPI.c in PHP before 5.3.11 and 5.4.x before 5.4.0RC2 does not check for %0D sequenc... |
| CVE-2011-4578 | — | — | 0.4% | Aug 29, 2012 | event.c in acpid (aka acpid2) before 2.0.11 does not have an appropriate umask setting during execution of event-handler... |
| CVE-2011-2777 | — | — | 0.6% | Aug 29, 2012 | samples/powerbtn/powerbtn.sh in acpid (aka acpid2) 2.0.16 and earlier uses the pidof program incorrectly, which allows l... |
| CVE-2011-5128 | — | — | 1.7% | Aug 29, 2012 | Multiple cross-site scripting (XSS) vulnerabilities in the Adminimize plugin before 1.7.22 for WordPress allow remote at... |
| CVE-2011-4926 | — | — | 10.9% | Aug 29, 2012 | Cross-site scripting (XSS) vulnerability in adminimize/adminimize_page.php in the Adminimize plugin before 1.7.22 for Wo... |
| CVE-2011-4918 | — | — | 2.1% | Aug 29, 2012 | Multiple cross-site scripting (XSS) vulnerabilities in Elxis CMS 2009.2, 2009.3 and 2009.3 Aphrodite before revision 268... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now