2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-4461 | — | — | 5.0% | Dec 30, 2011 | Jetty 8.1.0.RC2 and earlier computes hash values for form parameters without restricting the ability to trigger hash col... |
| CVE-2011-4084 | — | — | — | Dec 30, 2011 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2011-4858. Reason: This candidate is a duplicate of C... |
| CVE-2011-3417 | — | — | 35.7% | Dec 30, 2011 | The Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, ... |
| CVE-2011-3416 | — | — | 45.6% | Dec 30, 2011 | The Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, ... |
| CVE-2011-3415 | — | — | 24.1% | Dec 30, 2011 | Open redirect vulnerability in the Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 2.0... |
| CVE-2011-3414 | — | — | 58.9% | Dec 30, 2011 | The CaseInsensitiveHashProvider.getHashCode function in the HashTable implementation in the ASP.NET subsystem in Microso... |
| CVE-2011-5033 | — | — | 0.7% | Dec 29, 2011 | Stack-based buffer overflow in CFS.c in ConfigServer Security & Firewall (CSF) before 5.43, when running on a DirectAdmi... |
| CVE-2011-5032 | — | — | 0.4% | Dec 29, 2011 | WMDrive.sys 3.4.181.224 in WinMount 3.5.1018 allows local users to cause a denial of service (NULL pointer dereference a... |
| CVE-2011-5031 | — | — | 1.1% | Dec 29, 2011 | Multiple SQL injection vulnerabilities in servlet/capexweb.parentvalidatepassword in cApexWEB 1.1 allow remote attackers... |
| CVE-2011-5030 | — | — | 0.9% | Dec 29, 2011 | Cross-site scripting (XSS) vulnerability in the Meta tags quick module 7.x-2.x before 7.x-2.3 for Drupal allows remote a... |
| CVE-2011-5029 | — | — | 1.1% | Dec 29, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in Simple PHP Blog 0.7.0 and possibly earlier allow remote attackers... |
| CVE-2011-5028 | — | — | 3.5% | Dec 29, 2011 | Directory traversal vulnerability in novelllogmanager/FileDownload in Novell Sentinel Log Manager 1.2.0.1_938 and earlie... |
| CVE-2011-5027 | — | — | 2.0% | Dec 29, 2011 | Cross-site scripting (XSS) vulnerability in ZABBIX before 1.8.10 allows remote attackers to inject arbitrary web script ... |
| CVE-2011-4615 | — | — | 1.4% | Dec 29, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in Zabbix before 1.8.10 allow remote attackers to inject arbitrary w... |
| CVE-2011-4165 | — | — | 8.5% | Dec 29, 2011 | Unspecified vulnerability in HP Database Archiving Software 6.31 allows remote attackers to execute arbitrary code via u... |
| CVE-2011-4164 | — | — | 8.5% | Dec 29, 2011 | Unspecified vulnerability in HP Database Archiving Software 6.31 allows remote attackers to execute arbitrary code via u... |
| CVE-2011-4163 | — | — | 8.5% | Dec 29, 2011 | Unspecified vulnerability in HP Database Archiving Software 6.31 allows remote attackers to execute arbitrary code via u... |
| CVE-2011-5025 | — | — | 2.8% | Dec 29, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in the wiki application in Yaws 1.88 allow remote attackers to injec... |
| CVE-2011-5024 | — | — | 1.1% | Dec 29, 2011 | Cross-site scripting (XSS) vulnerability in mmsearch/design in the Mailman/htdig integration patch for Mailman allows re... |
| CVE-2011-5023 | — | — | 1.6% | Dec 29, 2011 | Cross-site scripting (XSS) vulnerability in Pligg CMS 1.1.4 allows remote attackers to inject arbitrary web script or HT... |
| CVE-2011-5022 | — | — | 1.0% | Dec 29, 2011 | SQL injection vulnerability in search.php in Pligg CMS 1.1.2 allows remote attackers to execute arbitrary SQL commands v... |
| CVE-2011-5026 | — | — | 1.7% | Dec 29, 2011 | Cross-site scripting (XSS) vulnerability in the addPost function in data/functions.php in Winn GuestBook before 2.4.8d a... |
| CVE-2011-5021 | — | — | 1.5% | Dec 29, 2011 | PHPIDS before 0.7 does not properly implement Regular Expression Denial of Service (ReDoS) filters, which allows remote ... |
| CVE-2011-4783 | — | — | 4.8% | Dec 27, 2011 | The IDAPython plugin before 1.5.2.3 in IDA Pro allows user-assisted remote attackers to execute arbitrary code via a cra... |
| CVE-2011-3841 | — | — | 2.4% | Dec 27, 2011 | Cross-site scripting (XSS) vulnerability in uploadify/get_profile_avatar.php in the WP Symposium plugin before 11.12.08 ... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now