2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-4570 | — | — | 1.1% | Nov 29, 2011 | SQL injection vulnerability in the Time Returns (com_timereturns) component 2.0 and possibly earlier versions for Joomla... |
| CVE-2011-4569 | — | — | 1.1% | Nov 29, 2011 | SQL injection vulnerability in userbarsettings.php in the Userbar plugin 2.2 for MyBB Forum allows remote attackers to e... |
| CVE-2011-4568 | — | — | 1.9% | Nov 29, 2011 | Cross-site scripting (XSS) vulnerability in view/frontend-head.php in the Flowplayer plugin before 1.2.12 for WordPress ... |
| CVE-2011-4567 | — | — | 1.6% | Nov 29, 2011 | Cross-site scripting (XSS) vulnerability in includes/templates/template_default/templates/tpl_gv_send_default.php in Zen... |
| CVE-2011-4566 | — | — | 6.7% | Nov 29, 2011 | Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platfo... |
| CVE-2011-4547 | — | — | 1.2% | Nov 29, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in includes/templates/template_default/common/tpl_header_test_info.p... |
| CVE-2011-4541 | — | — | 1.6% | Nov 29, 2011 | Cross-site scripting (XSS) vulnerability in index.php in Hastymail2 2.1.1 before RC2 allows remote attackers to inject a... |
| CVE-2011-4565 | — | — | 1.3% | Nov 28, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in XOOPS 2.5.1.a, and possibly earlier versions, allow remote attack... |
| CVE-2011-4564 | — | — | 1.6% | Nov 28, 2011 | Cross-site scripting (XSS) vulnerability in the admin script in Active CMS 1.2 allows remote attackers to inject arbitra... |
| CVE-2011-4563 | — | — | 1.1% | Nov 28, 2011 | Cross-site scripting (XSS) vulnerability in index.php in JAKCMS 2.0.4.1, and possibly other versions before 2.2.6 2011-0... |
| CVE-2011-4562 | — | — | 2.5% | Nov 28, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in (1) view/admin/log_item.php and (2) view/admin/log_item_details.p... |
| CVE-2011-4561 | — | — | 1.6% | Nov 28, 2011 | Cross-site scripting (XSS) vulnerability in admin.php in Phorum 5.2.18 allows remote attackers to inject arbitrary web s... |
| CVE-2011-4560 | — | — | 0.9% | Nov 28, 2011 | Cross-site scripting (XSS) vulnerability in the Petition Node module 6.x-1.x before 6.x-1.5 for Drupal allows remote aut... |
| CVE-2011-4559 | — | — | 1.4% | Nov 28, 2011 | SQL injection vulnerability in the Calendar module in vTiger CRM 5.2.1 and earlier allows remote attackers to execute ar... |
| CVE-2011-4335 | — | — | 1.6% | Nov 28, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in Contao before 2.10.2 allow remote attackers to inject arbitrary w... |
| CVE-2011-4329 | — | — | 2.4% | Nov 28, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr 3.1.0 allow remote attackers to inject arbitrary web scr... |
| CVE-2011-4319 | — | — | 1.6% | Nov 28, 2011 | Cross-site scripting (XSS) vulnerability in the i18n translations helper method in Ruby on Rails 3.0.x before 3.0.11 and... |
| CVE-2011-1372 | — | — | 1.8% | Nov 28, 2011 | The Web User Interface on the IBM TS3100 and TS3200 tape libraries with firmware before A.60 allows remote attackers to ... |
| CVE-2011-4275 | — | — | 1.6% | Nov 26, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in iTop (aka IT Operations Portal) 1.1.181 and 1.2.0-RC-282 allow re... |
| CVE-2011-3828 | — | — | 3.0% | Nov 26, 2011 | DVRemoteAx.ax 2.1.0.39 in the DVR Remote ActiveX control allows remote attackers to execute arbitrary code via a crafted... |
| CVE-2011-1378 | — | — | 0.3% | Nov 26, 2011 | IBM WebSphere MQ 6.0 on OpenVMS, when the default rights of the MQM group are established, does not properly verify User... |
| CVE-2011-4262 | — | — | 3.7% | Nov 24, 2011 | Unspecified vulnerability in RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via... |
| CVE-2011-4261 | — | — | 3.0% | Nov 24, 2011 | RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code or cause a denial of service (he... |
| CVE-2011-4260 | — | — | 3.0% | Nov 24, 2011 | RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a malformed header in an MP4... |
| CVE-2011-4259 | — | — | 3.0% | Nov 24, 2011 | Integer underflow in RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a craft... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now