2011 CVE Vulnerabilities

4,898 CVEs published in 2011.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2011-3854Cross-site scripting (XSS) vulnerability in the ZenLite theme before 4.4 for WordPress allows remote attackers to inject...
CVE-2011-3853Cross-site scripting (XSS) vulnerability in the Hybrid theme before 0.10 for WordPress allows remote attackers to inject...
CVE-2011-3852Cross-site scripting (XSS) vulnerability in the EvoLve theme before 1.2.6 for WordPress allows remote attackers to injec...
CVE-2011-3851Cross-site scripting (XSS) vulnerability in the News theme before 0.2 for WordPress allows remote attackers to inject ar...
CVE-2011-3850Cross-site scripting (XSS) vulnerability in the Atahualpa theme before 3.6.8 for WordPress allows remote attackers to in...
CVE-2011-3694The Server Administration Console in NetSaro Enterprise Messenger Server 2.0 allows remote attackers to read application...
CVE-2011-3693NetSaro Enterprise Messenger Server 2.0 allows local users to discover cleartext server credentials by reading the NetSa...
CVE-2011-3692NetSaro Enterprise Messenger Server 2.0 stores cleartext console credentials in configuration.xml, which allows local us...
CVE-2011-3691Untrusted search path vulnerability in Foxit Reader before 5.0.2.0718 allows local users to gain privileges via a Trojan...
CVE-2011-3690Untrusted search path vulnerability in PlotSoft PDFill PDF Editor 8.0 allows local users to gain privileges via a Trojan...
CVE-2011-3689Cross-site scripting (XSS) vulnerability in Licenses.html in Wibu-Systems CodeMeter WebAdmin 3.30 and 4.30 allows remote...
CVE-2011-3688Multiple SQL injection vulnerabilities in Sonexis ConferenceManager 9.3.14.0 allow remote attackers to execute arbitrary...
CVE-2011-3687Multiple cross-site scripting (XSS) vulnerabilities in Sonexis ConferenceManager 9.2.11.0 allow remote attackers to inje...
CVE-2011-3686Multiple cross-site scripting (XSS) vulnerabilities in myAddressBook.asp in Sonexis ConferenceManager 9.2.11.0 and 9.3.1...
CVE-2011-3685Tembria Server Monitor before 6.0.5 Build 2252 uses a substitution cipher to encrypt application credentials, which allo...
CVE-2011-3684Multiple cross-site scripting (XSS) vulnerabilities in Tembria Server Monitor before 6.0.5 Build 2252 allow remote attac...
CVE-2011-3645Newgen OmniDocs allows remote attackers to bypass intended access restrictions via (1) a modified FolderRights parameter...
CVE-2011-3826Zikula 1.2.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals ...
CVE-2011-3825Zend Framework 1.11.3 in Zend Server CE 5.1.0 allows remote attackers to obtain sensitive information via a direct reque...
CVE-2011-3824Your Own URL Shortener (YOURLS) 1.5 allows remote attackers to obtain sensitive information via a direct request to a .p...
CVE-2011-3823Yamamah 1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals t...
CVE-2011-3822XOOPS 2.5.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals t...
CVE-2011-3821xajax 0.6 beta1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which revea...
CVE-2011-3820WSN Software 6.0.6 allows remote attackers to obtain sensitive information via a direct request to a .php file, which re...
CVE-2011-3819WoW Server Status 4.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which...

Check if your code is affected by 2011 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now