2011 CVE Vulnerabilities

4,898 CVEs published in 2011.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2011-1911JasperServer in JasperReports Server Community Project 3.7.0 and 3.7.1 uses a predictable _flowExecutionKey parameter, w...
CVE-2011-1510Cross-site scripting (XSS) vulnerability in SolutionSearch.do in ManageEngine ServiceDesk Plus (SDP) before 8012 allows ...
CVE-2011-1509The encryptPassword function in Login.js in ManageEngine ServiceDesk Plus (SDP) 8012 and earlier uses a Caesar cipher fo...
CVE-2011-3348The mod_proxy_ajp module in the Apache HTTP Server before 2.2.21, when used with mod_proxy_balancer in certain configura...
CVE-2011-2925Cumin in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0 records broker authentication credentials in a log f...
CVE-2011-3576Cross-site scripting (XSS) vulnerability in IBM Lotus Domino 8.5.2 allows remote attackers to inject arbitrary web scrip...
CVE-2011-3575Stack-based buffer overflow in the NSFComputeEvaluateExt function in Nnotes.dll in IBM Lotus Domino 8.5.2 allows remote ...
CVE-2011-3424Session fixation vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before...
CVE-2011-3423Cross-site scripting (XSS) vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Ser...
CVE-2011-3345ulp/sdp/sdp_proc.c in the ib_sdp module (aka ib_sdp.ko) in the ofa_kernel package in the InfiniBand driver implementatio...
CVE-2011-3234Google Chrome before 14.0.835.163 does not properly handle boxes, which allows remote attackers to cause a denial of ser...
CVE-2011-2875Google V8, as used in Google Chrome before 14.0.835.163, does not properly perform object sealing, which allows remote a...
CVE-2011-2874Google Chrome before 14.0.835.163 does not perform an expected pin operation for a self-signed certificate during a sess...
CVE-2011-2864Google Chrome before 14.0.835.163 does not properly handle Tibetan characters, which allows remote attackers to cause a ...
CVE-2011-2862Google V8, as used in Google Chrome before 14.0.835.163, does not properly restrict access to built-in objects, which ha...
CVE-2011-2861Google Chrome before 14.0.835.163 does not properly handle strings in PDF documents, which allows remote attackers to ha...
CVE-2011-2860Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service o...
CVE-2011-2859Google Chrome before 14.0.835.163 uses incorrect permissions for non-gallery pages, which has unspecified impact and att...
CVE-2011-2858Google Chrome before 14.0.835.163 does not properly handle triangle arrays, which allows remote attackers to cause a den...
CVE-2011-2857Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service o...
CVE-2011-2856Google V8, as used in Google Chrome before 14.0.835.163, allows remote attackers to bypass the Same Origin Policy via un...
CVE-2011-2855Google Chrome before 14.0.835.163 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows re...
CVE-2011-2854Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service o...
CVE-2011-2853Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service o...
CVE-2011-2852Off-by-one error in Google V8, as used in Google Chrome before 14.0.835.163, allows remote attackers to cause a denial o...

Check if your code is affected by 2011 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now