Search
Search Results (332944 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2011-5330 | 1 Distributed Ruby Project | 1 Distributed Ruby | 2024-11-21 | 9.8 Critical |
| Distributed Ruby (aka DRuby) 1.8 mishandles the sending of syscalls. | ||||
| CVE-2011-5329 | 1 Redirection | 1 Redirection | 2024-11-21 | N/A |
| The redirection plugin before 2.2.9 for WordPress has XSS in the admin menu, a different issue than CVE-2011-4562. | ||||
| CVE-2011-5328 | 1 User Access Manager Project | 1 User Access Manager | 2024-11-21 | N/A |
| The user-access-manager plugin before 1.2 for WordPress has CSRF. | ||||
| CVE-2011-5327 | 1 Linux | 1 Linux Kernel | 2024-11-21 | 9.8 Critical |
| In the Linux kernel before 3.1, an off by one in the drivers/target/loopback/tcm_loop.c tcm_loop_make_naa_tpg() function could result in at least memory corruption. | ||||
| CVE-2011-5282 | 1 Mirc | 1 Mirc | 2024-11-21 | 5.3 Medium |
| mIRC prior to 7.22 has a message leak because chopping of outbound messages is mishandled. | ||||
| CVE-2011-5271 | 1 Clusterlabs | 1 Pacemaker | 2024-11-21 | 5.5 Medium |
| Pacemaker before 1.1.6 configure script creates temporary files insecurely | ||||
| CVE-2011-5266 | 1 Imperva | 1 Securesphere Web Application Firewall | 2024-11-21 | 9.8 Critical |
| Imperva SecureSphere Web Application Firewall (WAF) before 12-august-2010 allows SQL injection filter bypass. | ||||
| CVE-2011-5250 | 1 Prophecyinternational | 1 Snare | 2024-11-21 | 6.5 Medium |
| Snare for Linux before 1.7.0 has CSRF in the web interface. | ||||
| CVE-2011-5247 | 1 Prophecyinternational | 1 Snare | 2024-11-21 | 7.5 High |
| Snare for Linux before 1.7.0 has password disclosure because the rendered page contains the field RemotePassword. | ||||
| CVE-2011-5020 | 1 Online Tv Database Project | 1 Online Tv Database | 2024-11-21 | 9.8 Critical |
| An SQL Injection vulnerability exists in the ID parameter in Online TV Database 2011. | ||||
| CVE-2011-5018 | 1 Koala-framework | 1 Koala Framework | 2024-11-21 | 6.1 Medium |
| Koala Framework before 2011-11-21 has XSS via the request_uri parameter. | ||||
| CVE-2011-4973 | 2 Mod Nss Project, Redhat | 2 Mod Nss, Enterprise Linux | 2024-11-21 | N/A |
| Authentication bypass vulnerability in mod_nss 1.0.8 allows remote attackers to assume the identity of a valid user by using their certificate and entering 'password' as the password. | ||||
| CVE-2011-4972 | 1 Ckeditor | 1 Ckeditor | 2024-11-21 | 7.5 High |
| hook_file_download in the CKEditor module 7.x-1.4 for Drupal does not properly restrict access to private files, which allows remote attackers to read private files via a direct request. | ||||
| CVE-2011-4968 | 2 Debian, F5 | 2 Debian Linux, Nginx | 2024-11-21 | 4.8 Medium |
| nginx http proxy module does not verify peer identity of https origin server which could facilitate man-in-the-middle attack (MITM) | ||||
| CVE-2011-4967 | 2 Openpegasus, Redhat | 2 Tog-pegasus, Enterprise Linux | 2024-11-21 | 7.5 High |
| tog-Pegasus has a package hash collision DoS vulnerability | ||||
| CVE-2011-4954 | 1 Cobblerd | 1 Cobbler | 2024-11-21 | 7.8 High |
| cobbler has local privilege escalation via the use of insecure location for PYTHON_EGG_CACHE | ||||
| CVE-2011-4952 | 1 Cobblerd | 1 Cobbler | 2024-11-21 | 8.8 High |
| cobbler: Web interface lacks CSRF protection when using Django framework | ||||
| CVE-2011-4943 | 1 Impresspages | 1 Impresspages Cms | 2024-11-21 | 9.8 Critical |
| ImpressPages CMS v1.0.12 has Unspecified Remote Code Execution (fixed in v1.0.13) | ||||
| CVE-2011-4938 | 1 Muze | 1 Ariadne | 2024-11-21 | 6.1 Medium |
| Multiple cross-site scripting (XSS) vulnerabilities in Ariadne 2.7.6 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO parameter to (1) index.php and (2) loader.php. | ||||
| CVE-2011-4937 | 1 Joomla | 1 Joomla\! | 2024-11-21 | 7.5 High |
| Joomla! 1.7.1 has core information disclosure due to inadequate error checking. | ||||