Export limit exceeded: 338931 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (338931 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2011-5282 | 1 Mirc | 1 Mirc | 2024-11-21 | 5.3 Medium |
| mIRC prior to 7.22 has a message leak because chopping of outbound messages is mishandled. | ||||
| CVE-2011-5271 | 1 Clusterlabs | 1 Pacemaker | 2024-11-21 | 5.5 Medium |
| Pacemaker before 1.1.6 configure script creates temporary files insecurely | ||||
| CVE-2011-5266 | 1 Imperva | 1 Securesphere Web Application Firewall | 2024-11-21 | 9.8 Critical |
| Imperva SecureSphere Web Application Firewall (WAF) before 12-august-2010 allows SQL injection filter bypass. | ||||
| CVE-2011-5250 | 1 Prophecyinternational | 1 Snare | 2024-11-21 | 6.5 Medium |
| Snare for Linux before 1.7.0 has CSRF in the web interface. | ||||
| CVE-2011-5247 | 1 Prophecyinternational | 1 Snare | 2024-11-21 | 7.5 High |
| Snare for Linux before 1.7.0 has password disclosure because the rendered page contains the field RemotePassword. | ||||
| CVE-2011-5020 | 1 Online Tv Database Project | 1 Online Tv Database | 2024-11-21 | 9.8 Critical |
| An SQL Injection vulnerability exists in the ID parameter in Online TV Database 2011. | ||||
| CVE-2011-5018 | 1 Koala-framework | 1 Koala Framework | 2024-11-21 | 6.1 Medium |
| Koala Framework before 2011-11-21 has XSS via the request_uri parameter. | ||||
| CVE-2011-4973 | 2 Mod Nss Project, Redhat | 2 Mod Nss, Enterprise Linux | 2024-11-21 | N/A |
| Authentication bypass vulnerability in mod_nss 1.0.8 allows remote attackers to assume the identity of a valid user by using their certificate and entering 'password' as the password. | ||||
| CVE-2011-4972 | 1 Ckeditor | 1 Ckeditor | 2024-11-21 | 7.5 High |
| hook_file_download in the CKEditor module 7.x-1.4 for Drupal does not properly restrict access to private files, which allows remote attackers to read private files via a direct request. | ||||
| CVE-2011-4968 | 2 Debian, F5 | 2 Debian Linux, Nginx | 2024-11-21 | 4.8 Medium |
| nginx http proxy module does not verify peer identity of https origin server which could facilitate man-in-the-middle attack (MITM) | ||||
| CVE-2011-4967 | 2 Openpegasus, Redhat | 2 Tog-pegasus, Enterprise Linux | 2024-11-21 | 7.5 High |
| tog-Pegasus has a package hash collision DoS vulnerability | ||||
| CVE-2011-4954 | 1 Cobblerd | 1 Cobbler | 2024-11-21 | 7.8 High |
| cobbler has local privilege escalation via the use of insecure location for PYTHON_EGG_CACHE | ||||
| CVE-2011-4952 | 1 Cobblerd | 1 Cobbler | 2024-11-21 | 8.8 High |
| cobbler: Web interface lacks CSRF protection when using Django framework | ||||
| CVE-2011-4943 | 1 Impresspages | 1 Impresspages Cms | 2024-11-21 | 9.8 Critical |
| ImpressPages CMS v1.0.12 has Unspecified Remote Code Execution (fixed in v1.0.13) | ||||
| CVE-2011-4938 | 1 Muze | 1 Ariadne | 2024-11-21 | 6.1 Medium |
| Multiple cross-site scripting (XSS) vulnerabilities in Ariadne 2.7.6 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO parameter to (1) index.php and (2) loader.php. | ||||
| CVE-2011-4937 | 1 Joomla | 1 Joomla\! | 2024-11-21 | 7.5 High |
| Joomla! 1.7.1 has core information disclosure due to inadequate error checking. | ||||
| CVE-2011-4931 | 2 Debian, Gpw Project | 2 Debian Linux, Gpw | 2024-11-21 | 7.5 High |
| gpw generates shorter passwords than required | ||||
| CVE-2011-4924 | 1 Zope | 1 Zope | 2024-11-21 | 6.1 Medium |
| Cross-site scripting (XSS) vulnerability in Zope 2.8.x before 2.8.12, 2.9.x before 2.9.12, 2.10.x before 2.10.11, 2.11.x before 2.11.6, and 2.12.x before 2.12.3, 3.1.1 through 3.4.1. allows remote attackers to inject arbitrary web script or HTML via vectors related to the way error messages perform sanitization. NOTE: this issue exists because of an incomplete fix for CVE-2010-1104 | ||||
| CVE-2011-4919 | 1 Mpack Project | 1 Mpack | 2024-11-21 | 7.5 High |
| mpack 1.6 has information disclosure via eavesdropping on mails sent by other users | ||||
| CVE-2011-4917 | 1 Linux | 1 Linux Kernel | 2024-11-21 | 5.5 Medium |
| In the Linux kernel through 3.1 there is an information disclosure issue via /proc/stat. | ||||