Vulnerabilities (CVE)

Filtered by NVD-CWE-noinfo
Total 35800 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2011-5133 1 Mybb 1 Mybb 2026-06-16 10.0 HIGH N/A
Unspecified vulnerability in MyBB before 1.6.5 has unknown impact and attack vectors, related to an "unparsed user avatar in the buddy list."
CVE-2011-5120 1 Comodo 1 Comodo Internet Security 2026-06-16 4.3 MEDIUM N/A
The Antivirus component in Comodo Internet Security before 5.4.189822.1355 allows remote attackers to cause a denial of service (application crash) via a crafted .PST file.
CVE-2011-5087 1 Adastra 1 Trace Mode Data Center 2026-06-16 5.0 MEDIUM N/A
Unspecified vulnerability in AdAstrA TRACE MODE Data Center allows remote attackers to read arbitrary files via unknown vectors, as demonstrated by the GLEG Agora SCADA+ Exploit Pack for Immunity CANVAS.
CVE-2011-5085 1 Sixapart 1 Movable Type 2026-06-16 7.5 HIGH N/A
Unspecified vulnerability in Movable Type 4.x before 4.36 and 5.x before 5.05 allows remote attackers to read or modify data via unknown vectors.
CVE-2011-5075 1 Sitracker 1 Support Incident Tracker 2026-06-16 5.0 MEDIUM N/A
translate.php in Support Incident Tracker (aka SiT!) 3.45 through 3.65 allows remote attackers to obtain sensitive information via a direct request using the save action, which reveals the installation path.
CVE-2011-4963 2 F5, Microsoft 2 Nginx, Windows 2026-06-16 5.0 MEDIUM N/A
nginx/Windows 1.3.x before 1.3.1 and 1.2.x before 1.2.1 allows remote attackers to bypass intended access restrictions and access restricted files via (1) a trailing . (dot) or (2) certain "$index_allocation" sequences in a request.
CVE-2011-4943 1 Impresspages 1 Impresspages Cms 2026-06-16 7.5 HIGH 9.8 CRITICAL
ImpressPages CMS v1.0.12 has Unspecified Remote Code Execution (fixed in v1.0.13)
CVE-2011-4941 1 Matomo 1 Matomo 2026-06-16 6.8 MEDIUM N/A
Unspecified vulnerability in Piwik 1.2 through 1.4 allows remote attackers with the view permission to execute arbitrary code via unknown attack vectors.
CVE-2011-4929 1 Redmine 1 Redmine 2026-06-16 7.5 HIGH N/A
Unspecified vulnerability in the bazaar repository adapter in Redmine 0.9.x and 1.0.x before 1.0.5 allows remote attackers to execute arbitrary commands via unknown vectors.
CVE-2011-4927 1 Redmine 1 Redmine 2026-06-16 4.0 MEDIUM N/A
Unspecified vulnerability in the bazaar repository adapter in Redmine 1.0.x before 1.0.5 allows remote authenticated users to obtain sensitive information via unknown vectors.
CVE-2011-4917 1 Linux 1 Linux Kernel 2026-06-16 2.1 LOW 5.5 MEDIUM
In the Linux kernel through 3.1 there is an information disclosure issue via /proc/stat.
CVE-2011-4899 1 Wordpress 1 Wordpress 2026-06-16 7.5 HIGH N/A
wp-admin/setup-config.php in the installation component in WordPress 3.3.1 and earlier does not ensure that the specified MySQL database service is appropriate, which allows remote attackers to configure an arbitrary database via the dbhost and dbname parameters, and subsequently conduct static code injection and cross-site scripting (XSS) attacks via (1) an HTTP request or (2) a MySQL query. NOTE: the vendor disputes the significance of this issue; however, remote code execution makes the issue important in many realistic environments
CVE-2011-4873 1 Atvise 1 Atvise 2026-06-16 5.0 MEDIUM N/A
Unspecified vulnerability in the server in Certec EDV atvise before 2.1 allows remote attackers to cause a denial of service (daemon crash) via crafted requests to TCP port 4840.
CVE-2011-4790 1 Hp 1 Network Automation 2026-06-16 9.3 HIGH N/A
Unspecified vulnerability in HP Network Automation 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to execute arbitrary code via unknown vectors.
CVE-2011-4719 3 Acer, Google, Samsung 4 Ac700 Chromebook, Chrome Os, Cr-48 Chromebook and 1 more 2026-06-16 10.0 HIGH N/A
Multiple unspecified vulnerabilities in Google Chrome before 16.0.912.63 on the Acer AC700, Samsung Series 5, and Cr-48 Chromebook platforms have unknown impact and attack vectors.
CVE-2011-4695 1 Microsoft 1 Windows 7 2026-06-16 6.9 MEDIUM N/A
Unspecified vulnerability in Microsoft Windows 7 SP1, when Java is installed, allows local users to bypass Internet Explorer sandbox restrictions and gain privileges via unknown vectors, as demonstrated by the White Phosphorus wp_ie_sandbox_escape module for Immunity CANVAS. NOTE: as of 20111207, this disclosure has no actionable information. However, because the module author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.
CVE-2011-4694 3 Adobe, Apple, Microsoft 3 Flash Player, Mac Os X, Windows 2026-06-16 9.3 HIGH N/A
Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows and Mac OS X allows remote attackers to execute arbitrary code via a crafted SWF file, as demonstrated by the second of two vulnerabilities exploited by the Intevydis vd_adobe_fp module in VulnDisco Step Ahead (SA). NOTE: as of 20111207, this disclosure has no actionable information. However, because the module author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.
CVE-2011-4693 3 Adobe, Apple, Microsoft 3 Flash Player, Mac Os X, Windows 2026-06-16 9.3 HIGH N/A
Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows and Mac OS X allows remote attackers to execute arbitrary code via a crafted SWF file, as demonstrated by the first of two vulnerabilities exploited by the Intevydis vd_adobe_fp module in VulnDisco Step Ahead (SA). NOTE: as of 20111207, this disclosure has no actionable information. However, because the module author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.
CVE-2011-4686 1 Opera 1 Opera Browser 2026-06-16 5.0 MEDIUM N/A
Unspecified vulnerability in the Web Workers implementation in Opera before 11.60 allows remote attackers to cause a denial of service (application crash) via unknown vectors.
CVE-2011-4683 1 Opera 1 Opera Browser 2026-06-16 10.0 HIGH N/A
Unspecified vulnerability in Opera before 11.60 has unknown impact and attack vectors, related to a "moderately severe issue."