CVE List - 2011 / December
Showing 1 - 100 of 340 CVEs for December 2011 (Page 1 of 4)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2011-2461 | 2011-12-01 | Cross-site scripting (XSS) vulnerability in the Adobe Flex SDK 3.x... |
| CVE-2011-4344 | 2011-12-01 | Cross-site scripting (XSS) vulnerability in Jenkins Core in Jenkins before... |
| CVE-2011-4001 | 2011-12-01 | Directory traversal vulnerability in HP no Mawashimono Nikki 6.6 and... |
| CVE-2011-4161 | 2011-12-01 | The default configuration of the HP CM8060 Color MFP with... |
| CVE-2011-4540 | 2011-12-01 | Multiple cross-site scripting (XSS) vulnerabilities in AtMail Open (aka AtMail... |
| CVE-2011-4544 | 2011-12-01 | Multiple cross-site scripting (XSS) vulnerabilities in Prestashop before 1.5 allow... |
| CVE-2011-4035 | 2011-12-02 | Cross-site scripting (XSS) vulnerability in Schneider Electric Vijeo Historian 4.30... |
| CVE-2011-4545 | 2011-12-02 | CRLF injection vulnerability in admin/displayImage.php in Prestashop 1.4.4.1 allows remote... |
| CVE-2011-4668 | 2011-12-02 | IBM Tivoli Netcool/Reporter 2.2 before 2.2.0.8 allows remote attackers to... |
| CVE-2011-4033 | 2011-12-02 | Buffer overflow in the Steema TeeChart ActiveX control, as used... |
| CVE-2011-4034 | 2011-12-02 | Buffer overflow in the Steema TeeChart ActiveX control, as used... |
| CVE-2011-4036 | 2011-12-02 | Directory traversal vulnerability in Schneider Electric Vijeo Historian 4.30 and... |
| CVE-2011-4669 | 2011-12-02 | SQL injection vulnerability in wp-users.php in WordPress Users plugin 1.3... |
| CVE-2011-4670 | 2011-12-02 | Multiple cross-site scripting (XSS) vulnerabilities in vTiger CRM 5.2.1 and... |
| CVE-2011-4671 | 2011-12-02 | SQL injection vulnerability in adrotate/adrotate-out.php in the AdRotate plugin 3.6.6,... |
| CVE-2011-4672 | 2011-12-02 | Multiple SQL injection vulnerabilities in Valid tiny-erp 1.6 and earlier... |
| CVE-2011-4673 | 2011-12-02 | SQL injection vulnerability in modules/sharedaddy.php in the Jetpack plugin for... |
| CVE-2011-4674 | 2011-12-02 | SQL injection vulnerability in popup.php in Zabbix 1.8.3 and 1.8.4,... |
| CVE-2011-2397 | 2011-12-05 | The Agent service in Iron Mountain Connected Backup 8.4 allows... |
| CVE-2011-4162 | 2011-12-05 | The (1) AddUser, (2) AddUserEx, (3) RemoveUser, (4) RemoveUserByGuide, (5)... |
| CVE-2011-4356 | 2011-12-05 | Celery 2.1 and 2.2 before 2.2.8, 2.3 before 2.3.4, and... |
| CVE-2011-4543 | 2011-12-05 | Multiple directory traversal vulnerabilities in osCommerce 3.0.2 allow remote attackers... |
| CVE-2011-4675 | 2011-12-05 | The pathname canonicalization functionality in io/filesystem/filesystem.cc in Widelands before 15.1... |
| CVE-2011-1932 | 2011-12-05 | Directory traversal vulnerability in io/filesystem/filesystem.cc in Widelands before 15.1 might... |
| CVE-2011-4051 | 2011-12-05 | CEServer.exe in the CEServer component in the Remote Agent module... |
| CVE-2011-4052 | 2011-12-05 | Stack-based buffer overflow in CEServer.exe in the CEServer component in... |
| CVE-2011-4130 | 2011-12-06 | Use-after-free vulnerability in the Response API in ProFTPD before 1.3.3g... |
| CVE-2011-4552 | 2011-12-06 | Multiple cross-site scripting (XSS) vulnerabilities in One Click Orgs before... |
| CVE-2011-4553 | 2011-12-06 | Multiple open redirect vulnerabilities in One Click Orgs before 1.2.3... |
| CVE-2011-4554 | 2011-12-06 | One Click Orgs before 1.2.3 allows remote authenticated users to... |
| CVE-2011-4555 | 2011-12-06 | One Click Orgs before 1.2.3 does not require unique e-mail... |
| CVE-2011-4677 | 2011-12-06 | One Click Orgs before 1.2.3 does not have an off... |
| CVE-2011-4678 | 2011-12-06 | The password reset feature in One Click Orgs before 1.2.3... |
| CVE-2002-2435 | 2011-12-07 | The Cascading Style Sheets (CSS) implementation in Microsoft Internet Explorer... |
| CVE-2002-2436 | 2011-12-07 | The Cascading Style Sheets (CSS) implementation in Mozilla Firefox before... |
| CVE-2010-5069 | 2011-12-07 | The Cascading Style Sheets (CSS) implementation in Google Chrome 4... |
| CVE-2010-5073 | 2011-12-07 | The JavaScript implementation in Google Chrome 4 does not properly... |
| CVE-2010-5074 | 2011-12-07 | The layout engine in Mozilla Firefox before 4.0, Thunderbird before... |
| CVE-2011-4688 | 2011-12-07 | Mozilla Firefox 8.0.1 and earlier does not prevent capture of... |
| CVE-2011-4691 | 2011-12-07 | Google Chrome 15.0.874.121 and earlier does not prevent capture of... |
| CVE-2011-4692 | 2011-12-07 | WebKit, as used in Apple Safari 5.1.1 and earlier and... |
| CVE-2011-2462 | 2011-12-07 | Unspecified vulnerability in the U3D component in Adobe Reader and... |
| CVE-2002-2437 | 2011-12-07 | The JavaScript implementation in Mozilla Firefox before 4.0, Thunderbird before... |
| CVE-2010-5068 | 2011-12-07 | The Cascading Style Sheets (CSS) implementation in Opera 10.5 does... |
| CVE-2010-5070 | 2011-12-07 | The JavaScript implementation in Apple Safari 4 does not properly... |
| CVE-2010-5071 | 2011-12-07 | The JavaScript implementation in Microsoft Internet Explorer 8.0 and earlier... |
| CVE-2010-5072 | 2011-12-07 | The JavaScript implementation in Opera 10.5 does not properly restrict... |
| CVE-2011-4263 | 2011-12-07 | Cross-site scripting (XSS) vulnerability in Schneider Electric PowerChute Business Edition... |
| CVE-2011-4679 | 2011-12-07 | vtiger CRM before 5.3.0 does not properly recognize the disabled... |
| CVE-2011-4680 | 2011-12-07 | Multiple cross-site scripting (XSS) vulnerabilities in the customer portal in... |
| CVE-2011-4681 | 2011-12-07 | Opera before 11.60 does not properly consider the number of... |
| CVE-2011-4682 | 2011-12-07 | The JavaScript engine in Opera before 11.60 does not properly... |
| CVE-2011-4683 | 2011-12-07 | Unspecified vulnerability in Opera before 11.60 has unknown impact and... |
| CVE-2011-4684 | 2011-12-07 | Opera before 11.60 does not properly handle certificate revocation, which... |
| CVE-2011-4685 | 2011-12-07 | Dragonfly in Opera before 11.60 allows remote attackers to cause... |
| CVE-2011-4686 | 2011-12-07 | Unspecified vulnerability in the Web Workers implementation in Opera before... |
| CVE-2011-4687 | 2011-12-07 | Opera before 11.60 allows remote attackers to cause a denial... |
| CVE-2011-4689 | 2011-12-07 | Microsoft Internet Explorer 6 through 9 does not prevent capture... |
| CVE-2011-4690 | 2011-12-07 | Opera 11.60 and earlier does not prevent capture of data... |
| CVE-2011-4693 | 2011-12-07 | Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows and... |
| CVE-2011-4694 | 2011-12-07 | Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows and... |
| CVE-2011-4695 | 2011-12-07 | Unspecified vulnerability in Microsoft Windows 7 SP1, when Java is... |
| CVE-2011-4539 | 2011-12-08 | dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before... |
| CVE-2011-2653 | 2011-12-08 | Directory traversal vulnerability in the rtrlet component in Novell ZENworks... |
| CVE-2011-3179 | 2011-12-08 | The server process in Novell Messenger 2.1 and 2.2.x before... |
| CVE-2011-3636 | 2011-12-08 | Cross-site request forgery (CSRF) vulnerability in the management interface in... |
| CVE-2011-4054 | 2011-12-08 | Cross-site scripting (XSS) vulnerability in login.fcc in CA SiteMinder R6... |
| CVE-2011-4264 | 2011-12-08 | Cross-site scripting (XSS) vulnerability in Etomite before 1.1 allows remote... |
| CVE-2011-4265 | 2011-12-08 | Cross-site scripting (XSS) vulnerability in phpWebSite before 1.0.0 allows remote... |
| CVE-2011-4707 | 2011-12-08 | Multiple cross-site scripting (XSS) vulnerabilities in the Virus Scan Interface... |
| CVE-2011-4709 | 2011-12-08 | Multiple cross-site scripting (XSS) vulnerabilities in Hotaru.php in the Search... |
| CVE-2011-4711 | 2011-12-08 | Multiple directory traversal vulnerabilities in namazu.cgi in Namazu before 2.0.16... |
| CVE-2011-4712 | 2011-12-08 | Directory traversal vulnerability in Oxide WebServer allows remote attackers to... |
| CVE-2011-4714 | 2011-12-08 | Directory traversal vulnerability in Virtual Vertex Muster before 6.20 allows... |
| CVE-2011-4715 | 2011-12-08 | Directory traversal vulnerability in cgi-bin/koha/mainpage.pl in Koha 3.4 before 3.4.7... |
| CVE-2011-4716 | 2011-12-08 | Directory traversal vulnerability in file in DreamBox DM800 1.6rc3, 1.5rc1,... |
| CVE-2011-2917 | 2011-12-08 | SQL injection vulnerability in administrator/index2.php in Mambo CMS 4.6.5 and... |
| CVE-2011-4708 | 2011-12-08 | Cross-site scripting (XSS) vulnerability in IBM Rational Asset Manager before... |
| CVE-2011-4710 | 2011-12-08 | Multiple SQL injection vulnerabilities in Pixie CMS 1.01 through 1.04... |
| CVE-2011-4713 | 2011-12-08 | Directory traversal vulnerability in catalog/content.php in osCSS2 2.1.0 and earlier... |
| CVE-2011-0291 | 2011-12-08 | The BlackBerry PlayBook service on the Research In Motion (RIM)... |
| CVE-2011-1530 | 2011-12-08 | The process_tgs_req function in do_tgs_req.c in the Key Distribution Center... |
| CVE-2011-4128 | 2011-12-08 | Buffer overflow in the gnutls_session_get_data function in lib/gnutls_session.c in GnuTLS... |
| CVE-2011-4315 | 2011-12-08 | Heap-based buffer overflow in compression-pointer processing in core/ngx_resolver.c in nginx... |
| CVE-2011-4719 | 2011-12-09 | Multiple unspecified vulnerabilities in Google Chrome before 16.0.912.63 on the... |
| CVE-2011-4357 | 2011-12-10 | Format string vulnerability in the p_cgi_error function in python/neo_cgi.c in... |
| CVE-2011-4346 | 2011-12-10 | Cross-site scripting (XSS) vulnerability in the web interface in Red... |
| CVE-2011-4349 | 2011-12-10 | Multiple SQL injection vulnerabilities in (1) cd-mapping-db.c and (2) cd-device-db.c... |
| CVE-2011-4201 | 2011-12-13 | remote_support.cgi in the Tadasoft Restorepoint 3.2 evaluation image allows remote... |
| CVE-2011-4202 | 2011-12-13 | The Tadasoft Restorepoint 3.2 evaluation image uses weak permissions (www... |
| CVE-2011-4266 | 2011-12-13 | Untrusted search path vulnerability in FFFTP before 1.98d allows local... |
| CVE-2011-3903 | 2011-12-13 | Google Chrome before 16.0.912.63 does not properly perform regex matching,... |
| CVE-2011-3904 | 2011-12-13 | Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers... |
| CVE-2011-3905 | 2011-12-13 | libxml2, as used in Google Chrome before 16.0.912.63, allows remote... |
| CVE-2011-3906 | 2011-12-13 | The PDF parser in Google Chrome before 16.0.912.63 allows remote... |
| CVE-2011-3907 | 2011-12-13 | The view-source feature in Google Chrome before 16.0.912.63 allows remote... |
| CVE-2011-3908 | 2011-12-13 | Google Chrome before 16.0.912.63 does not properly parse SVG documents,... |
| CVE-2011-3909 | 2011-12-13 | The Cascading Style Sheets (CSS) implementation in Google Chrome before... |
| CVE-2011-3910 | 2011-12-13 | Google Chrome before 16.0.912.63 does not properly handle YUV video... |
| CVE-2011-3911 | 2011-12-13 | Google Chrome before 16.0.912.63 does not properly handle PDF documents,... |