Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.8

    CRITICAL
    CVE-2011-5020

    An SQL Injection vulnerability exists in the ID parameter in Online TV Database 2011.... Read more

    Affected Products : online_tv_database
    • EPSS Score: %0.26
    • Published: Jan. 10, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2011-5018

    Koala Framework before 2011-11-21 has XSS via the request_uri parameter.... Read more

    Affected Products : koala_framework
    • EPSS Score: %0.30
    • Published: Jan. 08, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2011-4973

    Authentication bypass vulnerability in mod_nss 1.0.8 allows remote attackers to assume the identity of a valid user by using their certificate and entering 'password' as the password.... Read more

    Affected Products : mod_nss
    • EPSS Score: %0.16
    • Published: Feb. 15, 2018
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2011-4972

    hook_file_download in the CKEditor module 7.x-1.4 for Drupal does not properly restrict access to private files, which allows remote attackers to read private files via a direct request.... Read more

    Affected Products : ckeditor
    • EPSS Score: %0.91
    • Published: Nov. 13, 2019
    • Modified: Nov. 21, 2024

  • 5.8

    MEDIUM
    CVE-2011-4968

    nginx http proxy module does not verify peer identity of https origin server which could facilitate man-in-the-middle attack (MITM)... Read more

    Affected Products : debian_linux nginx
    • EPSS Score: %0.62
    • Published: Nov. 19, 2019
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2011-4967

    tog-Pegasus has a package hash collision DoS vulnerability... Read more

    Affected Products : enterprise_linux tog-pegasus
    • EPSS Score: %0.67
    • Published: Nov. 19, 2019
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2011-4954

    cobbler has local privilege escalation via the use of insecure location for PYTHON_EGG_CACHE... Read more

    Affected Products : cobbler
    • EPSS Score: %0.13
    • Published: Nov. 19, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2011-4952

    cobbler: Web interface lacks CSRF protection when using Django framework... Read more

    Affected Products : cobbler
    • EPSS Score: %0.27
    • Published: Nov. 19, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2011-4943

    ImpressPages CMS v1.0.12 has Unspecified Remote Code Execution (fixed in v1.0.13)... Read more

    Affected Products : impresspages_cms
    • EPSS Score: %0.94
    • Published: Jan. 22, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2011-4938

    Multiple cross-site scripting (XSS) vulnerabilities in Ariadne 2.7.6 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO parameter to (1) index.php and (2) loader.php.... Read more

    Affected Products : ariadne
    • EPSS Score: %0.78
    • Published: Feb. 11, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2011-4937

    Joomla! 1.7.1 has core information disclosure due to inadequate error checking.... Read more

    Affected Products : joomla\!
    • EPSS Score: %0.01
    • Published: Feb. 04, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2011-4931

    gpw generates shorter passwords than required... Read more

    Affected Products : debian_linux gpw
    • EPSS Score: %0.36
    • Published: Oct. 29, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2011-4924

    Cross-site scripting (XSS) vulnerability in Zope 2.8.x before 2.8.12, 2.9.x before 2.9.12, 2.10.x before 2.10.11, 2.11.x before 2.11.6, and 2.12.x before 2.12.3, 3.1.1 through 3.4.1. allows remote attackers to inject arbitrary web script or HTML via vecto... Read more

    Affected Products : zope
    • EPSS Score: %0.99
    • Published: Nov. 25, 2019
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2011-4919

    mpack 1.6 has information disclosure via eavesdropping on mails sent by other users... Read more

    Affected Products : mpack
    • EPSS Score: %1.59
    • Published: Nov. 19, 2019
    • Modified: Nov. 21, 2024

  • 5.5

    MEDIUM
    CVE-2011-4917

    In the Linux kernel through 3.1 there is an information disclosure issue via /proc/stat.... Read more

    Affected Products : linux_kernel
    • EPSS Score: %0.06
    • Published: Apr. 18, 2022
    • Modified: Nov. 21, 2024

  • 5.5

    MEDIUM
    CVE-2011-4916

    Linux kernel through 3.1 allows local users to obtain sensitive keystroke information via access to /dev/pts/ and /dev/tty*.... Read more

    Affected Products : linux_kernel
    • EPSS Score: %0.10
    • Published: Jul. 12, 2022
    • Modified: Nov. 21, 2024

  • 5.5

    MEDIUM
    CVE-2011-4915

    fs/proc/base.c in the Linux kernel through 3.1 allows local users to obtain sensitive keystroke information via access to /proc/interrupts.... Read more

    Affected Products : linux_kernel ubuntu_linux debian_linux
    • EPSS Score: %0.08
    • Published: Feb. 20, 2020
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2011-4912

    Joomla! com_mailto 1.5.x through 1.5.13 has an automated mail timeout bypass.... Read more

    Affected Products : joomla\!
    • EPSS Score: %0.01
    • Published: Feb. 04, 2020
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2011-4908

    TinyBrowser plugin for Joomla! before 1.5.13 allows arbitrary file upload via upload.php.... Read more

    Affected Products : tinybrowser
    • EPSS Score: %61.85
    • Published: Feb. 12, 2020
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2011-4907

    Joomla! 1.5x through 1.5.12: Missing JEXEC Check... Read more

    Affected Products : joomla\!
    • EPSS Score: %0.01
    • Published: Jan. 15, 2020
    • Modified: Nov. 21, 2024
Showing 20 of 291558 Results