| | CVE-2002-2435 |  Microsoft | medium | 4.3 | 21.3%
| | The Cascading Style Sheets (CSS) implementation in Microsoft Internet Explorer 8.0 and earlier does … | Dec 7, 2011 | Apr 29, 2026 |
| | CVE-2010-5071 | Microsoft | medium | 5.0 | 10.4%
| | The JavaScript implementation in Microsoft Internet Explorer 8.0 and earlier does not properly restr… | Dec 7, 2011 | Apr 29, 2026 |
| | CVE-2011-4689 | Microsoft | medium | 5.0 | 15.3%
| | Microsoft Internet Explorer 6 through 9 does not prevent capture of data about the times of Same Ori… | Dec 7, 2011 | Apr 29, 2026 |
| | CVE-2011-4315 |  F5 | medium | 6.8 | 2.8%
| | Heap-based buffer overflow in compression-pointer processing in core/ngx_resolver.c in nginx before … | Dec 8, 2011 | Apr 29, 2026 |
| | CVE-2011-1508 | Microsoft | critical | 9.3 | 27.1%
| | Microsoft Publisher 2003 SP3, and 2007 SP2 and SP3, does not properly manage memory allocations for … | Dec 14, 2011 | Apr 29, 2026 |
| | CVE-2011-1983 | Microsoft | critical | 9.3 | 54.7%
| | Use-after-free vulnerability in Microsoft Office 2007 SP2 and SP3, Office 2010 Gold and SP1, and Off… | Dec 14, 2011 | Apr 29, 2026 |
| | CVE-2011-1992 | Microsoft | medium | 4.3 | 18.1%
| | The XSS Filter in Microsoft Internet Explorer 8 allows remote attackers to read content from a diffe… | Dec 14, 2011 | Apr 29, 2026 |
| | CVE-2011-2010 | Microsoft | high | 7.2 | 0.5%
| | The Microsoft Office Input Method Editor (IME) for Simplified Chinese in Microsoft Pinyin IME 2010, … | Dec 14, 2011 | Apr 29, 2026 |
| | CVE-2011-2019 | Microsoft | critical | 9.3 | 26.6%
| | Untrusted search path vulnerability in Microsoft Internet Explorer 9 on Windows Server 2008 R2 and R… | Dec 14, 2011 | Apr 29, 2026 |
| | CVE-2011-3396 | Microsoft | critical | 9.3 | 50.0%
| | Untrusted search path vulnerability in Microsoft PowerPoint 2007 SP2 and 2010 allows local users to … | Dec 14, 2011 | Apr 29, 2026 |
| | CVE-2011-3403 | Microsoft | critical | 9.3 | 39.4%
| | Microsoft Excel 2003 SP3 and Office 2004 for Mac do not properly handle objects in memory, which all… | Dec 14, 2011 | Apr 29, 2026 |
| | CVE-2011-3404 | Microsoft | medium | 4.3 | 14.5%
| | Microsoft Internet Explorer 6 through 9 does not properly use the Content-Disposition HTTP header to… | Dec 14, 2011 | Apr 29, 2026 |
| | CVE-2011-3410 | Microsoft | critical | 9.3 | 58.3%
| | Array index error in Microsoft Publisher 2003 SP3, and 2007 SP2 and SP3, allows remote attackers to … | Dec 14, 2011 | Apr 29, 2026 |
| | CVE-2011-3411 | Microsoft | critical | 9.3 | 55.7%
| | Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publish… | Dec 14, 2011 | Apr 29, 2026 |
| | CVE-2011-3412 | Microsoft | critical | 9.3 | 55.7%
| | Microsoft Publisher 2003 SP3, and 2007 SP2 and SP3, allows remote attackers to execute arbitrary cod… | Dec 14, 2011 | Apr 29, 2026 |
| | CVE-2011-3413 | Microsoft | critical | 9.3 | 52.4%
| | Microsoft PowerPoint 2007 SP2; Office 2008 for Mac; Office Compatibility Pack for Word, Excel, and P… | Dec 14, 2011 | Apr 29, 2026 |
| | CVE-2011-4834 |  HPE | medium | 4.6 | 1.2%
| | The GetInstalledPackages function in the configuration tool in HP Application Lifestyle Management (… | Dec 15, 2011 | Apr 29, 2026 |
| | CVE-2011-4166 | HPE | high | 7.5 | 63.5%
| | Directory traversal vulnerability in the MPAUploader.Uploader.1.UploadFiles method in HP Managed Pri… | Dec 27, 2011 | Apr 29, 2026 |
| | CVE-2011-4167 | HPE | high | 7.5 | 11.1%
| | Stack-based buffer overflow in MPAUploader.dll in HP Managed Printing Administration before 2.6.4 al… | Dec 27, 2011 | Apr 29, 2026 |
| | CVE-2011-4168 | HPE | high | 7.5 | 1.6%
| | Directory traversal vulnerability in hpmpa/jobDelivery/Default.asp in HP Managed Printing Administra… | Dec 27, 2011 | Apr 29, 2026 |
| | CVE-2011-4169 | HPE | high | 7.5 | 1.1%
| | Unspecified vulnerability in HP Managed Printing Administration before 2.6.4 allows remote attackers… | Dec 27, 2011 | Apr 29, 2026 |
| | CVE-2007-6750 |  Apache | medium | 5.0 | 81.7%
| | The Apache HTTP Server 1.x and 2.x allows remote attackers to cause a denial of service (daemon outa… | Dec 27, 2011 | Apr 29, 2026 |
| | CVE-2011-4163 | HPE | critical | 10.0 | 21.1%
| | Unspecified vulnerability in HP Database Archiving Software 6.31 allows remote attackers to execute … | Dec 29, 2011 | Apr 29, 2026 |
| | CVE-2011-4164 | HPE | critical | 10.0 | 21.1%
| | Unspecified vulnerability in HP Database Archiving Software 6.31 allows remote attackers to execute … | Dec 29, 2011 | Apr 29, 2026 |
| | CVE-2011-4165 | HPE | critical | 10.0 | 21.1%
| | Unspecified vulnerability in HP Database Archiving Software 6.31 allows remote attackers to execute … | Dec 29, 2011 | Apr 29, 2026 |
| | CVE-2011-5034 | Apache | high | 7.8 | 73.3%
| | Apache Geronimo 2.2.1 and earlier computes hash values for form parameters without restricting the a… | Dec 30, 2011 | Apr 29, 2026 |
| | CVE-2011-4642 |  Splunk | medium | 4.6 | 18.7%
| | mappy.py in Splunk Web in Splunk 4.2.x before 4.2.5 does not properly restrict use of the mappy comm… | Jan 3, 2012 | Apr 29, 2026 |
| | CVE-2011-4643 | Splunk | medium | 4.0 | 9.3%
| | Multiple directory traversal vulnerabilities in Splunk 4.x before 4.2.5 allow remote authenticated u… | Jan 3, 2012 | Apr 29, 2026 |
| | CVE-2011-4644 | Splunk | critical | 9.3 | 5.0%
| | Splunk 4.2.5 and earlier, when a Free license is selected, enables potentially undesirable functiona… | Jan 3, 2012 | Apr 29, 2026 |
| | CVE-2011-4778 | Splunk | medium | 4.3 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk 4.2.x before 4.2.5 allows remote at… | Jan 3, 2012 | Apr 29, 2026 |
| | CVE-2011-4905 | Apache | medium | 5.0 | 12.5%
| | Apache ActiveMQ before 5.6.0 allows remote attackers to cause a denial of service (file-descriptor e… | Jan 5, 2012 | Apr 29, 2026 |
| | CVE-2011-4858 | Apache | medium | 5.0 | 76.6%
| | Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form … | Jan 5, 2012 | Apr 29, 2026 |
| | CVE-2012-0287 | Microsoft | low | 2.6 | 0.6%
| | Cross-site scripting (XSS) vulnerability in wp-comments-post.php in WordPress 3.3.x before 3.3.1, wh… | Jan 6, 2012 | Apr 29, 2026 |
| | CVE-2012-0391 | Apache | critical | 9.8 | 88.3%
| ⚠ KEV | The ExceptionDelegator component in Apache Struts before 2.2.3.1 interprets parameter values as OGNL… | Jan 8, 2012 | Apr 22, 2026 |
| | CVE-2012-0392 | Apache | medium | 6.8 | 75.0%
| | The CookieInterceptor component in Apache Struts before 2.3.1.1 does not use the parameter-name whit… | Jan 8, 2012 | Apr 29, 2026 |
| | CVE-2012-0393 | Apache | medium | 6.4 | 58.5%
| | The ParameterInterceptor component in Apache Struts before 2.3.1.1 does not prevent access to public… | Jan 8, 2012 | Apr 29, 2026 |
| | CVE-2012-0394 | Apache | medium | 6.8 | 92.6%
| | The DebuggingInterceptor component in Apache Struts before 2.3.1.1, when developer mode is used, all… | Jan 8, 2012 | Apr 29, 2026 |
| | CVE-2011-5057 | Apache | medium | 5.0 | 52.9%
| | Apache Struts 2.3.1.2 and earlier, 2.3.19-2.3.23, provides interfaces that do not properly restrict … | Jan 8, 2012 | Apr 29, 2026 |
| | CVE-2011-4785 | HPE | high | 7.8 | 1.7%
| | Directory traversal vulnerability in the HP-ChaiSOE/1.0 web server on the HP LaserJet P3015 printer … | Jan 10, 2012 | Apr 29, 2026 |
| | CVE-2012-0007 | Microsoft | medium | 4.3 | 59.2%
| | The Microsoft Anti-Cross Site Scripting (AntiXSS) Library 3.x and 4.0 does not properly evaluate cha… | Jan 10, 2012 | Apr 29, 2026 |
| | CVE-2011-4786 | HPE | critical | 9.3 | 63.6%
| | A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows… | Jan 12, 2012 | Apr 29, 2026 |
| | CVE-2011-4787 | HPE | critical | 9.3 | 0.6%
| | A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows… | Jan 12, 2012 | Apr 29, 2026 |
| | CVE-2011-4789 | HPE | critical | 10.0 | 78.5%
| | Stack-based buffer overflow in magentservice.exe in the server in HP LoadRunner 11.00 before patch 4… | Jan 13, 2012 | Apr 29, 2026 |
| | CVE-2012-0697 | HPE | critical | 10.0 | 1.9%
| | HP StorageWorks P2000 G3 MSA array systems have a default account, which makes it easier for remote … | Jan 13, 2012 | Apr 29, 2026 |
| | CVE-2011-1184 | Apache | medium | 5.0 | 2.2%
| | The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x befor… | Jan 14, 2012 | Apr 29, 2026 |
| | CVE-2011-5062 | Apache | medium | 5.0 | 5.3%
| | The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x befor… | Jan 14, 2012 | Apr 29, 2026 |
| | CVE-2011-5063 | Apache | medium | 4.3 | 2.0%
| | The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x befor… | Jan 14, 2012 | Apr 29, 2026 |
| | CVE-2011-5064 | Apache | medium | 4.3 | 5.3%
| | DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.… | Jan 14, 2012 | Apr 29, 2026 |
| | CVE-2012-0031 | Apache | medium | 4.6 | 1.2%
| | scoreboard.c in the Apache HTTP Server 2.2.21 and earlier might allow local users to cause a denial … | Jan 18, 2012 | Apr 29, 2026 |
| | CVE-2011-3375 | Apache | medium | 5.0 | 2.0%
| | Apache Tomcat 6.0.30 through 6.0.33 and 7.x before 7.0.22 does not properly perform certain caching … | Jan 19, 2012 | Apr 29, 2026 |