Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 9, 2026, 12:59 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 214541 | 4.3 | 警告 | Ushahidi | - | Ushahidi Platform におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-2025 | 2014-04-28 17:51 | 2013-05-1 | Show | GitHub Exploit DB Packet Storm |
| 214542 | 3.5 | 注意 | Episerver | - | Ektron CMS の content.aspx におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-2729 | 2014-04-28 17:42 | 2014-04-16 | Show | GitHub Exploit DB Packet Storm |
| 214543 | 9.3 | 危険 | Power Software | - | Power Software の WinArchiver におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2013-5660 | 2014-04-28 17:13 | 2013-04-29 | Show | GitHub Exploit DB Packet Storm |
| 214544 | 4.3 | 警告 | JoomlaBoat.com | - | Joomla! 用 YouTube Gallery コンポーネントにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-5956 | 2014-04-28 16:17 | 2013-09-27 | Show | GitHub Exploit DB Packet Storm |
| 214545 | 6.8 | 警告 | OpenX | - | OpenX におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-5954 | 2014-04-28 16:04 | 2013-09-27 | Show | GitHub Exploit DB Packet Storm |
| 214546 | 4.3 | 警告 | Moxiecode Systems AB | - | TinyMCE の bbcode プラグインにおけるクロスサイトスクリプティング攻撃を実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-4230 | 2014-04-28 15:49 | 2012-08-9 | Show | GitHub Exploit DB Packet Storm |
| 214547 | 9.3 | 危険 | 3S-Smart Software Solutions SoftMotion3D Festo |
- | Festo Modular controllers CECX-X-C1 および CECX-X-M1 における設定を変更される脆弱性 |
CWE-287
不適切な認証 |
CVE-2014-0769 | 2014-04-28 15:40 | 2014-04-24 | Show | GitHub Exploit DB Packet Storm |
| 214548 | 9.3 | 危険 | 3S-Smart Software Solutions SoftMotion3D Festo |
- | Festo Modular controllers CECX-X-C1 および CECX-X-M1 における任意のコードを実行される脆弱性 |
CWE-287
不適切な認証 |
CVE-2014-0760 | 2014-04-28 15:40 | 2014-04-24 | Show | GitHub Exploit DB Packet Storm |
| 214549 | 4.3 | 警告 | Open-Xchange | - | Open-Xchange AppSuite におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-2393 | 2014-04-28 15:07 | 2014-04-8 | Show | GitHub Exploit DB Packet Storm |
| 214550 | 4.3 | 警告 | Open-Xchange | - | Open-Xchange AppSuite の電子メール自動設定機能における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2014-2392 | 2014-04-28 15:06 | 2014-04-8 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 24, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 298111 | - | softcart | softcart | Multiple cross-site scripting (XSS) vulnerabilities in SoftCart.exe in SoftCart 5.1.2.2 allow remote attackers to inject arbitrary web script or HTML via the (1) License_Plate, (2) License_State, (3)… |
CWE-79
Cross-site Scripting |
CVE-2008-0523 | 2017-08-8 10:29 | 2008-02-1 | Show | GitHub Exploit DB Packet Storm | |
| 298112 | - | yamaha |
rt107e rt52pro rt56v rt57i rt58i rt60w rt80i rta50i rta52i rta54i rta55i rtv700 rtw65b rtw65i rtx1000 rtx1100 rtx1500 srt100 |
Cross-site request forgery (CSRF) vulnerability in the management interface in multiple Yamaha RT series routers allows remote attackers to change password settings and probably other configuration s… |
CWE-352
Origin Validation Error |
CVE-2008-0524 | 2017-08-8 10:29 | 2008-02-1 | Show | GitHub Exploit DB Packet Storm | |
| 298113 | - | cisco |
skinny_client_control_protocol_\(sccp\)_firmware session_initiation_protocol_\(sip\)_firmware |
Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SCCP firmware allows remote attackers to cause a denial of service (reboot) via a long ICMP echo request (ping) packet. |
CWE-20
Improper Input Validation |
CVE-2008-0526 | 2017-08-8 10:29 | 2008-02-15 | Show | GitHub Exploit DB Packet Storm | |
| 298114 | - | cisco |
skinny_client_control_protocol_\(sccp\)_firmware session_initiation_protocol_\(sip\)_firmware |
In order to download the patch, login is required |
CWE-20
Improper Input Validation |
CVE-2008-0526 | 2017-08-8 10:29 | 2008-02-15 | Show | GitHub Exploit DB Packet Storm | |
| 298115 | - | cisco |
skinny_client_control_protocol_\(sccp\)_firmware session_initiation_protocol_\(sip\)_firmware |
The HTTP server in Cisco Unified IP Phone 7935 and 7936 running SCCP firmware allows remote attackers to cause a denial of service (reboot) via a crafted HTTP request. |
CWE-20
Improper Input Validation |
CVE-2008-0527 | 2017-08-8 10:29 | 2008-02-15 | Show | GitHub Exploit DB Packet Storm | |
| 298116 | - | cisco |
skinny_client_control_protocol_\(sccp\)_firmware session_initiation_protocol_\(sip\)_firmware |
Patch download requires login |
CWE-20
Improper Input Validation |
CVE-2008-0527 | 2017-08-8 10:29 | 2008-02-15 | Show | GitHub Exploit DB Packet Storm | |
| 298117 | - | cisco |
skinny_client_control_protocol_\(sccp\)_firmware session_initiation_protocol_\(sip\)_firmware |
Buffer overflow in Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SIP firmware might allow remote attackers to execute arbitrary code via a SIP message with crafted MIME data. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2008-0528 | 2017-08-8 10:29 | 2008-02-15 | Show | GitHub Exploit DB Packet Storm | |
| 298118 | - | cisco |
skinny_client_control_protocol_\(sccp\)_firmware session_initiation_protocol_\(sip\)_firmware |
Patch requires login |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2008-0528 | 2017-08-8 10:29 | 2008-02-15 | Show | GitHub Exploit DB Packet Storm | |
| 298119 | - | cisco |
skinny_client_control_protocol_\(sccp\)_firmware session_initiation_protocol_\(sip\)_firmware |
Buffer overflow in the telnet server in Cisco Unified IP Phone 7906G, 7911G, 7941G, 7961G, 7970G, and 7971G running SCCP firmware might allow remote authenticated users to execute arbitrary code via … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2008-0529 | 2017-08-8 10:29 | 2008-02-15 | Show | GitHub Exploit DB Packet Storm | |
| 298120 | - | cisco |
skinny_client_control_protocol_\(sccp\)_firmware session_initiation_protocol_\(sip\)_firmware |
Patch requires login |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2008-0529 | 2017-08-8 10:29 | 2008-02-15 | Show | GitHub Exploit DB Packet Storm |