Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 27, 2026, 2:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 217061 | 7.5 | 危険 | Apache Software Foundation | - | Apache Shiro における認証を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2014-0074 | 2014-10-8 14:40 | 2014-10-1 | Show | GitHub Exploit DB Packet Storm |
| 217062 | 3.5 | 注意 | Drupal | - | Drupal 用 Custom Search モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-7870 | 2014-10-8 14:30 | 2014-04-2 | Show | GitHub Exploit DB Packet Storm |
| 217063 | 3.5 | 注意 | Drupal | - | Drupal 用 Context Form Alteration モジュールの設定 UI におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-7869 | 2014-10-8 14:29 | 2014-04-29 | Show | GitHub Exploit DB Packet Storm |
| 217064 | 4.3 | 警告 | LibVNC | - | LibVNCServer の libvncserver/rfbserver.c の rfbProcessClientNormalMessage 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-189
数値処理の問題 |
CVE-2014-6054 | 2014-10-8 14:28 | 2014-08-18 | Show | GitHub Exploit DB Packet Storm |
| 217065 | 6.5 | 警告 | レッドハット | - | Red Hat CloudForms Management Engine の vmdb/app/controllers/application_controller/performance.rb における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2014-3642 | 2014-10-8 14:19 | 2014-10-2 | Show | GitHub Exploit DB Packet Storm |
| 217066 | 4 | 警告 | レッドハット | - | Red Hat CloudForms Management Engine における重要なコントローラおよびアクションにアクセスされる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2014-0140 | 2014-10-8 14:19 | 2014-10-2 | Show | GitHub Exploit DB Packet Storm |
| 217067 | 5.5 | 警告 | レッドハット | - | Red Hat Conga の /luci/homebase および /luci/cluster メニューのコンポーネントにおけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2014-3521 | 2014-10-8 14:19 | 2014-09-16 | Show | GitHub Exploit DB Packet Storm |
| 217068 | 5 | 警告 | レッドハット | - | Red Hat Conga における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2013-6496 | 2014-10-8 14:18 | 2013-06-6 | Show | GitHub Exploit DB Packet Storm |
| 217069 | 7.5 | 危険 | Rejetto | - | Rejetto HFS (HTTP File Server) に null バイトの取扱いに関する脆弱性 |
CWE-94 CWE-Other |
CVE-2014-6287 | 2014-10-8 13:44 | 2014-10-6 | Show | GitHub Exploit DB Packet Storm |
| 217070 | 6.4 | 警告 | ヒューレット・パッカード | - | HP System Management Homepage におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-2640 | 2014-10-7 18:17 | 2014-09-30 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 27, 2026, 4:52 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 291271 | 9.8 |
CRITICAL
Network |
belkin | f5d8236-4_firmware | An authentication bypass exists in the web management interface in Belkin F5D8236-4 v2. |
CWE-287
Improper Authentication |
CVE-2013-3085 | 2024-11-21 10:52 | 2019-12-27 | Show | GitHub Exploit DB Packet Storm |
| 291272 | 9.8 |
CRITICAL
Network |
minidlna_project debian |
minidlna debian_linux |
An SQL Injection vulnerability exists in MiniDLNA prior to 1.1.0 |
CWE-89
SQL Injection |
CVE-2013-2745 | 2024-11-21 10:52 | 2019-12-5 | Show | GitHub Exploit DB Packet Storm |
| 291273 | 6.5 |
MEDIUM
Network |
otrs debian opensuse |
otrs_help_desk otrs_itsm faq debian_linux opensuse |
An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, and FAQ before 2.2.3, 2.1.4, and 2.0.8. Access rights by the object linking… |
CWE-269
Improper Privilege Management |
CVE-2013-2625 | 2024-11-21 10:52 | 2019-11-28 | Show | GitHub Exploit DB Packet Storm |
| 291274 | 9.8 |
CRITICAL
Network |
netgear | wndr4700_firmware | An Authentication Bypass vulnerability exists in NETGEAR Centria WNDR4700 Firmware 1.0.0.34 in http://<router_ip>/apply.cgi?/hdd_usr_setup.htm that when visited by any user, authenticated or not, cau… |
CWE-287
Improper Authentication |
CVE-2013-3072 | 2024-11-21 10:52 | 2019-11-15 | Show | GitHub Exploit DB Packet Storm |
| 291275 | 7.5 |
HIGH
Network |
netgear | wndr4700_firmware | An Information Disclosure vulnerability exists in Netgear WNDR4700 running firmware 1.0.0.34 in the management web interface, which discloses the PSK of the wireless LAN. |
CWE-200
Information Exposure |
CVE-2013-3070 | 2024-11-21 10:52 | 2019-11-15 | Show | GitHub Exploit DB Packet Storm |
| 291276 | 9.8 |
CRITICAL
Network |
netgear | wndr4700_firmware | A Symlink Traversal vulnerability exists in NETGEAR Centria WNDR4700 Firmware 1.0.0.34. |
CWE-22
Path Traversal |
CVE-2013-3073 | 2024-11-21 10:52 | 2019-11-15 | Show | GitHub Exploit DB Packet Storm |
| 291277 | 9.8 |
CRITICAL
Network |
readymedia_project debian |
readymedia debian_linux |
MiniDLNA has heap-based buffer overflow |
CWE-119 CWE-787 Incorrect Access of Indexable Resource ('Range Error') Out-of-bounds Write |
CVE-2013-2739 | 2024-11-21 10:52 | 2019-11-1 | Show | GitHub Exploit DB Packet Storm |
| 291278 | 9.8 |
CRITICAL
Network |
readymedia_project | readymedia | minidlna has SQL Injection that may allow retrieval of arbitrary files |
CWE-89
SQL Injection |
CVE-2013-2738 | 2024-11-21 10:52 | 2019-11-1 | Show | GitHub Exploit DB Packet Storm |
| 291279 | 7.5 |
HIGH
Network |
miniupnp_project debian |
miniupnpd debian_linux |
MiniUPnPd has information disclosure use of snprintf() |
CWE-200
Information Exposure |
CVE-2013-2600 | 2024-11-21 10:52 | 2019-11-1 | Show | GitHub Exploit DB Packet Storm |
| 291280 | 7.5 |
HIGH
Network |
rockwellautomation | rslinx_enterprise | Rockwell Automation RSLinx Enterprise Software (LogReceiver.exe) CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 does not handle input correctly and results in a logi… |
CWE-125
Out-of-bounds Read |
CVE-2013-2805 | 2024-11-21 10:52 | 2019-03-27 | Show | GitHub Exploit DB Packet Storm |