Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 25, 2026, 4:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 217071 | 7.5 | 危険 | Kennziffer.com | - | TYPO3 用 Statistics エクステンションにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2014-6293 | 2014-10-7 17:37 | 2014-02-12 | Show | GitHub Exploit DB Packet Storm |
| 217072 | 6.4 | 警告 | Alex Kellner | - | TYPO3 用 femanager エクステンションにおける他のフロントエンドユーザのレコードを変更または削除される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2014-6292 | 2014-10-7 17:36 | 2014-02-12 | Show | GitHub Exploit DB Packet Storm |
| 217073 | 4.3 | 警告 | Alphabetic Sitemap project | - | TYPO3 用 Alphabetic Sitemap エクステンションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-6291 | 2014-10-7 17:34 | 2014-02-12 | Show | GitHub Exploit DB Packet Storm |
| 217074 | 7.5 | 危険 | Rupert Germann | - | TYPO3 用 News エクステンションにおける脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2014-6290 | 2014-10-7 17:33 | 2014-02-12 | Show | GitHub Exploit DB Packet Storm |
| 217075 | 7.5 | 危険 | Daniel Lienert Michael Knoll |
- | TYPO3 用 Yet Another Gallery および Tools for Extbase development エクステンションの Ajax dispatcher for Extbase におけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2014-6289 | 2014-10-7 17:30 | 2014-02-12 | Show | GitHub Exploit DB Packet Storm |
| 217076 | 7.5 | 危険 | Alex Kellner | - | TYPO3 用 powermail エクステンションにおける CAPTCHA 保護メカニズムを回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2014-6288 | 2014-10-7 17:29 | 2014-04-10 | Show | GitHub Exploit DB Packet Storm |
| 217077 | 7.5 | 危険 | Alex Kellner | - | TYPO3 用 powermail エクステンションにおける任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2014-3947 | 2014-10-7 17:28 | 2014-05-22 | Show | GitHub Exploit DB Packet Storm |
| 217078 | 9.3 | 危険 | TP-LINK Technologies | - | TP-LINK WR1043ND ルータのファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-2645 | 2014-10-7 16:48 | 2013-04-29 | Show | GitHub Exploit DB Packet Storm |
| 217079 | 10 | 危険 | Schneider Electric | - | Schneider Electric Modicon PLC Ethernet モジュールの SchneiderWEB におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2014-0754 | 2014-10-7 16:00 | 2014-09-16 | Show | GitHub Exploit DB Packet Storm |
| 217080 | 5 | 警告 | ZyXEL | - | ZyXEL SBG-3300 Security Gateway のファームウェアのログインページにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2014-7278 | 2014-10-7 15:41 | 2014-10-2 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 25, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 296971 | - |
linux novell redhat |
linux_kernel suse_linux_enterprise_server enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus enterprise_linux_desktop enterprise_linux_eus enterprise_linux_… |
The rio_ioctl function in drivers/net/ethernet/dlink/dl2k.c in the Linux kernel before 3.3.7 does not restrict access to the SIOCSMIIREG command, which allows local users to write data to an Ethernet… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2012-2313 | 2024-11-21 10:38 | 2012-06-13 | Show | GitHub Exploit DB Packet Storm | |
| 296972 | - | adobe | coldfusion | CRLF injection vulnerability in the Component Browser in Adobe ColdFusion 8.0 through 9.0.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via un… |
CWE-94
Code Injection |
CVE-2012-2041 | 2024-11-21 10:38 | 2012-06-13 | Show | GitHub Exploit DB Packet Storm | |
| 296973 | - |
adobe suse opensuse |
flash_player air linux_enterprise_desktop opensuse |
Untrusted search path vulnerability in the installer in Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on … |
CWE-426
Untrusted Search Path |
CVE-2012-2040 | 2024-11-21 10:38 | 2012-06-9 | Show | GitHub Exploit DB Packet Storm | |
| 296974 | - |
adobe suse opensuse redhat |
flash_player air linux_enterprise_desktop opensuse enterprise_linux_server enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux_desktop enterprise_linux_e… |
Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and be… |
CWE-476
NULL Pointer Dereference |
CVE-2012-2039 | 2024-11-21 10:38 | 2012-06-9 | Show | GitHub Exploit DB Packet Storm | |
| 296975 | - |
adobe suse opensuse redhat |
flash_player air linux_enterprise_desktop opensuse enterprise_linux_server enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux_desktop enterprise_linux_e… |
Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and be… |
CWE-200
Information Exposure |
CVE-2012-2038 | 2024-11-21 10:38 | 2012-06-9 | Show | GitHub Exploit DB Packet Storm | |
| 296976 | - |
adobe suse opensuse redhat |
flash_player air linux_enterprise_desktop opensuse enterprise_linux_server enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux_desktop enterprise_linux_e… |
Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and be… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2012-2037 | 2024-11-21 10:38 | 2012-06-9 | Show | GitHub Exploit DB Packet Storm | |
| 296977 | - |
adobe suse opensuse redhat |
flash_player air linux_enterprise_desktop opensuse enterprise_linux_server enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux_desktop enterprise_linux_e… |
Integer overflow in Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android… |
CWE-190
Integer Overflow or Wraparound |
CVE-2012-2036 | 2024-11-21 10:38 | 2012-06-9 | Show | GitHub Exploit DB Packet Storm | |
| 296978 | - |
adobe suse opensuse redhat |
flash_player air linux_enterprise_desktop opensuse enterprise_linux_server enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux_desktop enterprise_linux_e… |
Stack-based buffer overflow in Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10… |
CWE-787
Out-of-bounds Write |
CVE-2012-2035 | 2024-11-21 10:38 | 2012-06-9 | Show | GitHub Exploit DB Packet Storm | |
| 296979 | - | openstack | nova | Openstack Compute (Nova) Folsom, 2012.1, and 2011.3 does not limit the number of security group rules, which allows remote authenticated users with certain permissions to cause a denial of service (C… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2012-2101 | 2024-11-21 10:38 | 2012-06-8 | Show | GitHub Exploit DB Packet Storm | |
| 296980 | - | mozilla |
seamonkey firefox thunderbird thunderbird_esr |
Heap-based buffer overflow in the utf16_to_isolatin1 function in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, an… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2012-1947 | 2024-11-21 10:38 | 2012-06-6 | Show | GitHub Exploit DB Packet Storm |