Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 9, 2026, 12:59 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 223411 | 5 | 警告 | xlinesoft | - | PHPRunner の UserView_list.php における権限を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2009-0964 | 2012-12-20 19:10 | 2009-03-19 | Show | GitHub Exploit DB Packet Storm |
| 223412 | 7.5 | 危険 | xlinesoft | - | PHPRunner における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-0963 | 2012-12-20 19:10 | 2009-03-19 | Show | GitHub Exploit DB Packet Storm |
| 223413 | 10 | 危険 | The Tor Project | - | Tor における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-0939 | 2012-12-20 19:10 | 2009-03-17 | Show | GitHub Exploit DB Packet Storm |
| 223414 | 5 | 警告 | The Tor Project | - | Tor におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-0938 | 2012-12-20 19:10 | 2009-03-17 | Show | GitHub Exploit DB Packet Storm |
| 223415 | 5 | 警告 | The Tor Project | - | Tor におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-0937 | 2012-12-20 19:10 | 2009-03-17 | Show | GitHub Exploit DB Packet Storm |
| 223416 | 5 | 警告 | The Tor Project | - | Tor におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-0936 | 2012-12-20 19:10 | 2009-03-17 | Show | GitHub Exploit DB Packet Storm |
| 223417 | 4.3 | 警告 | ProcessOne | - | ejabberd におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-0934 | 2012-12-20 19:10 | 2009-03-17 | Show | GitHub Exploit DB Packet Storm |
| 223418 | 7.5 | 危険 | roman bogorodskiy | - | nForum における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-0882 | 2012-12-20 19:10 | 2009-03-12 | Show | GitHub Exploit DB Packet Storm |
| 223419 | 5 | 警告 | wesnoth | - | Wesnoth の src/terrain_translation.cpp におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-0878 | 2012-12-20 19:10 | 2009-03-12 | Show | GitHub Exploit DB Packet Storm |
| 223420 | 4.3 | 警告 | tangocms | - | TangoCMS の admincp コンポーネントにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-0862 | 2012-12-20 19:10 | 2009-02-18 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 20, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1651 | 8.8 |
HIGH
Network |
siemens |
6gk6108-4am00-2ba2_firmware 6gk6108-4am00-2da2_firmware 6gk5804-0ap00-2aa2_firmware 6gk5812-1aa00-2aa2_firmware 6gk5812-1ba00-2aa2_firmware 6gk5816-1aa00-2aa2_firmware 6gk5816-1ba00… |
Affected devices do not properly authorize the change password function of the web interface. This could allow low privileged users to escalate their privileges. |
CWE-862
Missing Authorization |
CVE-2022-31765 | 2026-04-14 18:16 | 2022-10-11 | Show | GitHub Exploit DB Packet Storm |
| 1652 | 8.8 |
HIGH
Network |
siemens |
6gk6108-4am00-2ba2_firmware 6gk6108-4am00-2da2_firmware 6gk5804-0ap00-2aa2_firmware 6gk5812-1aa00-2aa2_firmware 6gk5812-1ba00-2aa2_firmware 6gk5816-1aa00-2aa2_firmware 6gk5816-1ba00… |
Los dispositivos afectados no autorizan apropiadamente la función change password de la interfaz web. Esto podría permitir a usuarios poco privilegiado escalar sus privilegios |
CWE-862
Missing Authorization |
CVE-2022-31765 | 2026-04-14 18:16 | 2022-10-11 | Show | GitHub Exploit DB Packet Storm |
| 1653 | 5.3 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfi… |
CWE-20
Improper Input Validation |
CVE-2020-26146 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1654 | 5.3 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
Se detectó un problema en los dispositivos Samsung Galaxy S3 i9305 versión 4.4.4. Las implementaciones de WPA, WPA2 y WPA3 reensamblan fragmentos con números de paquete no consecutivos. Un adversario… |
CWE-20
Improper Input Validation |
CVE-2020-26146 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1655 | 6.5 |
MEDIUM
Adjacent |
samsung siemens |
galaxy_i9305_firmware 6gk5763-1al00-7da0_firmware 6gk5766-1ge00-7da0_firmware 6gk5766-1ge00-7db0_firmware 6gk5766-1je00-7da0_firmware 6gk5766-1ge00-7ta0_firmware 6gk5766-1ge00-7tb0_… |
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and proces… |
CWE-20
Improper Input Validation |
CVE-2020-26145 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1656 | 6.5 |
MEDIUM
Adjacent |
samsung siemens |
galaxy_i9305_firmware 6gk5763-1al00-7da0_firmware 6gk5766-1ge00-7da0_firmware 6gk5766-1ge00-7db0_firmware 6gk5766-1je00-7da0_firmware 6gk5766-1ge00-7ta0_firmware 6gk5766-1ge00-7tb0_… |
Se detectó un problema en los dispositivos Samsung Galaxy S3 i9305 versión 4.4.4. Las implementaciones de WEP, WPA, WPA2 y WPA3 aceptan segundos fragmentos de transmisión (o posteriores) incluso cuan… |
CWE-20
Improper Input Validation |
CVE-2020-26145 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1657 | 6.5 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC104… |
CWE-20
Improper Input Validation |
CVE-2020-26144 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1658 | 6.5 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
Se detectó un problema en los dispositivos Samsung Galaxy S3 i9305 versión 4.4.4. Las implementaciones WEP, WPA, WPA2 y WPA3 aceptan tramas A-MSDU de texto plano siempre que los primeros 8 bytes corr… |
CWE-20
Improper Input Validation |
CVE-2020-26144 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1659 | 6.5 |
MEDIUM
Adjacent |
alfa arista siemens |
awus036h_firmware c-75_firmware o-90_firmware c-65_firmware w-68_firmware scalance_w700_ieee_802.11n_firmware |
An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. The WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frames in a protected Wi-Fi network. An adve… |
CWE-20
Improper Input Validation |
CVE-2020-26143 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1660 | 6.5 |
MEDIUM
Adjacent |
alfa arista siemens |
awus036h_firmware c-75_firmware o-90_firmware c-65_firmware w-68_firmware scalance_w700_ieee_802.11n_firmware |
Se detectó un problema en el controlador ALFA Windows 10 versión 1030.36.604 para AWUS036ACH. Las implementaciones WEP, WPA, WPA2 y WPA3 aceptan tramas de texto plano fragmentados en una red Wi-Fi pr… |
CWE-20
Improper Input Validation |
CVE-2020-26143 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |