Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 9, 2026, 12:59 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 223411 | 5 | 警告 | xlinesoft | - | PHPRunner の UserView_list.php における権限を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2009-0964 | 2012-12-20 19:10 | 2009-03-19 | Show | GitHub Exploit DB Packet Storm |
| 223412 | 7.5 | 危険 | xlinesoft | - | PHPRunner における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-0963 | 2012-12-20 19:10 | 2009-03-19 | Show | GitHub Exploit DB Packet Storm |
| 223413 | 10 | 危険 | The Tor Project | - | Tor における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-0939 | 2012-12-20 19:10 | 2009-03-17 | Show | GitHub Exploit DB Packet Storm |
| 223414 | 5 | 警告 | The Tor Project | - | Tor におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-0938 | 2012-12-20 19:10 | 2009-03-17 | Show | GitHub Exploit DB Packet Storm |
| 223415 | 5 | 警告 | The Tor Project | - | Tor におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-0937 | 2012-12-20 19:10 | 2009-03-17 | Show | GitHub Exploit DB Packet Storm |
| 223416 | 5 | 警告 | The Tor Project | - | Tor におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-0936 | 2012-12-20 19:10 | 2009-03-17 | Show | GitHub Exploit DB Packet Storm |
| 223417 | 4.3 | 警告 | ProcessOne | - | ejabberd におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-0934 | 2012-12-20 19:10 | 2009-03-17 | Show | GitHub Exploit DB Packet Storm |
| 223418 | 7.5 | 危険 | roman bogorodskiy | - | nForum における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-0882 | 2012-12-20 19:10 | 2009-03-12 | Show | GitHub Exploit DB Packet Storm |
| 223419 | 5 | 警告 | wesnoth | - | Wesnoth の src/terrain_translation.cpp におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-0878 | 2012-12-20 19:10 | 2009-03-12 | Show | GitHub Exploit DB Packet Storm |
| 223420 | 4.3 | 警告 | tangocms | - | TangoCMS の admincp コンポーネントにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-0862 | 2012-12-20 19:10 | 2009-02-18 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 20, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1661 | 6.5 |
MEDIUM
Adjacent |
alfa cisco siemens |
awus036h_firmware meraki_gr10_firmware meraki_gr60_firmware meraki_mr20_firmware meraki_mr30h_firmware meraki_mr33_firmware meraki_mr36_firmware meraki_mr42_firmware meraki_mr… |
An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of fragmented TKIP frames. An adver… |
CWE-354
Improper Validation of Integrity Check Value |
CVE-2020-26141 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1662 | 6.5 |
MEDIUM
Adjacent |
alfa cisco siemens |
awus036h_firmware meraki_gr10_firmware meraki_gr60_firmware meraki_mr20_firmware meraki_mr30h_firmware meraki_mr33_firmware meraki_mr36_firmware meraki_mr42_firmware meraki_mr… |
Se detectó un problema en el controlador ALFA de Windows 10 versión 6.1316.1209 para AWUS036H. La implementación de Wi-Fi no verifica la Comprobación de Integridad del Mensaje (autenticidad) de las t… |
CWE-354
Improper Validation of Integrity Check Value |
CVE-2020-26141 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1663 | 6.5 |
MEDIUM
Adjacent |
alfa siemens arista cisco intel |
awus036h_firmware scalance_w1748-1_firmware scalance_w1750d_firmware scalance_w1788-1_firmware scalance_w1788-2_firmware scalance_w1788-2ia_firmware scalance_w721-1_firmware scal… |
An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext frames in a protected Wi-Fi network. An adversary can abu… |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2020-26140 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1664 | 6.5 |
MEDIUM
Adjacent |
alfa siemens arista cisco intel |
awus036h_firmware scalance_w1748-1_firmware scalance_w1750d_firmware scalance_w1788-1_firmware scalance_w1788-2_firmware scalance_w1788-2ia_firmware scalance_w721-1_firmware scal… |
Se detectó un problema en el controlador ALFA de Windows 10 versión 6.1316.1209 para AWUS036H. Las implementaciones WEP, WPA, WPA2 y WPA3 aceptan tramas de texto plano en una red Wi-Fi protegida. Un … |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2020-26140 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1665 | 5.3 |
MEDIUM
Adjacent |
netbsd debian arista cisco intel |
netbsd debian_linux c-100_firmware c-110_firmware c-120_firmware c-130_firmware c-200_firmware c-230_firmware c-235_firmware c-250_firmware c-260_firmware c-65_firmwa… |
An issue was discovered in the kernel in NetBSD 7.1. An Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. This might be… |
CWE-287
Improper Authentication |
CVE-2020-26139 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1666 | 5.3 |
MEDIUM
Adjacent |
netbsd debian arista cisco intel |
netbsd debian_linux c-100_firmware c-110_firmware c-120_firmware c-130_firmware c-200_firmware c-230_firmware c-235_firmware c-250_firmware c-260_firmware c-65_firmwa… |
Se detectó un problema en el kernel en NetBSD versión 7.1. Un punto de acceso (AP) reenvía tramas EAPOL a otros clientes aunque el remitente aún no se haya autenticado con éxito en el AP. Esto podría… |
CWE-287
Improper Authentication |
CVE-2020-26139 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1667 | 3.5 |
LOW
Adjacent |
ieee linux microsoft debian siemens arista cisco intel |
ieee_802.11 mac80211 windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 debian_linux scal… |
The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authentica… |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2020-24588 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1668 | 3.5 |
LOW
Adjacent |
ieee linux microsoft debian siemens arista cisco intel |
ieee_802.11 mac80211 windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 debian_linux scal… |
El estándar 802.11 que sustenta a Wi-Fi Protected Access (WPA, WPA2, y WPA3) y Wired Equivalent Privacy (WEP) no requiere que el flag A-MSDU en el campo de encabezado QoS de texto plano esté autentic… |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2020-24588 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1669 | 6.5 |
MEDIUM
Network |
- | - | The The Germanized for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution via 'account_holder' parameter in all versions up to, and including, 3.20.5. This is due to the … |
CWE-94
Code Injection |
CVE-2026-2582 | 2026-04-14 16:16 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |
| 1670 | 7.2 |
HIGH
Network |
- | - | The Smart Post Show – Post Grid, Post Carousel & Slider, and List Category Posts plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.0.12 via deserializ… |
CWE-502
Deserialization of Untrusted Data |
CVE-2026-3017 | 2026-04-14 15:16 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |