Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 9, 2026, 12:59 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 223561 | 7.5 | 危険 | riotpix | - | RiotPix の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-0109 | 2012-12-20 19:10 | 2009-01-9 | Show | GitHub Exploit DB Packet Storm |
| 223562 | 7.5 | 危険 | phpauctions | - | PHPAuctions における管理者アクセス権を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-0108 | 2012-12-20 19:10 | 2009-01-9 | Show | GitHub Exploit DB Packet Storm |
| 223563 | 4.3 | 警告 | phpauctions | - | PHPAuctions の profile.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-0107 | 2012-12-20 19:10 | 2009-01-9 | Show | GitHub Exploit DB Packet Storm |
| 223564 | 7.5 | 危険 | phpauctions | - | PHPAuctions の profile.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-0106 | 2012-12-20 19:10 | 2009-01-9 | Show | GitHub Exploit DB Packet Storm |
| 223565 | 4.3 | 警告 | se-ed | - | EZpack の index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-0105 | 2012-12-20 19:10 | 2009-01-9 | Show | GitHub Exploit DB Packet Storm |
| 223566 | 7.5 | 危険 | se-ed | - | EZpack の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-0104 | 2012-12-20 19:10 | 2009-01-9 | Show | GitHub Exploit DB Packet Storm |
| 223567 | 7.5 | 危険 | playSMS | - | playSMS における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-0103 | 2012-12-20 19:10 | 2009-01-9 | Show | GitHub Exploit DB Packet Storm |
| 223568 | 10 | 危険 | The phpMyAdmin Project | - | phpMyAdmin の libraries/File.class.php における脆弱性 |
CWE-310
暗号の問題 |
CVE-2008-7252 | 2012-12-20 19:10 | 2010-01-15 | Show | GitHub Exploit DB Packet Storm |
| 223569 | 10 | 危険 | The phpMyAdmin Project | - | phpMyAdmin の libraries/File.class.php における脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-7251 | 2012-12-20 19:10 | 2010-01-19 | Show | GitHub Exploit DB Packet Storm |
| 223570 | 9 | 危険 | シマンテック | - | Symantec Brightmail Gateway Appliance の Control Center における権限を取得される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-0064 | 2012-12-20 19:10 | 2009-04-23 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 19, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1611 | 7.5 |
HIGH
Network |
windriver | vxworks | An issue was discovered in Wind River VxWorks 6.9 and 7, that allows a specifically crafted packet sent by a Radius server, may cause Denial of Service during the IP Radius access procedure. |
NVD-CWE-noinfo
|
CVE-2022-38767 | 2026-04-14 19:16 | 2022-11-26 | Show | GitHub Exploit DB Packet Storm |
| 1612 | 7.5 |
HIGH
Network |
windriver | vxworks | Se descubrió un problema en Wind River VxWorks 6.9 y 7, que permite que un paquete específicamente manipulado enviado por un servidor Radius pueda causar denegación de servicio durante el procedimien… |
NVD-CWE-noinfo
|
CVE-2022-38767 | 2026-04-14 19:16 | 2022-11-26 | Show | GitHub Exploit DB Packet Storm |
| 1613 | 7.5 |
HIGH
Network |
openssl debian netapp fedoraproject tenable mariadb nodejs |
openssl debian_linux cloud_volumes_ontap_mediator clustered_data_ontap clustered_data_ontap_antivirus_connector santricity_smi-s_provider storagegrid a250_firmware 500f_firmwa… |
The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates tha… |
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop') |
CVE-2022-0778 | 2026-04-14 19:16 | 2022-03-16 | Show | GitHub Exploit DB Packet Storm |
| 1614 | 7.5 |
HIGH
Network |
openssl debian netapp fedoraproject tenable mariadb nodejs |
openssl debian_linux cloud_volumes_ontap_mediator clustered_data_ontap clustered_data_ontap_antivirus_connector santricity_smi-s_provider storagegrid a250_firmware 500f_firmwa… |
La función BN_mod_sqrt(), que calcula una raíz cuadrada modular, contiene un error que puede causar un bucle eterno para módulos no primos. Internamente, esta función es usado cuando son analizados c… |
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop') |
CVE-2022-0778 | 2026-04-14 19:16 | 2022-03-16 | Show | GitHub Exploit DB Packet Storm |
| 1615 | 7.4 |
HIGH
Network |
openssl debian netapp mcafee tenable oracle siemens |
openssl debian_linux clustered_data_ontap clustered_data_ontap_antivirus_connector e-series_santricity_os_controller hci_management_node manageability_software_development_kit sa… |
ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C… |
CWE-125
Out-of-bounds Read |
CVE-2021-3712 | 2026-04-14 19:16 | 2021-08-25 | Show | GitHub Exploit DB Packet Storm |
| 1616 | 7.4 |
HIGH
Network |
openssl debian netapp mcafee tenable oracle siemens |
openssl debian_linux clustered_data_ontap clustered_data_ontap_antivirus_connector e-series_santricity_os_controller hci_management_node manageability_software_development_kit sa… |
Las cadenas ASN.1 se representan internamente en OpenSSL como una estructura ASN1_STRING que contiene un búfer que contiene los datos de la cadena y un campo que contiene la longitud del búfer. Esto … |
CWE-125
Out-of-bounds Read |
CVE-2021-3712 | 2026-04-14 19:16 | 2021-08-25 | Show | GitHub Exploit DB Packet Storm |
| 1617 | 5.4 |
MEDIUM
Adjacent |
linux debian arista siemens |
linux_kernel debian_linux c-75_firmware o-90_firmware c-65_firmware w-68_firmware scalance_w700_ieee_802.11n_firmware scalance_w1700_ieee_802.11ac_firmware |
An issue was discovered in the Linux kernel 5.8.9. The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments even though some of them were sent in plaintext. This vulnerability can be abused … |
NVD-CWE-Other
|
CVE-2020-26147 | 2026-04-14 19:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1618 | 5.4 |
MEDIUM
Adjacent |
linux debian arista siemens |
linux_kernel debian_linux c-75_firmware o-90_firmware c-65_firmware w-68_firmware scalance_w700_ieee_802.11n_firmware scalance_w1700_ieee_802.11ac_firmware |
Se detectó un problema en el kernel de Linux versión 5.8.9. Las implementaciones de WEP, WPA, WPA2 y WPA3 reensamblan fragmentos aunque algunos de ellos se enviaron en texto plano. Esta vulnerabilida… |
NVD-CWE-Other
|
CVE-2020-26147 | 2026-04-14 19:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1619 | 4.3 |
MEDIUM
Network |
- | - | The Eventin – Events Calendar, Event Booking, Ticket & Registration (AI Powered) plugin for WordPress is vulnerable to unauthorized access of data due to a improper capability check on the get_item_p… |
CWE-862
Missing Authorization |
CVE-2026-4109 | 2026-04-14 18:16 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |
| 1620 | 7.8 |
HIGH
Local |
siemens |
sinec_nms user_management_component |
A vulnerability has been identified in SINEC NMS (All versions < V4.0 SP3), User Management Component (UMC) (All versions < V2.15.2.1). The affected application permits improper modification of a con… |
CWE-427
Uncontrolled Search Path Element |
CVE-2026-25656 | 2026-04-14 18:16 | 2026-02-10 | Show | GitHub Exploit DB Packet Storm |