Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 9, 2026, 12:59 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 223801 | 4.3 | 警告 | phpcredo | - | PHCDownload の upload/install/index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-6597 | 2012-12-20 19:10 | 2009-04-3 | Show | GitHub Exploit DB Packet Storm |
| 223802 | 5.5 | 警告 | Simple Machines | - | SMF の index.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-6659 | 2012-12-20 19:10 | 2008-11-7 | Show | GitHub Exploit DB Packet Storm |
| 223803 | 4 | 警告 | Simple Machines | - | SMF の index.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-6658 | 2012-12-20 19:10 | 2008-11-7 | Show | GitHub Exploit DB Packet Storm |
| 223804 | 6.8 | 警告 | Simple Machines | - | SMF の index.php におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2008-6657 | 2012-12-20 19:10 | 2008-11-7 | Show | GitHub Exploit DB Packet Storm |
| 223805 | 7.5 | 危険 | phpcredo | - | PHCDownload の admin/index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-6596 | 2012-12-20 19:10 | 2009-04-3 | Show | GitHub Exploit DB Packet Storm |
| 223806 | 7.5 | 危険 | TYPO3 Association | - | TYPO3 用の pmk_rssnewsexport エクステンションにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-6595 | 2012-12-20 19:10 | 2009-04-3 | Show | GitHub Exploit DB Packet Storm |
| 223807 | 7.5 | 危険 | TYPO3 Association | - | TYPO3 用の cm_rdfexport エクステンションにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-6594 | 2012-12-20 19:10 | 2009-04-3 | Show | GitHub Exploit DB Packet Storm |
| 223808 | 6.8 | 警告 | Vuze, Inc. | - | Vuze の index.tmpl におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2008-6587 | 2012-12-20 19:10 | 2009-04-3 | Show | GitHub Exploit DB Packet Storm |
| 223809 | 6.8 | 警告 | BitTorrent, Inc. | - | uTorrent WebUI の gui/index.php におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2008-6586 | 2012-12-20 19:10 | 2009-04-3 | Show | GitHub Exploit DB Packet Storm |
| 223810 | 6.8 | 警告 | TorrentFlux | - | TorrentFlux の html/admin.php におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2008-6585 | 2012-12-20 19:10 | 2009-04-3 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 18, 2026, 4:11 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1471 | 7.5 |
HIGH
Network |
openssl fedoraproject netapp nodejs |
openssl fedora clustered_data_ontap node.js |
A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either… |
CWE-787
Out-of-bounds Write |
CVE-2022-3602 | 2026-04-14 19:16 | 2022-11-2 | Show | GitHub Exploit DB Packet Storm |
| 1472 | 7.5 |
HIGH
Network |
openssl fedoraproject netapp nodejs |
openssl fedora clustered_data_ontap node.js |
Puede activarse una saturación del búfer en la verificación del certificado X.509, específicamente en la verificación de restricciones en el nombre. Tenga en cuenta que esto ocurre después de la veri… |
CWE-787
Out-of-bounds Write |
CVE-2022-3602 | 2026-04-14 19:16 | 2022-11-2 | Show | GitHub Exploit DB Packet Storm |
| 1473 | 7.5 |
HIGH
Network |
windriver | vxworks | An issue was discovered in Wind River VxWorks 6.9 and 7, that allows a specifically crafted packet sent by a Radius server, may cause Denial of Service during the IP Radius access procedure. |
NVD-CWE-noinfo
|
CVE-2022-38767 | 2026-04-14 19:16 | 2022-11-26 | Show | GitHub Exploit DB Packet Storm |
| 1474 | 7.5 |
HIGH
Network |
windriver | vxworks | Se descubrió un problema en Wind River VxWorks 6.9 y 7, que permite que un paquete específicamente manipulado enviado por un servidor Radius pueda causar denegación de servicio durante el procedimien… |
NVD-CWE-noinfo
|
CVE-2022-38767 | 2026-04-14 19:16 | 2022-11-26 | Show | GitHub Exploit DB Packet Storm |
| 1475 | 7.5 |
HIGH
Network |
openssl debian netapp fedoraproject tenable mariadb nodejs |
openssl debian_linux cloud_volumes_ontap_mediator clustered_data_ontap clustered_data_ontap_antivirus_connector santricity_smi-s_provider storagegrid a250_firmware 500f_firmwa… |
The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates tha… |
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop') |
CVE-2022-0778 | 2026-04-14 19:16 | 2022-03-16 | Show | GitHub Exploit DB Packet Storm |
| 1476 | 7.5 |
HIGH
Network |
openssl debian netapp fedoraproject tenable mariadb nodejs |
openssl debian_linux cloud_volumes_ontap_mediator clustered_data_ontap clustered_data_ontap_antivirus_connector santricity_smi-s_provider storagegrid a250_firmware 500f_firmwa… |
La función BN_mod_sqrt(), que calcula una raíz cuadrada modular, contiene un error que puede causar un bucle eterno para módulos no primos. Internamente, esta función es usado cuando son analizados c… |
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop') |
CVE-2022-0778 | 2026-04-14 19:16 | 2022-03-16 | Show | GitHub Exploit DB Packet Storm |
| 1477 | 7.4 |
HIGH
Network |
openssl debian netapp mcafee tenable oracle siemens |
openssl debian_linux clustered_data_ontap clustered_data_ontap_antivirus_connector e-series_santricity_os_controller hci_management_node manageability_software_development_kit sa… |
ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C… |
CWE-125
Out-of-bounds Read |
CVE-2021-3712 | 2026-04-14 19:16 | 2021-08-25 | Show | GitHub Exploit DB Packet Storm |
| 1478 | 7.4 |
HIGH
Network |
openssl debian netapp mcafee tenable oracle siemens |
openssl debian_linux clustered_data_ontap clustered_data_ontap_antivirus_connector e-series_santricity_os_controller hci_management_node manageability_software_development_kit sa… |
Las cadenas ASN.1 se representan internamente en OpenSSL como una estructura ASN1_STRING que contiene un búfer que contiene los datos de la cadena y un campo que contiene la longitud del búfer. Esto … |
CWE-125
Out-of-bounds Read |
CVE-2021-3712 | 2026-04-14 19:16 | 2021-08-25 | Show | GitHub Exploit DB Packet Storm |
| 1479 | 5.4 |
MEDIUM
Adjacent |
linux debian arista siemens |
linux_kernel debian_linux c-75_firmware o-90_firmware c-65_firmware w-68_firmware scalance_w700_ieee_802.11n_firmware scalance_w1700_ieee_802.11ac_firmware |
An issue was discovered in the Linux kernel 5.8.9. The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments even though some of them were sent in plaintext. This vulnerability can be abused … |
NVD-CWE-Other
|
CVE-2020-26147 | 2026-04-14 19:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1480 | 5.4 |
MEDIUM
Adjacent |
linux debian arista siemens |
linux_kernel debian_linux c-75_firmware o-90_firmware c-65_firmware w-68_firmware scalance_w700_ieee_802.11n_firmware scalance_w1700_ieee_802.11ac_firmware |
Se detectó un problema en el kernel de Linux versión 5.8.9. Las implementaciones de WEP, WPA, WPA2 y WPA3 reensamblan fragmentos aunque algunos de ellos se enviaron en texto plano. Esta vulnerabilida… |
NVD-CWE-Other
|
CVE-2020-26147 | 2026-04-14 19:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |