Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224311	7.5	危険	TYPO3 Association	-	TYPO3 用の JobControl エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4658	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

224312	7.5	危険	TYPO3 Association	-	TYPO3 用の Econda エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4657	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

224313	7.5	危険	TYPO3 Association	-	TYPO3 用の Frontend Users View エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4656	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

224314	7.5	危険	TYPO3 Association	-	TYPO3 用の Simple survey エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4655	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

224315	9.3	危険	VideoLAN	-	VLC Media Player の Ty demux プラグインにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4654	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

224316	7.5	危険	XOOPS	-	XOOPS 用の Makale モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4653	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

224317	7.5	危険	sweetcms	-	sweetCMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4647	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

224318	2.1	注意	ウェブセンス	-	Websense Enterprise の Websense Reporter Module におけるデータベースへの権限を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-4646	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

224319	9	危険	phpwebgallery	-	PhpWebGallery の plugins/event_tracer/event_list.php における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-4645	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

224320	10	危険	Matthias Wandel	-	Matthias Wandel jhead の jhead.c における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4641	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1661	6.5	MEDIUM Adjacent	alfa cisco siemens	awus036h_firmware meraki_gr10_firmware meraki_gr60_firmware meraki_mr20_firmware meraki_mr30h_firmware meraki_mr33_firmware meraki_mr36_firmware meraki_mr42_firmware meraki_mr…	An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of fragmented TKIP frames. An adver…	CWE-354 Improper Validation of Integrity Check Value	CVE-2020-26141	2026-04-14 18:16	2021-05-12	Show	GitHub Exploit DB Packet Storm

1662	6.5	MEDIUM Adjacent	alfa cisco siemens	awus036h_firmware meraki_gr10_firmware meraki_gr60_firmware meraki_mr20_firmware meraki_mr30h_firmware meraki_mr33_firmware meraki_mr36_firmware meraki_mr42_firmware meraki_mr…	Se detectó un problema en el controlador ALFA de Windows 10 versión 6.1316.1209 para AWUS036H. La implementación de Wi-Fi no verifica la Comprobación de Integridad del Mensaje (autenticidad) de las t…	CWE-354 Improper Validation of Integrity Check Value	CVE-2020-26141	2026-04-14 18:16	2021-05-12	Show	GitHub Exploit DB Packet Storm

1663	6.5	MEDIUM Adjacent	alfa siemens arista cisco intel	awus036h_firmware scalance_w1748-1_firmware scalance_w1750d_firmware scalance_w1788-1_firmware scalance_w1788-2_firmware scalance_w1788-2ia_firmware scalance_w721-1_firmware scal…	An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext frames in a protected Wi-Fi network. An adversary can abu…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-26140	2026-04-14 18:16	2021-05-12	Show	GitHub Exploit DB Packet Storm

1664	6.5	MEDIUM Adjacent	alfa siemens arista cisco intel	awus036h_firmware scalance_w1748-1_firmware scalance_w1750d_firmware scalance_w1788-1_firmware scalance_w1788-2_firmware scalance_w1788-2ia_firmware scalance_w721-1_firmware scal…	Se detectó un problema en el controlador ALFA de Windows 10 versión 6.1316.1209 para AWUS036H. Las implementaciones WEP, WPA, WPA2 y WPA3 aceptan tramas de texto plano en una red Wi-Fi protegida. Un …	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-26140	2026-04-14 18:16	2021-05-12	Show	GitHub Exploit DB Packet Storm

1665	5.3	MEDIUM Adjacent	netbsd debian arista cisco intel	netbsd debian_linux c-100_firmware c-110_firmware c-120_firmware c-130_firmware c-200_firmware c-230_firmware c-235_firmware c-250_firmware c-260_firmware c-65_firmwa…	An issue was discovered in the kernel in NetBSD 7.1. An Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. This might be…	CWE-287 Improper Authentication	CVE-2020-26139	2026-04-14 18:16	2021-05-12	Show	GitHub Exploit DB Packet Storm

1666	5.3	MEDIUM Adjacent	netbsd debian arista cisco intel	netbsd debian_linux c-100_firmware c-110_firmware c-120_firmware c-130_firmware c-200_firmware c-230_firmware c-235_firmware c-250_firmware c-260_firmware c-65_firmwa…	Se detectó un problema en el kernel en NetBSD versión 7.1. Un punto de acceso (AP) reenvía tramas EAPOL a otros clientes aunque el remitente aún no se haya autenticado con éxito en el AP. Esto podría…	CWE-287 Improper Authentication	CVE-2020-26139	2026-04-14 18:16	2021-05-12	Show	GitHub Exploit DB Packet Storm

1667	3.5	LOW Adjacent	ieee linux microsoft debian siemens arista cisco intel	ieee_802.11 mac80211 windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 debian_linux scal…	The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authentica…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-24588	2026-04-14 18:16	2021-05-12	Show	GitHub Exploit DB Packet Storm

1668	3.5	LOW Adjacent	ieee linux microsoft debian siemens arista cisco intel	ieee_802.11 mac80211 windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 debian_linux scal…	El estándar 802.11 que sustenta a Wi-Fi Protected Access (WPA, WPA2, y WPA3) y Wired Equivalent Privacy (WEP) no requiere que el flag A-MSDU en el campo de encabezado QoS de texto plano esté autentic…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-24588	2026-04-14 18:16	2021-05-12	Show	GitHub Exploit DB Packet Storm

1669	6.5	MEDIUM Network	-	-	The The Germanized for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution via 'account_holder' parameter in all versions up to, and including, 3.20.5. This is due to the …	CWE-94 Code Injection	CVE-2026-2582	2026-04-14 16:16	2026-04-14	Show	GitHub Exploit DB Packet Storm

1670	7.2	HIGH Network	-	-	The Smart Post Show – Post Grid, Post Carousel & Slider, and List Category Posts plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.0.12 via deserializ…	CWE-502 Deserialization of Untrusted Data	CVE-2026-3017	2026-04-14 15:16	2026-04-14	Show	GitHub Exploit DB Packet Storm