Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 9, 2026, 12:59 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224341 | 7.5 | 危険 | stash | - | Stash における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4590 | 2012-12-20 18:52 | 2008-10-16 | Show | GitHub Exploit DB Packet Storm |
| 224342 | 5 | 警告 | Matthias Wandel | - | jhead の DoCommand 関数におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-4575 | 2012-12-20 18:52 | 2008-10-15 | Show | GitHub Exploit DB Packet Storm |
| 224343 | 7.5 | 危険 | real-estate-scripts | - | Real Estate Classifieds の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4570 | 2012-12-20 18:52 | 2008-10-15 | Show | GitHub Exploit DB Packet Storm |
| 224344 | 7.5 | 危険 | xigla | - | XIGLA Software Absolute Poll Manager XE の xlacomments.asp における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4569 | 2012-12-20 18:52 | 2008-10-15 | Show | GitHub Exploit DB Packet Storm |
| 224345 | 6.8 | 警告 | VideoLAN | - | VLC Media Player における任意のメモリを上書きされる脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2008-4558 | 2012-12-20 18:52 | 2008-10-14 | Show | GitHub Exploit DB Packet Storm |
| 224346 | 7.2 | 危険 | Fabrice Bellard | - | Debian GNU/Linux 上で稼動する qemu の qemu-make-debian-root における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-4553 | 2012-12-20 18:52 | 2008-10-15 | Show | GitHub Exploit DB Packet Storm |
| 224347 | 5 | 警告 | strongSwan | - | strongSwan におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2008-4551 | 2012-12-20 18:52 | 2008-10-14 | Show | GitHub Exploit DB Packet Storm |
| 224348 | 9.3 | 危険 | rtssentry | - | RTS Sentry の PTZCamPanelCtrl ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-4548 | 2012-12-20 18:52 | 2008-10-14 | Show | GitHub Exploit DB Packet Storm |
| 224349 | 7.5 | 危険 | PHP-Fusion | - | PHP-Fusion 用の Recepies モジュールにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4527 | 2012-12-20 18:52 | 2008-10-9 | Show | GitHub Exploit DB Packet Storm |
| 224350 | 7.5 | 危険 | PHP-Fusion | - | PHP-Fusion 用の World of Warcraft tracker infusion モジュールにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4521 | 2012-12-20 18:52 | 2008-10-9 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 20, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1651 | 8.8 |
HIGH
Network |
siemens |
6gk6108-4am00-2ba2_firmware 6gk6108-4am00-2da2_firmware 6gk5804-0ap00-2aa2_firmware 6gk5812-1aa00-2aa2_firmware 6gk5812-1ba00-2aa2_firmware 6gk5816-1aa00-2aa2_firmware 6gk5816-1ba00… |
Affected devices do not properly authorize the change password function of the web interface. This could allow low privileged users to escalate their privileges. |
CWE-862
Missing Authorization |
CVE-2022-31765 | 2026-04-14 18:16 | 2022-10-11 | Show | GitHub Exploit DB Packet Storm |
| 1652 | 8.8 |
HIGH
Network |
siemens |
6gk6108-4am00-2ba2_firmware 6gk6108-4am00-2da2_firmware 6gk5804-0ap00-2aa2_firmware 6gk5812-1aa00-2aa2_firmware 6gk5812-1ba00-2aa2_firmware 6gk5816-1aa00-2aa2_firmware 6gk5816-1ba00… |
Los dispositivos afectados no autorizan apropiadamente la función change password de la interfaz web. Esto podría permitir a usuarios poco privilegiado escalar sus privilegios |
CWE-862
Missing Authorization |
CVE-2022-31765 | 2026-04-14 18:16 | 2022-10-11 | Show | GitHub Exploit DB Packet Storm |
| 1653 | 5.3 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfi… |
CWE-20
Improper Input Validation |
CVE-2020-26146 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1654 | 5.3 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
Se detectó un problema en los dispositivos Samsung Galaxy S3 i9305 versión 4.4.4. Las implementaciones de WPA, WPA2 y WPA3 reensamblan fragmentos con números de paquete no consecutivos. Un adversario… |
CWE-20
Improper Input Validation |
CVE-2020-26146 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1655 | 6.5 |
MEDIUM
Adjacent |
samsung siemens |
galaxy_i9305_firmware 6gk5763-1al00-7da0_firmware 6gk5766-1ge00-7da0_firmware 6gk5766-1ge00-7db0_firmware 6gk5766-1je00-7da0_firmware 6gk5766-1ge00-7ta0_firmware 6gk5766-1ge00-7tb0_… |
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and proces… |
CWE-20
Improper Input Validation |
CVE-2020-26145 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1656 | 6.5 |
MEDIUM
Adjacent |
samsung siemens |
galaxy_i9305_firmware 6gk5763-1al00-7da0_firmware 6gk5766-1ge00-7da0_firmware 6gk5766-1ge00-7db0_firmware 6gk5766-1je00-7da0_firmware 6gk5766-1ge00-7ta0_firmware 6gk5766-1ge00-7tb0_… |
Se detectó un problema en los dispositivos Samsung Galaxy S3 i9305 versión 4.4.4. Las implementaciones de WEP, WPA, WPA2 y WPA3 aceptan segundos fragmentos de transmisión (o posteriores) incluso cuan… |
CWE-20
Improper Input Validation |
CVE-2020-26145 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1657 | 6.5 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC104… |
CWE-20
Improper Input Validation |
CVE-2020-26144 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1658 | 6.5 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
Se detectó un problema en los dispositivos Samsung Galaxy S3 i9305 versión 4.4.4. Las implementaciones WEP, WPA, WPA2 y WPA3 aceptan tramas A-MSDU de texto plano siempre que los primeros 8 bytes corr… |
CWE-20
Improper Input Validation |
CVE-2020-26144 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1659 | 6.5 |
MEDIUM
Adjacent |
alfa arista siemens |
awus036h_firmware c-75_firmware o-90_firmware c-65_firmware w-68_firmware scalance_w700_ieee_802.11n_firmware |
An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. The WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frames in a protected Wi-Fi network. An adve… |
CWE-20
Improper Input Validation |
CVE-2020-26143 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1660 | 6.5 |
MEDIUM
Adjacent |
alfa arista siemens |
awus036h_firmware c-75_firmware o-90_firmware c-65_firmware w-68_firmware scalance_w700_ieee_802.11n_firmware |
Se detectó un problema en el controlador ALFA Windows 10 versión 1030.36.604 para AWUS036ACH. Las implementaciones WEP, WPA, WPA2 y WPA3 aceptan tramas de texto plano fragmentados en una red Wi-Fi pr… |
CWE-20
Improper Input Validation |
CVE-2020-26143 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |