Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 9, 2026, 12:59 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224341 | 7.5 | 危険 | stash | - | Stash における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4590 | 2012-12-20 18:52 | 2008-10-16 | Show | GitHub Exploit DB Packet Storm |
| 224342 | 5 | 警告 | Matthias Wandel | - | jhead の DoCommand 関数におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-4575 | 2012-12-20 18:52 | 2008-10-15 | Show | GitHub Exploit DB Packet Storm |
| 224343 | 7.5 | 危険 | real-estate-scripts | - | Real Estate Classifieds の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4570 | 2012-12-20 18:52 | 2008-10-15 | Show | GitHub Exploit DB Packet Storm |
| 224344 | 7.5 | 危険 | xigla | - | XIGLA Software Absolute Poll Manager XE の xlacomments.asp における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4569 | 2012-12-20 18:52 | 2008-10-15 | Show | GitHub Exploit DB Packet Storm |
| 224345 | 6.8 | 警告 | VideoLAN | - | VLC Media Player における任意のメモリを上書きされる脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2008-4558 | 2012-12-20 18:52 | 2008-10-14 | Show | GitHub Exploit DB Packet Storm |
| 224346 | 7.2 | 危険 | Fabrice Bellard | - | Debian GNU/Linux 上で稼動する qemu の qemu-make-debian-root における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-4553 | 2012-12-20 18:52 | 2008-10-15 | Show | GitHub Exploit DB Packet Storm |
| 224347 | 5 | 警告 | strongSwan | - | strongSwan におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2008-4551 | 2012-12-20 18:52 | 2008-10-14 | Show | GitHub Exploit DB Packet Storm |
| 224348 | 9.3 | 危険 | rtssentry | - | RTS Sentry の PTZCamPanelCtrl ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-4548 | 2012-12-20 18:52 | 2008-10-14 | Show | GitHub Exploit DB Packet Storm |
| 224349 | 7.5 | 危険 | PHP-Fusion | - | PHP-Fusion 用の Recepies モジュールにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4527 | 2012-12-20 18:52 | 2008-10-9 | Show | GitHub Exploit DB Packet Storm |
| 224350 | 7.5 | 危険 | PHP-Fusion | - | PHP-Fusion 用の World of Warcraft tracker infusion モジュールにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4521 | 2012-12-20 18:52 | 2008-10-9 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 20, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1661 | 6.5 |
MEDIUM
Adjacent |
alfa cisco siemens |
awus036h_firmware meraki_gr10_firmware meraki_gr60_firmware meraki_mr20_firmware meraki_mr30h_firmware meraki_mr33_firmware meraki_mr36_firmware meraki_mr42_firmware meraki_mr… |
An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of fragmented TKIP frames. An adver… |
CWE-354
Improper Validation of Integrity Check Value |
CVE-2020-26141 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1662 | 6.5 |
MEDIUM
Adjacent |
alfa cisco siemens |
awus036h_firmware meraki_gr10_firmware meraki_gr60_firmware meraki_mr20_firmware meraki_mr30h_firmware meraki_mr33_firmware meraki_mr36_firmware meraki_mr42_firmware meraki_mr… |
Se detectó un problema en el controlador ALFA de Windows 10 versión 6.1316.1209 para AWUS036H. La implementación de Wi-Fi no verifica la Comprobación de Integridad del Mensaje (autenticidad) de las t… |
CWE-354
Improper Validation of Integrity Check Value |
CVE-2020-26141 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1663 | 6.5 |
MEDIUM
Adjacent |
alfa siemens arista cisco intel |
awus036h_firmware scalance_w1748-1_firmware scalance_w1750d_firmware scalance_w1788-1_firmware scalance_w1788-2_firmware scalance_w1788-2ia_firmware scalance_w721-1_firmware scal… |
An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext frames in a protected Wi-Fi network. An adversary can abu… |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2020-26140 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1664 | 6.5 |
MEDIUM
Adjacent |
alfa siemens arista cisco intel |
awus036h_firmware scalance_w1748-1_firmware scalance_w1750d_firmware scalance_w1788-1_firmware scalance_w1788-2_firmware scalance_w1788-2ia_firmware scalance_w721-1_firmware scal… |
Se detectó un problema en el controlador ALFA de Windows 10 versión 6.1316.1209 para AWUS036H. Las implementaciones WEP, WPA, WPA2 y WPA3 aceptan tramas de texto plano en una red Wi-Fi protegida. Un … |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2020-26140 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1665 | 5.3 |
MEDIUM
Adjacent |
netbsd debian arista cisco intel |
netbsd debian_linux c-100_firmware c-110_firmware c-120_firmware c-130_firmware c-200_firmware c-230_firmware c-235_firmware c-250_firmware c-260_firmware c-65_firmwa… |
An issue was discovered in the kernel in NetBSD 7.1. An Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. This might be… |
CWE-287
Improper Authentication |
CVE-2020-26139 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1666 | 5.3 |
MEDIUM
Adjacent |
netbsd debian arista cisco intel |
netbsd debian_linux c-100_firmware c-110_firmware c-120_firmware c-130_firmware c-200_firmware c-230_firmware c-235_firmware c-250_firmware c-260_firmware c-65_firmwa… |
Se detectó un problema en el kernel en NetBSD versión 7.1. Un punto de acceso (AP) reenvía tramas EAPOL a otros clientes aunque el remitente aún no se haya autenticado con éxito en el AP. Esto podría… |
CWE-287
Improper Authentication |
CVE-2020-26139 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1667 | 3.5 |
LOW
Adjacent |
ieee linux microsoft debian siemens arista cisco intel |
ieee_802.11 mac80211 windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 debian_linux scal… |
The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authentica… |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2020-24588 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1668 | 3.5 |
LOW
Adjacent |
ieee linux microsoft debian siemens arista cisco intel |
ieee_802.11 mac80211 windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 debian_linux scal… |
El estándar 802.11 que sustenta a Wi-Fi Protected Access (WPA, WPA2, y WPA3) y Wired Equivalent Privacy (WEP) no requiere que el flag A-MSDU en el campo de encabezado QoS de texto plano esté autentic… |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2020-24588 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1669 | 6.5 |
MEDIUM
Network |
- | - | The The Germanized for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution via 'account_holder' parameter in all versions up to, and including, 3.20.5. This is due to the … |
CWE-94
Code Injection |
CVE-2026-2582 | 2026-04-14 16:16 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |
| 1670 | 7.2 |
HIGH
Network |
- | - | The Smart Post Show – Post Grid, Post Carousel & Slider, and List Category Posts plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.0.12 via deserializ… |
CWE-502
Deserialization of Untrusted Data |
CVE-2026-3017 | 2026-04-14 15:16 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |