Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 9, 2026, 12:59 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224351 | 5 | 警告 | designplace | - | ASP/MS Access Shoutbox における重要な情報を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-4512 | 2012-12-20 18:52 | 2008-10-9 | Show | GitHub Exploit DB Packet Storm |
| 224352 | 5 | 警告 | toddwoolums | - | Todd Woolums ASP News Management における重要な情報を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-4511 | 2012-12-20 18:52 | 2008-10-9 | Show | GitHub Exploit DB Packet Storm |
| 224353 | 7.8 | 危険 | tonec inc. | - | Tonec Internet Download Manager のファイル解析関数におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-4508 | 2012-12-20 18:52 | 2008-10-9 | Show | GitHub Exploit DB Packet Storm |
| 224354 | 9 | 危険 | Rhino Software | - | Serv-U の FTP サーバにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-4501 | 2012-12-20 18:52 | 2008-10-8 | Show | GitHub Exploit DB Packet Storm |
| 224355 | 4.3 | 警告 | Plone Foundation | - | Plone の LiveSearch モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-4571 | 2012-12-20 18:52 | 2007-10-7 | Show | GitHub Exploit DB Packet Storm |
| 224356 | 4 | 警告 | Rhino Software | - | Serv-U におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-4500 | 2012-12-20 18:52 | 2008-10-8 | Show | GitHub Exploit DB Packet Storm |
| 224357 | 7.5 | 危険 | phpautos | - | PHP Autos の searchresults.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4498 | 2012-12-20 18:52 | 2008-10-8 | Show | GitHub Exploit DB Packet Storm |
| 224358 | 7.5 | 危険 | select development solutions | - | PHP Realtor の view_cat.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4496 | 2012-12-20 18:52 | 2008-10-8 | Show | GitHub Exploit DB Packet Storm |
| 224359 | 7.5 | 危険 | select development solutions | - | PHP Auto Dealer の view_cat.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4495 | 2012-12-20 18:52 | 2008-10-8 | Show | GitHub Exploit DB Packet Storm |
| 224360 | 7.5 | 危険 | torrenttrader | - | TorrentTrader Classic の completed-advance.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4494 | 2012-12-20 18:52 | 2008-10-8 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 20, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1651 | 8.8 |
HIGH
Network |
siemens |
6gk6108-4am00-2ba2_firmware 6gk6108-4am00-2da2_firmware 6gk5804-0ap00-2aa2_firmware 6gk5812-1aa00-2aa2_firmware 6gk5812-1ba00-2aa2_firmware 6gk5816-1aa00-2aa2_firmware 6gk5816-1ba00… |
Affected devices do not properly authorize the change password function of the web interface. This could allow low privileged users to escalate their privileges. |
CWE-862
Missing Authorization |
CVE-2022-31765 | 2026-04-14 18:16 | 2022-10-11 | Show | GitHub Exploit DB Packet Storm |
| 1652 | 8.8 |
HIGH
Network |
siemens |
6gk6108-4am00-2ba2_firmware 6gk6108-4am00-2da2_firmware 6gk5804-0ap00-2aa2_firmware 6gk5812-1aa00-2aa2_firmware 6gk5812-1ba00-2aa2_firmware 6gk5816-1aa00-2aa2_firmware 6gk5816-1ba00… |
Los dispositivos afectados no autorizan apropiadamente la función change password de la interfaz web. Esto podría permitir a usuarios poco privilegiado escalar sus privilegios |
CWE-862
Missing Authorization |
CVE-2022-31765 | 2026-04-14 18:16 | 2022-10-11 | Show | GitHub Exploit DB Packet Storm |
| 1653 | 5.3 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfi… |
CWE-20
Improper Input Validation |
CVE-2020-26146 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1654 | 5.3 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
Se detectó un problema en los dispositivos Samsung Galaxy S3 i9305 versión 4.4.4. Las implementaciones de WPA, WPA2 y WPA3 reensamblan fragmentos con números de paquete no consecutivos. Un adversario… |
CWE-20
Improper Input Validation |
CVE-2020-26146 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1655 | 6.5 |
MEDIUM
Adjacent |
samsung siemens |
galaxy_i9305_firmware 6gk5763-1al00-7da0_firmware 6gk5766-1ge00-7da0_firmware 6gk5766-1ge00-7db0_firmware 6gk5766-1je00-7da0_firmware 6gk5766-1ge00-7ta0_firmware 6gk5766-1ge00-7tb0_… |
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and proces… |
CWE-20
Improper Input Validation |
CVE-2020-26145 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1656 | 6.5 |
MEDIUM
Adjacent |
samsung siemens |
galaxy_i9305_firmware 6gk5763-1al00-7da0_firmware 6gk5766-1ge00-7da0_firmware 6gk5766-1ge00-7db0_firmware 6gk5766-1je00-7da0_firmware 6gk5766-1ge00-7ta0_firmware 6gk5766-1ge00-7tb0_… |
Se detectó un problema en los dispositivos Samsung Galaxy S3 i9305 versión 4.4.4. Las implementaciones de WEP, WPA, WPA2 y WPA3 aceptan segundos fragmentos de transmisión (o posteriores) incluso cuan… |
CWE-20
Improper Input Validation |
CVE-2020-26145 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1657 | 6.5 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC104… |
CWE-20
Improper Input Validation |
CVE-2020-26144 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1658 | 6.5 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
Se detectó un problema en los dispositivos Samsung Galaxy S3 i9305 versión 4.4.4. Las implementaciones WEP, WPA, WPA2 y WPA3 aceptan tramas A-MSDU de texto plano siempre que los primeros 8 bytes corr… |
CWE-20
Improper Input Validation |
CVE-2020-26144 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1659 | 6.5 |
MEDIUM
Adjacent |
alfa arista siemens |
awus036h_firmware c-75_firmware o-90_firmware c-65_firmware w-68_firmware scalance_w700_ieee_802.11n_firmware |
An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. The WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frames in a protected Wi-Fi network. An adve… |
CWE-20
Improper Input Validation |
CVE-2020-26143 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1660 | 6.5 |
MEDIUM
Adjacent |
alfa arista siemens |
awus036h_firmware c-75_firmware o-90_firmware c-65_firmware w-68_firmware scalance_w700_ieee_802.11n_firmware |
Se detectó un problema en el controlador ALFA Windows 10 versión 1030.36.604 para AWUS036ACH. Las implementaciones WEP, WPA, WPA2 y WPA3 aceptan tramas de texto plano fragmentados en una red Wi-Fi pr… |
CWE-20
Improper Input Validation |
CVE-2020-26143 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |