Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 27, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 230411 | 5 | 警告 | webwiz | - | Web Wiz NewsPad の RTE_file_browser.asp におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-0479 | 2012-12-20 18:34 | 2008-01-29 | Show | GitHub Exploit DB Packet Storm |
| 230412 | 6.8 | 警告 | setcms | - | SetCMS の index.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-0478 | 2012-12-20 18:34 | 2008-01-29 | Show | GitHub Exploit DB Packet Storm |
| 230413 | 6.4 | 警告 | webwiz | - | Web Wiz Rich Text Editor の RTE_popup_save_file.asp における .html ファイルなどをアップロードされる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-0473 | 2012-12-20 18:34 | 2008-01-29 | Show | GitHub Exploit DB Packet Storm |
| 230414 | 4.3 | 警告 | woltlab | - | wBB の modcp.php におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2008-0472 | 2012-12-20 18:34 | 2008-01-29 | Show | GitHub Exploit DB Packet Storm |
| 230415 | 4.3 | 警告 | phpBB | - | phpBB の privmsg.php におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2008-0471 | 2012-12-20 18:34 | 2008-01-29 | Show | GitHub Exploit DB Packet Storm |
| 230416 | 7.5 | 危険 | tiger php news system | - | TPNS の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-0469 | 2012-12-20 18:34 | 2008-01-29 | Show | GitHub Exploit DB Packet Storm |
| 230417 | 5 | 警告 | webwiz | - | Web Wiz Rich Text Edito などで使用されている Web Wiz RTE_file_browser.asp におけるディレクトリトラバーサルの脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-0466 | 2012-12-20 18:34 | 2008-01-28 | Show | GitHub Exploit DB Packet Storm |
| 230418 | 5 | 警告 | seagullproject.org | - | Seagull の optimizer.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-0465 | 2012-12-20 18:34 | 2008-01-25 | Show | GitHub Exploit DB Packet Storm |
| 230419 | 6.8 | 警告 | slaed | - | SLAED CMS の function/sources.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-0458 | 2012-12-20 18:34 | 2008-01-25 | Show | GitHub Exploit DB Packet Storm |
| 230420 | 10 | 危険 | シマンテック | - | Symantec Backup Exec System Recovery Manager で使用される Symantec LiveState Apache Tomcat サーバで稼動している FileUpload クラスにおける任意の JSP ファイルをアップロードされる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-0457 | 2012-12-20 18:34 | 2008-02-4 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 27, 2026, 4:52 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 292091 | 7.5 |
HIGH
Network |
python | python | The gzip_decode function in the xmlrpc client library in Python 3.4 and earlier allows remote attackers to cause a denial of service (memory consumption) via a crafted HTTP request. |
NVD-CWE-noinfo
|
CVE-2013-1753 | 2024-11-21 10:50 | 2020-03-12 | Show | GitHub Exploit DB Packet Storm |
| 292092 | 9.8 |
CRITICAL
Network |
berkeley | boinc | Multiple SQL injection vulnerabilities in BOINC allow remote attackers to execute arbitrary SQL commands via unspecified vectors. |
CWE-89
SQL Injection |
CVE-2013-2018 | 2024-11-21 10:50 | 2020-02-20 | Show | GitHub Exploit DB Packet Storm |
| 292093 | 7.5 |
HIGH
Network |
intel | 82574l_controller_firmware | A denial of service vulnerability exists in some motherboard implementations of Intel e1000e/82574L network controller devices through 2013-02-06 where the device can be brought into a non-processing… |
CWE-665
Improper Initialization |
CVE-2013-1634 | 2024-11-21 10:50 | 2020-02-14 | Show | GitHub Exploit DB Packet Storm |
| 292094 | 6.1 |
MEDIUM
Network |
zimbra | zimbra | Zimbra 2013 has XSS in aspell.php |
CWE-79
Cross-site Scripting |
CVE-2013-1938 | 2024-11-21 10:50 | 2020-02-13 | Show | GitHub Exploit DB Packet Storm |
| 292095 | 7.5 |
HIGH
Network |
skill | commerce_skrill | Commerce Skrill (Formerly Moneybookers) has an Access bypass vulnerability in all versions prior to 7.x-1.2 |
NVD-CWE-Other
|
CVE-2013-1924 | 2024-11-21 10:50 | 2020-02-13 | Show | GitHub Exploit DB Packet Storm |
| 292096 | 9.8 |
CRITICAL
Network |
boldgrid automattic |
w3_total_cache wp_super_cache |
WordPress W3 Total Cache Plugin 0.9.2.8 has a Remote PHP Code Execution Vulnerability |
CWE-74
Injection |
CVE-2013-2010 | 2024-11-21 10:50 | 2020-02-13 | Show | GitHub Exploit DB Packet Storm |
| 292097 | 9.8 |
CRITICAL
Network |
yabb | yabb | YaBB through 2.5.2: 'guestlanguage' Cookie Parameter Local File Include Vulnerability |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2013-2057 | 2024-11-21 10:50 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 292098 | 6.1 |
MEDIUM
Network |
thebuggenie | the_bug_genie | The Bug Genie before 3.2.6 has Multiple XSS and HTML Injection Vulnerabilities |
CWE-79
Cross-site Scripting |
CVE-2013-1760 | 2024-11-21 10:50 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 292099 | 8.8 |
HIGH
Network |
automattic | wp_super_cache | WordPress WP Super Cache Plugin 1.2 has Remote PHP Code Execution |
NVD-CWE-Other
|
CVE-2013-2009 | 2024-11-21 10:50 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 292100 | 6.1 |
MEDIUM
Network |
automattic | wp_super_cache | WordPress Super Cache Plugin 1.3 has XSS. |
CWE-79
Cross-site Scripting |
CVE-2013-2008 | 2024-11-21 10:50 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |