Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 19, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 230971 | 7.5 | 危険 | shop-020 | - | PHP Paid 4 Mail Script の home.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-2773 | 2012-12-20 19:10 | 2009-08-14 | Show | GitHub Exploit DB Packet Storm |
| 230972 | 4.3 | 警告 | realtysoft | - | PG Roommate Finder Solution におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-2772 | 2012-12-20 19:10 | 2009-08-14 | Show | GitHub Exploit DB Packet Storm |
| 230973 | 7.5 | 危険 | powerupload | - | PowerUpload における管理者アクセス権を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-2770 | 2012-12-20 19:10 | 2009-08-14 | Show | GitHub Exploit DB Packet Storm |
| 230974 | 6.8 | 警告 | ultrize | - | Ultrize TimeSheet の include/timesheet.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-2769 | 2012-12-20 19:10 | 2009-08-14 | Show | GitHub Exploit DB Packet Storm |
| 230975 | 7.5 | 危険 | WordPress.org | - | WordPress の wp-login.php におけるデータベースの最初のユーザパスワードを強制的にリセットされる脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2009-2762 | 2012-12-20 19:10 | 2009-08-12 | Show | GitHub Exploit DB Packet Storm |
| 230976 | 5.5 | 警告 | Roundup | - | Roundup の cgi/actions.py におけるクラス内の任意の項目を変更される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-2737 | 2012-12-20 19:10 | 2009-08-11 | Show | GitHub Exploit DB Packet Storm |
| 230977 | 6.5 | 警告 | sun-jester | - | sun-jester OpenNews の admin.php における任意の PHP コードを挿入される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-2736 | 2012-12-20 19:10 | 2009-08-11 | Show | GitHub Exploit DB Packet Storm |
| 230978 | 6.8 | 警告 | sun-jester | - | sun-jester OpenNews の admin.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-2735 | 2012-12-20 19:10 | 2009-08-11 | Show | GitHub Exploit DB Packet Storm |
| 230979 | 5 | 警告 | サン・マイクロシステムズ | - | Sun Java SE の Swing 実装におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-2720 | 2012-12-20 19:10 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
| 230980 | 5 | 警告 | サン・マイクロシステムズ | - | Sun Java SE の Java Web Start 実装におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-119
バッファエラー |
CVE-2009-2719 | 2012-12-20 19:10 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 20, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 294741 | 7.8 |
HIGH
Local |
fuzezip_project | fuzezip | FuzeZip 1.0.0.131625 has a Local Buffer Overflow vulnerability |
CWE-787
Out-of-bounds Write |
CVE-2013-5656 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 294742 | 5.4 |
MEDIUM
Network |
transcend-info | wifisd_firmware | Transcend WiFiSD 1.8 has persistent XSS |
CWE-79
Cross-site Scripting |
CVE-2013-5638 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 294743 | 5.4 |
MEDIUM
Network |
pqigroup | air_card_firmware | PQI AirCard has persistent XSS |
CWE-79
Cross-site Scripting |
CVE-2013-5637 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 294744 | 5.9 |
MEDIUM
Network |
hmailserver | hmailserver | HMailServer 5.3.x and prior: Memory Corruption which could cause DOS |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2013-5571 | 2024-11-21 10:57 | 2020-01-7 | Show | GitHub Exploit DB Packet Storm |
| 294745 | 9.8 |
CRITICAL
Network |
cisco |
linksys_ea2700_firmware linksys_ea3500_firmware linksys_e4200_firmware linksys_ea4500_firmware |
Cisco Linksys Routers EA2700, EA3500, E4200, EA4500: A bug can cause an unsafe TCP port to open which leads to unauthenticated access |
CWE-287
Improper Authentication |
CVE-2013-5122 | 2024-11-21 10:57 | 2020-01-7 | Show | GitHub Exploit DB Packet Storm |
| 294746 | 5.9 |
MEDIUM
Network |
pypa virtualenv fedoraproject redhat debian |
pip virtualenv fedora openshift software_collections debian_linux |
The mirroring support (-M, --use-mirrors) in Python Pip before 1.5 uses insecure DNS querying and authenticity checks which allows attackers to perform man-in-the-middle attacks. |
CWE-287
Improper Authentication |
CVE-2013-5123 | 2024-11-21 10:57 | 2019-11-6 | Show | GitHub Exploit DB Packet Storm |
| 294747 | 5.9 |
MEDIUM
Network |
isc nlnetlabs nic redhat |
bind nsd knot_resolver enterprise_linux |
Cache Poisoning issue exists in DNS Response Rate Limiting. |
CWE-290
Authentication Bypass by Spoofing |
CVE-2013-5661 | 2024-11-21 10:57 | 2019-11-6 | Show | GitHub Exploit DB Packet Storm |
| 294748 | 9.1 |
CRITICAL
Network |
yingzhipython_project | yingzhipython | Vulnerability in YingZhi Python Programming Language v1.9 allows arbitrary anonymous uploads to the phone's storage |
CWE-284
Improper Access Control |
CVE-2013-5654 | 2024-11-21 10:57 | 2019-02-16 | Show | GitHub Exploit DB Packet Storm |
| 294749 | 8.8 |
HIGH
Network |
ibm |
endpoint_manager_for_remote_control tivoli_remote_control |
IBM Endpoint Manager for Remote Control 9.0.0 and 9.0.1 and Tivoli Remote Control 5.1.2 store multiple hashes of partial passwords, which makes it easier for remote attackers to decrypt passwords by … |
CWE-255
Credentials Management |
CVE-2013-5461 | 2024-11-21 10:57 | 2018-04-28 | Show | GitHub Exploit DB Packet Storm |
| 294750 | 5.3 |
MEDIUM
Network |
ibm |
worklight mobile_foundation |
IBM Worklight Consumer and Enterprise Editions 5.0.x before 5.0.6 Fix Pack 2 and 6.0.x before 6.0.0 Fix Pack 2, and Mobile Foundation Consumer and Enterprise Editions 5.0.x before 5.0.6 Fix Pack 2 an… |
CWE-310
Cryptographic Issues |
CVE-2013-5391 | 2024-11-21 10:57 | 2018-04-28 | Show | GitHub Exploit DB Packet Storm |