|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
Update Date":July 1, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 241321 | 6.9 | 警告 | karakas-online | - | chm2pdf におけるファイルを削除される脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-5299 | 2012-09-25 17:17 | 2008-10-11 | Show | GitHub Exploit DB Packet Storm |
| 241322 | 2.1 | 注意 | karakas-online | - | chm2pdf におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-DesignError
|
CVE-2008-5298 | 2012-09-25 17:17 | 2008-10-11 | Show | GitHub Exploit DB Packet Storm |
| 241323 | 7.5 | 危険 | jamit software | - | Jamit Job Board の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-5295 | 2012-09-25 17:17 | 2008-12-1 | Show | GitHub Exploit DB Packet Storm |
| 241324 | 10 | 危険 | iea software | - | IEA Software の RadiusNT などの製品で使用される Web サーバにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-189
数値処理の問題 |
CVE-2008-5284 | 2012-09-25 17:17 | 2008-11-28 | Show | GitHub Exploit DB Packet Storm |
| 241325 | 7.5 | 危険 | net2ftp | - | net2ftp のアーカイブ解凍などにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-5275 | 2012-09-25 17:17 | 2008-11-28 | Show | GitHub Exploit DB Packet Storm |
| 241326 | 4.3 | 警告 | サン・マイクロシステムズ オラクル |
- | Sun Java System Application Server におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-5266 | 2012-09-25 17:17 | 2008-11-28 | Show | GitHub Exploit DB Packet Storm |
| 241327 | 5.8 | 警告 | MediaWiki | - | MediaWiki の Special:Import 機能におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2008-5252 | 2012-09-25 17:17 | 2008-12-15 | Show | GitHub Exploit DB Packet Storm |
| 241328 | 3.5 | 注意 | MediaWiki | - | MediaWiki におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-5250 | 2012-09-25 17:17 | 2008-12-15 | Show | GitHub Exploit DB Packet Storm |
| 241329 | 4.3 | 警告 | MediaWiki | - | MediaWiki におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-5249 | 2012-09-25 17:17 | 2008-12-15 | Show | GitHub Exploit DB Packet Storm |
| 241330 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows NT サーバなどの Windows Media Services におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-5232 | 2012-09-25 17:17 | 2008-11-25 | Show | GitHub Exploit DB Packet Storm |
Update Date:July 1, 2026, 4:27 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 265271 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-remotesubnet variable in the pptp_client.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15630 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |
| 265272 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-tunnelname variable in the pptp_client.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15629 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |
| 265273 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the lcpechointerval variable in the pptp_server.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15628 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |
| 265274 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-pns variable in the pptp_client.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15627 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |
| 265275 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-bindif variable in the pptp_server.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15626 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |
| 265276 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-olmode variable in the pptp_client.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15625 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |
| 265277 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-authtype variable in the pptp_server.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15624 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |
| 265278 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-enable variable in the pptp_server.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15623 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |
| 265279 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-mppeencryption variable in the pptp_client.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15622 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |
| 265280 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the olmode variable in the interface_wan.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15621 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |