Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 1, 2026, 4:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 250601 | 4 | 警告 | IBM | - | IBM WCM のオーサリングツールにおけるドラフト生成のアクセス制限を回避する脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-4806 | 2012-03-27 18:42 | 2010-11-16 | Show | GitHub Exploit DB Packet Storm |
| 250602 | 7.5 | 危険 | marcusg | - | PHP-Fusion の MG User-Fotoalbum モジュールにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4791 | 2012-03-27 18:42 | 2011-04-26 | Show | GitHub Exploit DB Packet Storm |
| 250603 | 5.8 | 警告 | in-mediakg | - | FilterFTP におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-4790 | 2012-03-27 18:42 | 2011-04-26 | Show | GitHub Exploit DB Packet Storm |
| 250604 | 6.8 | 警告 | PHP Web Scripts | - | PHP Web Scripts Easy Banner Free の member.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4784 | 2012-03-27 18:42 | 2011-04-7 | Show | GitHub Exploit DB Packet Storm |
| 250605 | 2.6 | 注意 | PHP Web Scripts | - | PHP Web Scripts Easy Banner Free の index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-4783 | 2012-03-27 18:42 | 2011-04-7 | Show | GitHub Exploit DB Packet Storm |
| 250606 | 7.5 | 危険 | softwebsnepal | - | Softwebs Nepal Ananda Real Estate の list.asp における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4782 | 2012-03-27 18:42 | 2011-04-7 | Show | GitHub Exploit DB Packet Storm |
| 250607 | 5 | 警告 | enanocms | - | Enano CMS における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-4781 | 2012-03-27 18:42 | 2011-04-7 | Show | GitHub Exploit DB Packet Storm |
| 250608 | 7.5 | 危険 | enanocms | - | Enano CMS の check_banlist 関数における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4780 | 2012-03-27 18:42 | 2011-04-7 | Show | GitHub Exploit DB Packet Storm |
| 250609 | 4.3 | 警告 | BraveNewCode WordPress.org |
- | WordPress の WPtouch プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-4779 | 2012-03-27 18:42 | 2011-04-7 | Show | GitHub Exploit DB Packet Storm |
| 250610 | 4.3 | 警告 | Horde | - | Horde Groupware Webmail Edition のfetchmailprefs.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-4778 | 2012-03-27 18:42 | 2011-04-4 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 1, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 290801 | 7.5 |
HIGH
Network |
aultware | pwstore | AultWare pwStore 2010.8.30.0 has DoS via an empty HTTP request |
NVD-CWE-Other
|
CVE-2013-5657 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 290802 | 7.8 |
HIGH
Local |
fuzezip_project | fuzezip | FuzeZip 1.0.0.131625 has a Local Buffer Overflow vulnerability |
CWE-787
Out-of-bounds Write |
CVE-2013-5656 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 290803 | 5.4 |
MEDIUM
Network |
transcend-info | wifisd_firmware | Transcend WiFiSD 1.8 has persistent XSS |
CWE-79
Cross-site Scripting |
CVE-2013-5638 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 290804 | 5.4 |
MEDIUM
Network |
pqigroup | air_card_firmware | PQI AirCard has persistent XSS |
CWE-79
Cross-site Scripting |
CVE-2013-5637 | 2024-11-21 10:57 | 2020-01-8 | Show | GitHub Exploit DB Packet Storm |
| 290805 | 5.9 |
MEDIUM
Network |
hmailserver | hmailserver | HMailServer 5.3.x and prior: Memory Corruption which could cause DOS |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2013-5571 | 2024-11-21 10:57 | 2020-01-7 | Show | GitHub Exploit DB Packet Storm |
| 290806 | 9.8 |
CRITICAL
Network |
cisco |
linksys_ea2700_firmware linksys_ea3500_firmware linksys_e4200_firmware linksys_ea4500_firmware |
Cisco Linksys Routers EA2700, EA3500, E4200, EA4500: A bug can cause an unsafe TCP port to open which leads to unauthenticated access |
CWE-287
Improper Authentication |
CVE-2013-5122 | 2024-11-21 10:57 | 2020-01-7 | Show | GitHub Exploit DB Packet Storm |
| 290807 | 5.9 |
MEDIUM
Network |
pypa virtualenv fedoraproject redhat debian |
pip virtualenv fedora openshift software_collections debian_linux |
The mirroring support (-M, --use-mirrors) in Python Pip before 1.5 uses insecure DNS querying and authenticity checks which allows attackers to perform man-in-the-middle attacks. |
CWE-287
Improper Authentication |
CVE-2013-5123 | 2024-11-21 10:57 | 2019-11-6 | Show | GitHub Exploit DB Packet Storm |
| 290808 | 5.9 |
MEDIUM
Network |
isc nlnetlabs nic redhat |
bind nsd knot_resolver enterprise_linux |
Cache Poisoning issue exists in DNS Response Rate Limiting. |
CWE-290
Authentication Bypass by Spoofing |
CVE-2013-5661 | 2024-11-21 10:57 | 2019-11-6 | Show | GitHub Exploit DB Packet Storm |
| 290809 | 9.1 |
CRITICAL
Network |
yingzhipython_project | yingzhipython | Vulnerability in YingZhi Python Programming Language v1.9 allows arbitrary anonymous uploads to the phone's storage |
CWE-284
Improper Access Control |
CVE-2013-5654 | 2024-11-21 10:57 | 2019-02-16 | Show | GitHub Exploit DB Packet Storm |
| 290810 | 8.8 |
HIGH
Network |
ibm |
endpoint_manager_for_remote_control tivoli_remote_control |
IBM Endpoint Manager for Remote Control 9.0.0 and 9.0.1 and Tivoli Remote Control 5.1.2 store multiple hashes of partial passwords, which makes it easier for remote attackers to decrypt passwords by … |
CWE-255
Credentials Management |
CVE-2013-5461 | 2024-11-21 10:57 | 2018-04-28 | Show | GitHub Exploit DB Packet Storm |