Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 9, 2026, 12:59 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 251461 | 9 | 危険 | アップル | - | Apple Mac OS X のサーバ管理における管理者権限の処理に関する脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0522 | 2010-04-16 16:58 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 251462 | 5 | 警告 | アップル | - | Apple Mac OS X のサーバ管理における重要な情報を取得される脆弱性 |
CWE-287
不適切な認証 |
CVE-2010-0521 | 2010-04-16 16:58 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 251463 | 4.3 | 警告 | アップル Ruby on Rails project |
- | Ruby on Rails の strip_tags 関数におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4214 | 2010-04-16 16:58 | 2009-12-7 | Show | GitHub Exploit DB Packet Storm |
| 251464 | 4.3 | 警告 | アップル Ruby on Rails project |
- | Ruby on Rails におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3009 | 2010-04-16 16:58 | 2009-09-8 | Show | GitHub Exploit DB Packet Storm |
| 251465 | 7.5 | 危険 | アップル Ruby on Rails project |
- | Ruby on Rails のダイジェスト認証における認証を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2009-2422 | 2010-04-16 16:57 | 2009-07-10 | Show | GitHub Exploit DB Packet Storm |
| 251466 | 6.8 | 警告 | アップル | - | Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-0526 | 2010-04-16 16:57 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 251467 | 6.8 | 警告 | アップル | - | Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-0520 | 2010-04-16 16:57 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 251468 | 6.8 | 警告 | アップル | - | Apple Mac OS X の QuickTime における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2010-0519 | 2010-04-16 16:57 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 251469 | 6.8 | 警告 | アップル | - | Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2010-0518 | 2010-04-16 16:56 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 251470 | 6.8 | 警告 | アップル | - | Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-0517 | 2010-04-16 16:56 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 20, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1661 | 6.5 |
MEDIUM
Adjacent |
alfa cisco siemens |
awus036h_firmware meraki_gr10_firmware meraki_gr60_firmware meraki_mr20_firmware meraki_mr30h_firmware meraki_mr33_firmware meraki_mr36_firmware meraki_mr42_firmware meraki_mr… |
An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of fragmented TKIP frames. An adver… |
CWE-354
Improper Validation of Integrity Check Value |
CVE-2020-26141 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1662 | 6.5 |
MEDIUM
Adjacent |
alfa cisco siemens |
awus036h_firmware meraki_gr10_firmware meraki_gr60_firmware meraki_mr20_firmware meraki_mr30h_firmware meraki_mr33_firmware meraki_mr36_firmware meraki_mr42_firmware meraki_mr… |
Se detectó un problema en el controlador ALFA de Windows 10 versión 6.1316.1209 para AWUS036H. La implementación de Wi-Fi no verifica la Comprobación de Integridad del Mensaje (autenticidad) de las t… |
CWE-354
Improper Validation of Integrity Check Value |
CVE-2020-26141 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1663 | 6.5 |
MEDIUM
Adjacent |
alfa siemens arista cisco intel |
awus036h_firmware scalance_w1748-1_firmware scalance_w1750d_firmware scalance_w1788-1_firmware scalance_w1788-2_firmware scalance_w1788-2ia_firmware scalance_w721-1_firmware scal… |
An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext frames in a protected Wi-Fi network. An adversary can abu… |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2020-26140 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1664 | 6.5 |
MEDIUM
Adjacent |
alfa siemens arista cisco intel |
awus036h_firmware scalance_w1748-1_firmware scalance_w1750d_firmware scalance_w1788-1_firmware scalance_w1788-2_firmware scalance_w1788-2ia_firmware scalance_w721-1_firmware scal… |
Se detectó un problema en el controlador ALFA de Windows 10 versión 6.1316.1209 para AWUS036H. Las implementaciones WEP, WPA, WPA2 y WPA3 aceptan tramas de texto plano en una red Wi-Fi protegida. Un … |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2020-26140 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1665 | 5.3 |
MEDIUM
Adjacent |
netbsd debian arista cisco intel |
netbsd debian_linux c-100_firmware c-110_firmware c-120_firmware c-130_firmware c-200_firmware c-230_firmware c-235_firmware c-250_firmware c-260_firmware c-65_firmwa… |
An issue was discovered in the kernel in NetBSD 7.1. An Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. This might be… |
CWE-287
Improper Authentication |
CVE-2020-26139 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1666 | 5.3 |
MEDIUM
Adjacent |
netbsd debian arista cisco intel |
netbsd debian_linux c-100_firmware c-110_firmware c-120_firmware c-130_firmware c-200_firmware c-230_firmware c-235_firmware c-250_firmware c-260_firmware c-65_firmwa… |
Se detectó un problema en el kernel en NetBSD versión 7.1. Un punto de acceso (AP) reenvía tramas EAPOL a otros clientes aunque el remitente aún no se haya autenticado con éxito en el AP. Esto podría… |
CWE-287
Improper Authentication |
CVE-2020-26139 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1667 | 3.5 |
LOW
Adjacent |
ieee linux microsoft debian siemens arista cisco intel |
ieee_802.11 mac80211 windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 debian_linux scal… |
The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authentica… |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2020-24588 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1668 | 3.5 |
LOW
Adjacent |
ieee linux microsoft debian siemens arista cisco intel |
ieee_802.11 mac80211 windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 debian_linux scal… |
El estándar 802.11 que sustenta a Wi-Fi Protected Access (WPA, WPA2, y WPA3) y Wired Equivalent Privacy (WEP) no requiere que el flag A-MSDU en el campo de encabezado QoS de texto plano esté autentic… |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2020-24588 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1669 | 6.5 |
MEDIUM
Network |
- | - | The The Germanized for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution via 'account_holder' parameter in all versions up to, and including, 3.20.5. This is due to the … |
CWE-94
Code Injection |
CVE-2026-2582 | 2026-04-14 16:16 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |
| 1670 | 7.2 |
HIGH
Network |
- | - | The Smart Post Show – Post Grid, Post Carousel & Slider, and List Category Posts plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.0.12 via deserializ… |
CWE-502
Deserialization of Untrusted Data |
CVE-2026-3017 | 2026-04-14 15:16 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |