|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
Update Date":July 1, 2026, 4:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257881 | 2.1 | 注意 | アップル | - | Apple iOS のホームスクリーンコンポーネントにおける重要な状態情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2011-3431 | 2011-10-24 16:47 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 257882 | 5 | 警告 | アップル | - | Apple iOS の UIKit アラートコンポーネントにおけるサービス運用妨害 (デバイスハング) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-3432 | 2011-10-24 16:46 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 257883 | 4.3 | 警告 | アップル | - | Apple iOS の WiFi コンポーネントにおける重要な情報を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2011-3434 | 2011-10-24 16:46 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 257884 | 4.3 | 警告 | アップル | - | Apple iOS および Safari で使用される WebKit におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-3243 | 2011-10-24 16:43 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 257885 | 2.1 | 注意 | アップル | - | Apple iOS のキーボードコンポーネントにおける重要な情報を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2011-3245 | 2011-10-24 16:43 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 257886 | 2.6 | 注意 | アップル | - | Apple iOS の CalDAV における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2011-3253 | 2011-10-24 16:43 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 257887 | 4.3 | 警告 | アップル | - | Apple iOS のカレンダーにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-3254 | 2011-10-24 16:42 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 257888 | 4.3 | 警告 | アップル | - | Apple iOS の CFNetwork における重要な情報を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2011-3255 | 2011-10-24 16:33 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 257889 | 2.1 | 注意 | アップル | - | Apple iOS の Data Access コンポーネントにおけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-3257 | 2011-10-24 16:32 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 257890 | 6.8 | 警告 | アップル | - | Apple iOS の OfficeImport におけるバッファオーバーフローの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2011-3260 | 2011-10-24 16:30 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
Update Date:July 1, 2026, 4:27 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249741 | 5.3 |
MEDIUM
Network |
versa-networks | versa_director | In Versa Director, the un-authentication request found. |
CWE-287
Improper Authentication |
CVE-2018-16496 | 2024-11-21 12:52 | 2021-05-27 | Show | GitHub Exploit DB Packet Storm |
| 249742 | 8.8 |
HIGH
Network |
versa-networks | versa_operating_system | In VOS user session identifier (authentication token) is issued to the browser prior to authentication but is not changed after the user successfully logs into the application. Failing to issue a new… |
CWE-384
Session Fixation |
CVE-2018-16495 | 2024-11-21 12:52 | 2021-05-27 | Show | GitHub Exploit DB Packet Storm |
| 249743 | 8.8 |
HIGH
Network |
versa-networks | versa_operating_system | In VOS and overly permissive "umask" may allow for authorized users of the server to gain unauthorized access through insecure file permissions that can result in an arbitrary read, write, or executi… |
CWE-668
Exposure of Resource to Wrong Sphere |
CVE-2018-16494 | 2024-11-21 12:52 | 2021-05-27 | Show | GitHub Exploit DB Packet Storm |
| 249744 | 5.4 |
MEDIUM
Network |
solarwinds | database_performance_analyzer | SolarWinds Database Performance Analyzer (DPA) 11.1.468 and 12.0.3074 have several persistent XSS vulnerabilities, related to logViewer.iwc, centralManage.cen, userAdministration.iwc, database.iwc, a… |
CWE-79
Cross-site Scripting |
CVE-2018-16243 | 2024-11-21 12:52 | 2020-12-16 | Show | GitHub Exploit DB Packet Storm |
| 249745 | 9.8 |
CRITICAL
Network |
pbootcms | pbootcms | An issue was discovered in PbootCMS. There is a SQL injection via the api.php/Cms/search order parameter. |
CWE-89
SQL Injection |
CVE-2018-16357 | 2024-11-21 12:52 | 2020-03-3 | Show | GitHub Exploit DB Packet Storm |
| 249746 | 9.8 |
CRITICAL
Network |
pbootcms | pbootcms | An issue was discovered in PbootCMS. There is a SQL injection via the api.php/List/index order parameter. |
CWE-89
SQL Injection |
CVE-2018-16356 | 2024-11-21 12:52 | 2020-03-3 | Show | GitHub Exploit DB Packet Storm |
| 249747 | 9.8 |
CRITICAL
Network |
samsung |
galaxy_gear_firmware gear_2_firmware gear_live_firmware gear_s_firmware gear_s2_firmware gear_s3_firmware gear_sport_firmware gear_fit_firmware gear_fit_2_firmware gear_fit… |
The wpa_supplicant system service in Samsung Galaxy Gear series allows an unprivileged process to fully control the Wi-Fi interface, due to the lack of its D-Bus security policy configurations. This … |
CWE-269
Improper Privilege Management |
CVE-2018-16272 | 2024-11-21 12:52 | 2020-01-22 | Show | GitHub Exploit DB Packet Storm |
| 249748 | 6.5 |
MEDIUM
Adjacent |
samsung |
galaxy_gear_firmware gear_2_firmware gear_live_firmware gear_s_firmware gear_s2_firmware gear_s3_firmware gear_sport_firmware gear_fit_firmware gear_fit_2_firmware gear_fit… |
The wemail_consumer_service (from the built-in application wemail) in Samsung Galaxy Gear series allows an unprivileged process to manipulate a user's mailbox, due to improper D-Bus security policy c… |
CWE-269
Improper Privilege Management |
CVE-2018-16271 | 2024-11-21 12:52 | 2020-01-22 | Show | GitHub Exploit DB Packet Storm |
| 249749 | 7.5 |
HIGH
Network |
samsung |
galaxy_gear_firmware gear_2_firmware gear_live_firmware gear_s_firmware gear_s2_firmware gear_s3_firmware gear_sport_firmware gear_fit_firmware gear_fit_2_firmware gear_fit… |
Samsung Galaxy Gear series before build RE2 includes the hcidump utility with no privilege or permission restriction. This allows an unprivileged process to dump Bluetooth HCI packets to an arbitrary… |
CWE-269
Improper Privilege Management |
CVE-2018-16270 | 2024-11-21 12:52 | 2020-01-22 | Show | GitHub Exploit DB Packet Storm |
| 249750 | 7.5 |
HIGH
Network |
samsung |
galaxy_gear_firmware gear_2_firmware gear_live_firmware gear_s_firmware gear_s2_firmware gear_s3_firmware gear_sport_firmware gear_fit_firmware gear_fit_2_firmware gear_fit… |
The wnoti system service in Samsung Galaxy Gear series allows an unprivileged process to take over the internal notification message data, due to improper D-Bus security policy configurations. This a… |
CWE-200
Information Exposure |
CVE-2018-16269 | 2024-11-21 12:52 | 2020-01-22 | Show | GitHub Exploit DB Packet Storm |