Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 30, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 259431 | 5 | 警告 | Wireshark | - | Wireshark の ASN.1 BER 解析部におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-0445 | 2011-02-4 14:09 | 2011-01-11 | Show | GitHub Exploit DB Packet Storm |
| 259432 | 6.9 | 警告 | サイバートラスト株式会社 Python Software Foundation レッドハット |
- | Python の PySys_SetArgv API 関数における任意のコードを実行される脆弱性 |
CWE-Other
その他 |
CVE-2008-5983 | 2011-02-4 13:58 | 2009-04-14 | Show | GitHub Exploit DB Packet Storm |
| 259433 | 2.6 | 注意 | サイバートラスト株式会社 FastJar レッドハット |
- | FastJar の jartool.c 内にある extract_jar 関数におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-2322 | 2011-02-3 14:55 | 2010-06-18 | Show | GitHub Exploit DB Packet Storm |
| 259434 | 5.8 | 警告 | サイバートラスト株式会社 FastJar レッドハット |
- | FastJar の jartool.c 内にある extract_jar 関数におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-0831 | 2011-02-3 14:52 | 2010-06-18 | Show | GitHub Exploit DB Packet Storm |
| 259435 | 9.3 | 危険 | アップル アドビシステムズ レッドハット オラクル |
- | Adobe Flash Player における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-3652 | 2011-02-2 15:07 | 2010-11-4 | Show | GitHub Exploit DB Packet Storm |
| 259436 | 9.3 | 危険 | アップル アドビシステムズ レッドハット オラクル |
- | Adobe Flash Player における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-3650 | 2011-02-2 15:06 | 2010-11-4 | Show | GitHub Exploit DB Packet Storm |
| 259437 | 9.3 | 危険 | アップル アドビシステムズ レッドハット オラクル |
- | Adobe Flash Player における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-3649 | 2011-02-2 15:06 | 2010-11-4 | Show | GitHub Exploit DB Packet Storm |
| 259438 | 9.3 | 危険 | アップル アドビシステムズ レッドハット オラクル |
- | Adobe Flash Player における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-3648 | 2011-02-2 15:06 | 2010-11-4 | Show | GitHub Exploit DB Packet Storm |
| 259439 | 9.3 | 危険 | アップル アドビシステムズ レッドハット オラクル |
- | Adobe Flash Player における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-3647 | 2011-02-2 15:05 | 2010-11-4 | Show | GitHub Exploit DB Packet Storm |
| 259440 | 9.3 | 危険 | アップル アドビシステムズ レッドハット オラクル |
- | Adobe Flash Player における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-3646 | 2011-02-2 15:05 | 2010-11-4 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 30, 2026, 4:22 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 245941 | 5.4 |
MEDIUM
Network |
basic_b2b_script_project | basic_b2b_script | PHP Scripts Mall Basic B2B Script 2.0.9 has HTML injection via the First Name or Last Name field. |
CWE-79
Cross-site Scripting |
CVE-2018-20645 | 2024-11-21 13:01 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 245942 | 8.8 |
HIGH
Network |
basic_b2b_script_project | basic_b2b_script | PHP Scripts Mall Basic B2B Script 2.0.9 has Cross-Site Request Forgery (CSRF) via the Edit profile feature. |
CWE-352
Origin Validation Error |
CVE-2018-20644 | 2024-11-21 13:01 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 245943 | 6.5 |
MEDIUM
Network |
entrepreneur_job_portal_script_project | entrepreneur_job_portal_script | PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory. |
CWE-22
Path Traversal |
CVE-2018-20643 | 2024-11-21 13:01 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 245944 | 6.5 |
MEDIUM
Network |
entrepreneur_job_portal_script_project | entrepreneur_job_portal_script | PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 allows remote attackers to cause a denial of service (outage of profile editing) via crafted JavaScript code in the KeySkills field. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-20642 | 2024-11-21 13:01 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 245945 | 8.8 |
HIGH
Network |
entrepreneur_job_portal_script_project | entrepreneur_job_portal_script | PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has Cross-Site Request Forgery (CSRF) via the Edit Profile feature. |
CWE-352
Origin Validation Error |
CVE-2018-20641 | 2024-11-21 13:01 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 245946 | 5.4 |
MEDIUM
Network |
entrepreneur_job_portal_script_project | entrepreneur_job_portal_script | PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has stored Cross-Site Scripting (XSS) via the Full Name field. |
CWE-79
Cross-site Scripting |
CVE-2018-20640 | 2024-11-21 13:01 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 245947 | 6.1 |
MEDIUM
Network |
entrepreneur_job_portal_script_project | entrepreneur_job_portal_script | PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has HTML injection via the Search Bar. |
CWE-79
Cross-site Scripting |
CVE-2018-20639 | 2024-11-21 13:01 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 245948 | 6.5 |
MEDIUM
Network |
chartered_accountant_\ | _auditor_website_project | PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory. |
CWE-22
Path Traversal |
CVE-2018-20638 | 2024-11-21 13:01 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 245949 | 6.5 |
MEDIUM
Network |
chartered_accountant_\ | _auditor_website_project | PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 allows remote attackers to cause a denial of service (unrecoverable blank profile) via crafted JavaScript code in the First Name and Last… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-20637 | 2024-11-21 13:01 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 245950 | 5.4 |
MEDIUM
Network |
chartered_accountant_\ | _auditor_website_project | PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has HTML injection via the First Name field. |
CWE-79
Cross-site Scripting |
CVE-2018-20636 | 2024-11-21 13:01 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |