Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 31, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224911 | 3.5 | 注意 | IBM | - | IBM Informix Open Admin Tool におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-0492 | 2013-08-13 18:42 | 2013-08-8 | Show | GitHub Exploit DB Packet Storm |
| 224912 | 7.1 | 危険 | Moxa Inc. | - | 複数の Moxa OnCell ゲートウェイ製品のファームウェアにおけるアクセス権を取得される脆弱性 |
CWE-310
暗号の問題 |
CVE-2012-3039 | 2013-08-13 18:19 | 2013-04-3 | Show | GitHub Exploit DB Packet Storm |
| 224913 | 7.5 | 危険 | Cotonti Team | - | Cotonti の modules/rss/rss.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2013-4789 | 2013-08-13 17:27 | 2013-07-17 | Show | GitHub Exploit DB Packet Storm |
| 224914 | 4.3 | 警告 | Magnolia International | - | Magnolia CMS 用 Magnolia Form モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-4759 | 2013-08-13 17:23 | 2013-07-17 | Show | GitHub Exploit DB Packet Storm |
| 224915 | 7.5 | 危険 | Netwin Ltd | - | NetWin SurgeFTP におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2013-4742 | 2013-08-13 16:59 | 2013-07-22 | Show | GitHub Exploit DB Packet Storm |
| 224916 | 4.3 | 警告 | Franz Holzinger | - | TYPO3 用 Static Methods since 2007 エクステンションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-5100 | 2013-08-13 16:49 | 2013-01-11 | Show | GitHub Exploit DB Packet Storm |
| 224917 | 4.3 | 警告 | SilverStripe | - | SilverStripe CMS 用 SilverStripe E-Commerce モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-6458 | 2013-08-13 16:41 | 2012-12-22 | Show | GitHub Exploit DB Packet Storm |
| 224918 | 7.5 | 危険 | The YardRadius Project | - | Yet Another Radius Daemon におけるフォーマットストリングの脆弱性 |
CWE-134
書式文字列の問題 |
CVE-2013-4147 | 2013-08-13 16:27 | 2013-07-1 | Show | GitHub Exploit DB Packet Storm |
| 224919 | 6.8 | 警告 | Boris Eyrich Software | - | Artweaver におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2013-2576 | 2013-08-13 16:05 | 2013-07-22 | Show | GitHub Exploit DB Packet Storm |
| 224920 | 9.3 | 危険 | 19th Parallel | - | Sagelight における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2013-3480 | 2013-08-13 15:58 | 2013-07-23 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 31, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 212021 | 5.5 |
MEDIUM
Local |
apache netapp oracle |
groovy snapcenter primavera_unifier ilearning business_process_management_suite agile_plm retail_bulk_data_integration communications_services_gatekeeper retail_merchandising_… |
Apache Groovy provides extension methods to aid with creating temporary directories. Prior to this fix, Groovy's implementation of those extension methods was using a now superseded Java JDK method c… |
NVD-CWE-Other
|
CVE-2020-17521 | 2024-11-21 14:08 | 2020-12-8 | Show | GitHub Exploit DB Packet Storm |
| 212022 | 7.5 |
HIGH
Network |
apache netapp debian oracle |
tomcat oncommand_system_manager element_plug-in debian_linux instantis_enterprisetrack sd-wan_edge workload_manager mysql_enterprise_monitor communications_cloud_native_core_b… |
While investigating bug 64830 it was discovered that Apache Tomcat 10.0.0-M1 to 10.0.0-M9, 9.0.0-M1 to 9.0.39 and 8.5.0 to 8.5.59 could re-use an HTTP request header value from the previous stream re… |
CWE-200
Information Exposure |
CVE-2020-17527 | 2024-11-21 14:08 | 2020-12-4 | Show | GitHub Exploit DB Packet Storm |
| 212023 | 6.5 |
MEDIUM
Network |
pbootcms | pbootcms | Cross-site request forgery (CSRF) in PbootCMS 1.3.2 allows attackers to change the password of a user. |
CWE-352
Origin Validation Error |
CVE-2020-17901 | 2024-11-21 14:08 | 2020-12-1 | Show | GitHub Exploit DB Packet Storm |
| 212024 | 5.3 |
MEDIUM
Network |
untangle | untangle_firewall_ng | Untangle Firewall NG before 16.0 uses MD5 for passwords. |
CWE-326
Inadequate Encryption Strength |
CVE-2020-17494 | 2024-11-21 14:08 | 2020-11-13 | Show | GitHub Exploit DB Packet Storm |
| 212025 | 5.5 |
MEDIUM
Local |
saltstack debian |
salt debian_linux |
The TLS module within SaltStack Salt through 3002 creates certificates with weak file permissions. |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2020-17490 | 2024-11-21 14:08 | 2020-11-6 | Show | GitHub Exploit DB Packet Storm |
| 212026 | 9.8 |
CRITICAL
Network |
apache debian |
shiro debian_linux |
Apache Shiro before 1.7.0, when using Apache Shiro with Spring, a specially crafted HTTP request may cause an authentication bypass. |
CWE-287
Improper Authentication |
CVE-2020-17510 | 2024-11-21 14:08 | 2020-11-6 | Show | GitHub Exploit DB Packet Storm |
| 212027 | 9.6 |
CRITICAL
Network |
antsword_project | antsword | A cross-site scripting (XSS) vulnerability AntSword v2.0.7 can remotely execute system commands. |
CWE-79
Cross-site Scripting |
CVE-2020-18766 | 2024-11-21 14:08 | 2020-10-27 | Show | GitHub Exploit DB Packet Storm |
| 212028 | 8.8 |
HIGH
Network |
eyoucms | eyoucms | A CSRF vulnerability in Eyoucms v1.2.7 allows an attacker to add an admin account via login.php. |
CWE-352
Origin Validation Error |
CVE-2020-18129 | 2024-11-21 14:08 | 2020-10-23 | Show | GitHub Exploit DB Packet Storm |
| 212029 | 6.1 |
MEDIUM
Network |
wso2 | api_manager | WSO2 API Manager 3.1.0 and earlier has reflected XSS on the "publisher" component's admin interface. More precisely, it is possible to inject an XSS payload into the owner POST parameter, which does … |
CWE-79
Cross-site Scripting |
CVE-2020-17454 | 2024-11-21 14:08 | 2020-10-22 | Show | GitHub Exploit DB Packet Storm |
| 212030 | 7.8 |
HIGH
Local |
foxitsoftware |
foxit_reader phantompdf |
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.0.1.35811. User interaction is required to exploit this vulnerability in that the tar… | - | CVE-2020-17417 | 2024-11-21 14:08 | 2020-10-14 | Show | GitHub Exploit DB Packet Storm |