Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 8, 2026, 12:07 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228401 | 5 | 警告 | vpasp | - | Rocksalt International VP-ASP Shopping Cart の shopsessionsubs.asp におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-1589 | 2012-12-20 19:29 | 2010-04-28 | Show | GitHub Exploit DB Packet Storm |
| 228402 | 7.5 | 危険 | vpasp | - | Rocksalt International VP-ASP Shopping Cart の shopsessionsubs.asp における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-1588 | 2012-12-20 19:29 | 2010-04-28 | Show | GitHub Exploit DB Packet Storm |
| 228403 | 2.1 | 注意 | Steven Jones | - | Drupal 用の Context モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-1584 | 2012-12-20 19:29 | 2010-05-10 | Show | GitHub Exploit DB Packet Storm |
| 228404 | 7.5 | 危険 | tirzen taskfreak |
- | TaskFreak! で使用されている Tirzen Framework の tzn_mysql.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-1583 | 2012-12-20 19:29 | 2010-05-6 | Show | GitHub Exploit DB Packet Storm |
| 228405 | 7.5 | 危険 | redcomponent | - | Joomla! 用の redSHOP コンポーネントにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-1531 | 2012-12-20 19:29 | 2010-04-26 | Show | GitHub Exploit DB Packet Storm |
| 228406 | 2.1 | 注意 | reyero | - | Drupal 用の Internationalization モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-1530 | 2012-12-20 19:29 | 2010-04-7 | Show | GitHub Exploit DB Packet Storm |
| 228407 | 6.8 | 警告 | Uiga | - | Uiga Proxy の include/template.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-1528 | 2012-12-20 19:29 | 2010-04-26 | Show | GitHub Exploit DB Packet Storm |
| 228408 | 7.5 | 危険 | taskfreak | - | TaskFreak! Original マルチユーザの include/classes/tzn_user.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-1521 | 2012-12-20 19:29 | 2010-06-30 | Show | GitHub Exploit DB Packet Storm |
| 228409 | 4.3 | 警告 | taskfreak | - | TaskFreak! Original multi user の logout.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-1520 | 2012-12-20 19:29 | 2010-06-30 | Show | GitHub Exploit DB Packet Storm |
| 228410 | 9.3 | 危険 | SWFTools | - | SWFTools における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2010-1516 | 2012-12-20 19:29 | 2010-08-17 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 8, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 194371 | 9.8 |
CRITICAL
Network |
tobesoft | nexacro | An improper input validation leading to arbitrary file creation was discovered in copy method of Nexacro platform. Remote attackers use copy method to execute arbitrary command after the file creatio… |
CWE-20
Improper Input Validation |
CVE-2021-26612 | 2024-11-21 14:56 | 2021-12-1 | Show | GitHub Exploit DB Packet Storm |
| 194372 | 8.8 |
HIGH
Network |
bandisoft | ark_library | ARK library allows attackers to execute remote code via the parameter(path value) of Ark_NormalizeAndDupPAthNameW function because of an integer overflow. |
CWE-190
Integer Overflow or Wraparound |
CVE-2021-26615 | 2024-11-21 14:56 | 2021-11-27 | Show | GitHub Exploit DB Packet Storm |
| 194373 | 9.8 |
CRITICAL
Network |
hej | hejhome_gkw-ic052_firmware | HejHome GKW-IC052 IP Camera contained a hard-coded credentials vulnerability. This issue allows remote attackers to operate the IP Camera.(reboot, factory reset, snapshot etc..) |
CWE-798
Use of Hard-coded Credentials |
CVE-2021-26611 | 2024-11-21 14:56 | 2021-11-27 | Show | GitHub Exploit DB Packet Storm |
| 194374 | 9.8 |
CRITICAL
Network |
iptime | c200_firmware | ius_get.cgi in IpTime C200 camera allows remote code execution. A remote attacker may send a crafted parameters to the exposed vulnerable web service interface which invokes the arbitrary shell comma… |
NVD-CWE-noinfo
|
CVE-2021-26614 | 2024-11-21 14:56 | 2021-11-23 | Show | GitHub Exploit DB Packet Storm |
| 194375 | 5.5 |
MEDIUM
Local |
philips |
mri_3t_firmware mri_1.5t_firmware |
Philips MRI 1.5T and MRI 3T Version 5.x.x does not restrict or incorrectly restricts access to a resource from an unauthorized actor. |
NVD-CWE-Other
|
CVE-2021-26262 | 2024-11-21 14:56 | 2021-11-20 | Show | GitHub Exploit DB Packet Storm |
| 194376 | 5.5 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_7002_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware … |
Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA read from invalid DRAM address to SRAM resulting in SMU not servicing further requests. |
NVD-CWE-noinfo
|
CVE-2021-26337 | 2024-11-21 14:56 | 2021-11-17 | Show | GitHub Exploit DB Packet Storm |
| 194377 | 5.5 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_7002_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware … |
Insufficient bounds checking in System Management Unit (SMU) may cause invalid memory accesses/updates that could result in SMU hang and subsequent failure to service any further requests from other … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2021-26336 | 2024-11-21 14:56 | 2021-11-17 | Show | GitHub Exploit DB Packet Storm |
| 194378 | 7.8 |
HIGH
Local |
amd |
epyc_7003_firmware epyc_7002_firmware epyc_7001_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_73f3_firmware epyc_7413_firmware … |
Improper input and range checking in the AMD Secure Processor (ASP) boot loader image header may allow an attacker to use attacker-controlled values prior to signature validation potentially resultin… |
NVD-CWE-noinfo
|
CVE-2021-26335 | 2024-11-21 14:56 | 2021-11-17 | Show | GitHub Exploit DB Packet Storm |
| 194379 | 7.8 |
HIGH
Local |
amd |
epyc_7003_firmware epyc_7002_firmware epyc_7001_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_73f3_firmware epyc_7413_firmware … |
AMD System Management Unit (SMU) contains a potential issue where a malicious user may be able to manipulate mailbox entries leading to arbitrary code execution. |
NVD-CWE-noinfo
|
CVE-2021-26331 | 2024-11-21 14:56 | 2021-11-17 | Show | GitHub Exploit DB Packet Storm |
| 194380 | 5.5 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_7002_firmware epyc_7001_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_73f3_firmware epyc_7413_firmware … |
AMD System Management Unit (SMU) may experience a heap-based overflow which may result in a loss of resources. |
CWE-787
Out-of-bounds Write |
CVE-2021-26330 | 2024-11-21 14:56 | 2021-11-17 | Show | GitHub Exploit DB Packet Storm |