Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 9, 2026, 12:59 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228861 | 6.4 | 警告 | Gecad Technologies | - | Axigen Free Mail Server にディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2012-4940 | 2012-11-2 16:48 | 2012-10-31 | Show | GitHub Exploit DB Packet Storm |
| 228862 | 4.3 | 警告 | SolarWinds | - | Orion IPAM にクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-4939 | 2012-11-2 16:48 | 2012-10-31 | Show | GitHub Exploit DB Packet Storm |
| 228863 | 3.5 | 注意 | Justin Dodge | - | Drupal 用 Hotblocks モジュールの設定ページにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-5705 | 2012-11-2 16:16 | 2012-08-15 | Show | GitHub Exploit DB Packet Storm |
| 228864 | 3.5 | 注意 | Justin Dodge | - | Drupal 用 Hotblocks モジュールにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2012-5704 | 2012-11-2 16:15 | 2012-08-15 | Show | GitHub Exploit DB Packet Storm |
| 228865 | 7.8 | 危険 | TP-LINK Technologies | - | TP-LINK TL-WR841N ルータ上で稼働する Web ベースの管理機能におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2012-5687 | 2012-11-2 16:13 | 2012-11-1 | Show | GitHub Exploit DB Packet Storm |
| 228866 | 10 | 危険 | シーメンス | - | Siemens SiPass integrated のサーバにおける任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2012-5409 | 2012-11-2 16:03 | 2012-10-8 | Show | GitHub Exploit DB Packet Storm |
| 228867 | 3.5 | 注意 | Nancy Wichmann | - | Drupal 用 Announcements モジュール におけるノードのアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-4500 | 2012-11-2 15:06 | 2012-08-28 | Show | GitHub Exploit DB Packet Storm |
| 228868 | 5 | 警告 | Matthias Hutterer | - | Drupal 用 Email Field モジュールにおけるエンティティに格納されたアドレスに電子メールを送信される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-4499 | 2012-11-2 15:04 | 2012-08-29 | Show | GitHub Exploit DB Packet Storm |
| 228869 | 2.1 | 注意 | inclind | - | Drupal 用 Custom Publishing Options モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-4496 | 2012-11-2 15:04 | 2012-08-14 | Show | GitHub Exploit DB Packet Storm |
| 228870 | 4 | 警告 | Mime Mail Module Project | - | Drupal 用 Mime Mail モジュールにおける任意のファイルを添付ファイルとして送信される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-4495 | 2012-11-2 15:01 | 2012-08-8 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 26, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 198311 | 5.3 |
MEDIUM
Adjacent |
debian freebsd canonical opensuse redhat w1.fi suse |
debian_linux freebsd ubuntu_linux leap enterprise_linux_server enterprise_linux_desktop hostapd wpa_supplicant linux_enterprise_server linux_enterprise_desktop openstack… |
Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the group key handshake, allowing an attacker within radio ran… |
CWE-330
Use of Insufficiently Random Values |
CVE-2017-13081 | 2024-11-21 12:10 | 2017-10-17 | Show | GitHub Exploit DB Packet Storm |
| 198312 | 5.3 |
MEDIUM
Adjacent |
debian freebsd canonical opensuse redhat w1.fi suse |
debian_linux freebsd ubuntu_linux leap enterprise_linux_server enterprise_linux_desktop hostapd wpa_supplicant linux_enterprise_server linux_enterprise_desktop openstack… |
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access points… |
CWE-330
Use of Insufficiently Random Values |
CVE-2017-13080 | 2024-11-21 12:10 | 2017-10-17 | Show | GitHub Exploit DB Packet Storm |
| 198313 | 5.3 |
MEDIUM
Adjacent |
debian freebsd canonical opensuse redhat w1.fi suse |
debian_linux freebsd ubuntu_linux leap enterprise_linux_server enterprise_linux_desktop hostapd wpa_supplicant linux_enterprise_server linux_enterprise_desktop openstack… |
Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the four-way handshake, allowing an attacker within radio rang… |
CWE-330
Use of Insufficiently Random Values |
CVE-2017-13079 | 2024-11-21 12:10 | 2017-10-17 | Show | GitHub Exploit DB Packet Storm |
| 198314 | 5.3 |
MEDIUM
Adjacent |
debian freebsd canonical opensuse redhat w1.fi suse |
debian_linux freebsd ubuntu_linux leap enterprise_linux_server enterprise_linux_desktop hostapd wpa_supplicant linux_enterprise_server linux_enterprise_desktop openstack… |
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the four-way handshake, allowing an attacker within radio range to replay frames from access points … |
CWE-330
Use of Insufficiently Random Values |
CVE-2017-13078 | 2024-11-21 12:10 | 2017-10-17 | Show | GitHub Exploit DB Packet Storm |
| 198315 | 6.8 |
MEDIUM
Adjacent |
debian freebsd canonical opensuse redhat w1.fi suse |
debian_linux freebsd ubuntu_linux leap enterprise_linux_server enterprise_linux_desktop hostapd wpa_supplicant linux_enterprise_server linux_enterprise_desktop openstack… |
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the four-way handshake, allowing an attacker within radio range to replay, dec… |
CWE-330
Use of Insufficiently Random Values |
CVE-2017-13077 | 2024-11-21 12:10 | 2017-10-17 | Show | GitHub Exploit DB Packet Storm |
| 198316 | 5.3 |
MEDIUM
Network |
silverstripe | silverstripe | Response discrepancy in the login and password reset forms in SilverStripe CMS before 3.5.5 and 3.6.x before 3.6.1 allows remote attackers to enumerate users via timing attacks. |
CWE-200
Information Exposure |
CVE-2017-12849 | 2024-11-21 12:10 | 2017-10-13 | Show | GitHub Exploit DB Packet Storm |
| 198317 | 9.8 |
CRITICAL
Network |
epson | easymp | The Epson "EasyMP" software is designed to remotely stream a users computer to supporting projectors.These devices are authenticated using a unique 4-digit code, displayed on-screen - ensuring only t… |
CWE-521
Weak Password Requirements |
CVE-2017-12861 | 2024-11-21 12:10 | 2017-10-10 | Show | GitHub Exploit DB Packet Storm |
| 198318 | 9.8 |
CRITICAL
Network |
epson | easymp | The Epson "EasyMP" software is designed to remotely stream a users computer to supporting projectors.These devices are authenticated using a unique 4-digit code, displayed on-screen - ensuring only t… |
CWE-798
Use of Hard-coded Credentials |
CVE-2017-12860 | 2024-11-21 12:10 | 2017-10-10 | Show | GitHub Exploit DB Packet Storm |
| 198319 | 9.8 |
CRITICAL
Network |
qnap | music_station | QNAP discovered a number of command injection vulnerabilities found in Music Station versions 4.8.6 (for QTS 4.2.x), 5.0.7 (for QTS 4.3.x), and earlier. If exploited, these vulnerabilities may allow … |
CWE-77
Command Injection |
CVE-2017-13069 | 2024-11-21 12:10 | 2017-10-7 | Show | GitHub Exploit DB Packet Storm |
| 198320 | 7.5 |
HIGH
Network |
qnap | qts_helpdesk | QNAP has already patched this vulnerability. This security concern allows a remote attacker to perform an SQL injection on the application and obtain Helpdesk application information. A remote attack… |
CWE-89
SQL Injection |
CVE-2017-13068 | 2024-11-21 12:10 | 2017-10-7 | Show | GitHub Exploit DB Packet Storm |