Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 7, 2026, 2:09 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 229131 | 9.3 | 危険 | ROXIO | - | Roxio CinePlayer の SonicDVDDashVRNav.dll におけるスタックベースのバッファオーバーフローの脆弱性 | - | CVE-2007-1559 | 2012-12-20 18:19 | 2007-04-11 | Show | GitHub Exploit DB Packet Storm |
| 229132 | 7.5 | 危険 | thecreativeheads.de | - | Creative Files の kommentare.php における SQL インジェクションの脆弱性 | - | CVE-2007-1556 | 2012-12-20 18:19 | 2007-03-20 | Show | GitHub Exploit DB Packet Storm |
| 229133 | 4.3 | 警告 | phpx | - | phpx におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2007-1551 | 2012-12-20 18:19 | 2007-03-20 | Show | GitHub Exploit DB Packet Storm |
| 229134 | 7.5 | 危険 | phpx | - | phpx における SQL インジェクションの脆弱性 | - | CVE-2007-1550 | 2012-12-20 18:19 | 2007-03-20 | Show | GitHub Exploit DB Packet Storm |
| 229135 | 6.8 | 警告 | phpx | - | phpx の gallery.php における任意の PHP スクリプトをアップロードおよび実行される脆弱性 | - | CVE-2007-1549 | 2012-12-20 18:19 | 2007-03-20 | Show | GitHub Exploit DB Packet Storm |
| 229136 | 7.5 | 危険 | webwizguide | - | Web Wiz Forums の functions/functions_filters.asp における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-1548 | 2012-12-20 18:19 | 2007-03-20 | Show | GitHub Exploit DB Packet Storm |
| 229137 | 7.8 | 危険 | Jon Trulson | - | NAS の server/os/io.c におけるサービス運用妨害 (DoS) の脆弱性 | - | CVE-2007-1547 | 2012-12-20 18:19 | 2007-03-20 | Show | GitHub Exploit DB Packet Storm |
| 229138 | 5 | 警告 | Jon Trulson | - | NAS におけるサービス運用妨害 (DoS) の脆弱性 | - | CVE-2007-1546 | 2012-12-20 18:19 | 2007-03-20 | Show | GitHub Exploit DB Packet Storm |
| 229139 | 5 | 警告 | Jon Trulson | - | NAS の server/dia/resource.c におけるサービス運用妨害 (DoS) の脆弱性 | - | CVE-2007-1545 | 2012-12-20 18:19 | 2007-03-20 | Show | GitHub Exploit DB Packet Storm |
| 229140 | 5 | 警告 | Jon Trulson | - | NAS の server/dia/audispatch.c における整数オーバーフローの脆弱性 | - | CVE-2007-1544 | 2012-12-20 18:19 | 2007-03-20 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 7, 2026, 4:22 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 196971 | 8.1 |
HIGH
Adjacent |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<… |
On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, BIG-IP Virtual Edition (VE) may expose a mechanism for adjacent network (layer 2) attackers to access local daemons and bypass port … |
NVD-CWE-noinfo
|
CVE-2020-5888 | 2024-11-21 14:34 | 2020-05-1 | Show | GitHub Exploit DB Packet Storm |
| 196972 | 3.7 |
LOW
Network |
f5 |
big-ip_access_policy_manager big-ip_access_policy_manager_client |
In versions 7.1.5-7.1.8, when a user connects to a VPN using BIG-IP Edge Client over an unsecure network, BIG-IP Edge Client responds to authentication requests over HTTP while sending probes for cap… |
CWE-319
Cleartext Transmission of Sensitive Information |
CVE-2020-5893 | 2024-11-21 14:34 | 2020-05-1 | Show | GitHub Exploit DB Packet Storm |
| 196973 | 5.4 |
MEDIUM
Network |
f5 | big-ip_access_policy_manager | On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, in BIG-IP APM portal access, a specially crafted HTTP request can lead to reflected XSS after the BIG-IP APM system rewrites the HTT… |
CWE-79
Cross-site Scripting |
CVE-2020-5889 | 2024-11-21 14:34 | 2020-05-1 | Show | GitHub Exploit DB Packet Storm |
| 196974 | 7.5 |
HIGH
Network |
f5 | big-ip_application_security_manager | On BIG-IP ASM 11.6.1-11.6.5.1, under certain configurations, the BIG-IP system sends data plane traffic to back-end servers unencrypted, even when a Server SSL profile is applied. |
CWE-319
Cleartext Transmission of Sensitive Information |
CVE-2020-5879 | 2024-11-21 14:34 | 2020-05-1 | Show | GitHub Exploit DB Packet Storm |
| 196975 | 7.5 |
HIGH
Network |
f5 | big-ip_access_policy_manager | On BIG-IP APM 15.0.0-15.0.1.2, 14.1.0-14.1.2.3, and 14.0.0-14.0.1, in certain circumstances, an attacker sending specifically crafted requests to a BIG-IP APM virtual server may cause a disruption of… |
NVD-CWE-noinfo
|
CVE-2020-5874 | 2024-11-21 14:34 | 2020-05-1 | Show | GitHub Exploit DB Packet Storm |
| 196976 | 7.5 |
HIGH
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_fraud_protection_servi… |
On BIG-IP 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, undisclosed HTTP/2 requests can lead to a denial of service when sent to a virtual server configured with the Fallback Host setting an… |
NVD-CWE-noinfo
|
CVE-2020-5891 | 2024-11-21 14:34 | 2020-05-1 | Show | GitHub Exploit DB Packet Storm |
| 196977 | 9.1 |
CRITICAL
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_fraud_protection_servi… |
On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, BIG-IP Virtual Edition (VE) may expose a mechanism for remote attackers to access local daemons and bypass port lockdown settings. |
CWE-668
Exposure of Resource to Wrong Sphere |
CVE-2020-5887 | 2024-11-21 14:34 | 2020-05-1 | Show | GitHub Exploit DB Packet Storm |
| 196978 | 9.1 |
CRITICAL
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system … |
On versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, and 12.1.0-12.1.5.1, BIG-IP systems setup for connection mirroring in a High Availability (HA) pair transfers sensitive cryptographic ob… |
CWE-326 CWE-319 Inadequate Encryption Strength Cleartext Transmission of Sensitive Information |
CVE-2020-5886 | 2024-11-21 14:34 | 2020-05-1 | Show | GitHub Exploit DB Packet Storm |
| 196979 | 9.1 |
CRITICAL
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system … |
On versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, and 12.1.0-12.1.5.1, BIG-IP systems set up for connection mirroring in a high availability (HA) pair transfer sensitive cryptographic ob… |
CWE-326 CWE-319 Inadequate Encryption Strength Cleartext Transmission of Sensitive Information |
CVE-2020-5885 | 2024-11-21 14:34 | 2020-05-1 | Show | GitHub Exploit DB Packet Storm |
| 196980 | 9.1 |
CRITICAL
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system … |
On versions 15.0.0-15.1.0.3, 14.1.0-14.1.2.4, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, the default deployment mode for BIG-IP high availability (HA) pair mirroring is insecure. This is … |
NVD-CWE-noinfo
|
CVE-2020-5884 | 2024-11-21 14:34 | 2020-05-1 | Show | GitHub Exploit DB Packet Storm |