Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 28, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 230291 | 7.8 | 危険 | Vocera | - | Cisco Unified Wireless IP Phone 7921 におけるハッシュされたパスワードを盗まれる脆弱性 |
CWE-200
情報漏えい |
CVE-2008-1113 | 2012-12-20 18:34 | 2008-03-3 | Show | GitHub Exploit DB Packet Storm |
| 230292 | 6.8 | 警告 | Xine | - | xine-lib の xineplug_dmx_asf.so プラグイン におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-1110 | 2012-12-20 18:34 | 2008-02-29 | Show | GitHub Exploit DB Packet Storm |
| 230293 | 6.8 | 警告 | quantum game library | - | Quantum Game Library における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-1069 | 2012-12-20 18:34 | 2008-02-28 | Show | GitHub Exploit DB Packet Storm |
| 230294 | 6.8 | 警告 | portail web php | - | Portail Web Php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-1068 | 2012-12-20 18:34 | 2008-02-28 | Show | GitHub Exploit DB Packet Storm |
| 230295 | 6.8 | 警告 | phpqladmin | - | phpQLAdmin における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-1067 | 2012-12-20 18:34 | 2008-02-28 | Show | GitHub Exploit DB Packet Storm |
| 230296 | 7.5 | 危険 | Smarty | - | S9Y などの製品で使用される Smarty における任意の PHP 関数を呼び出される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-1066 | 2012-12-20 18:34 | 2008-02-28 | Show | GitHub Exploit DB Packet Storm |
| 230297 | 4.3 | 警告 | WordPress.org | - | WordPress 用の Sniplets プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-1061 | 2012-12-20 18:34 | 2008-02-28 | Show | GitHub Exploit DB Packet Storm |
| 230298 | 7.5 | 危険 | WordPress.org | - | WordPress 用の Sniplets プラグインにおける任意の PHP コードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-1060 | 2012-12-20 18:34 | 2008-02-28 | Show | GitHub Exploit DB Packet Storm |
| 230299 | 7.5 | 危険 | WordPress.org | - | WordPress 用の Sniplets プラグインにおける PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-1059 | 2012-12-20 18:34 | 2008-02-28 | Show | GitHub Exploit DB Packet Storm |
| 230300 | 6.9 | 警告 | symark | - | Symark PowerBroker におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-1056 | 2012-12-20 18:34 | 2008-02-28 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 28, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 214291 | 5.5 |
MEDIUM
Local |
intel |
jhl6240_thunderbolt_3_firmware jhl6340_thunderbolt_3_firmware jhl6540_thunderbolt_3_firmware jhl7040_thunderbolt_3_retimer_firmware jhl7340_thunderbolt_3_firmware jhl7440_thunderbolt_3… |
Improper conditions check in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access. |
CWE-754
Improper Check for Unusual or Exceptional Conditions |
CVE-2020-12292 | 2024-11-21 13:59 | 2021-06-10 | Show | GitHub Exploit DB Packet Storm |
| 214292 | 5.5 |
MEDIUM
Local |
intel |
jhl6240_thunderbolt_3_firmware jhl6340_thunderbolt_3_firmware jhl6540_thunderbolt_3_firmware jhl7040_thunderbolt_3_retimer_firmware jhl7340_thunderbolt_3_firmware jhl7440_thunderbolt_3… |
Uncontrolled resource consumption in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access. |
CWE-400
Uncontrolled Resource Consumption |
CVE-2020-12291 | 2024-11-21 13:59 | 2021-06-10 | Show | GitHub Exploit DB Packet Storm |
| 214293 | 5.5 |
MEDIUM
Local |
intel |
jhl6240_thunderbolt_3_firmware jhl6340_thunderbolt_3_firmware jhl6540_thunderbolt_3_firmware jhl7040_thunderbolt_3_retimer_firmware jhl7340_thunderbolt_3_firmware jhl7440_thunderbolt_3… |
Improper access control in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access. |
NVD-CWE-Other
|
CVE-2020-12290 | 2024-11-21 13:59 | 2021-06-10 | Show | GitHub Exploit DB Packet Storm |
| 214294 | 5.5 |
MEDIUM
Local |
intel |
jhl6240_thunderbolt_3_firmware jhl6340_thunderbolt_3_firmware jhl6540_thunderbolt_3_firmware jhl7040_thunderbolt_3_retimer_firmware jhl7340_thunderbolt_3_firmware jhl7440_thunderbolt_3… |
Out-of-bounds write in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access. |
CWE-787
Out-of-bounds Write |
CVE-2020-12289 | 2024-11-21 13:59 | 2021-06-10 | Show | GitHub Exploit DB Packet Storm |
| 214295 | 5.5 |
MEDIUM
Local |
intel |
jhl6240_thunderbolt_3_firmware jhl6340_thunderbolt_3_firmware jhl6540_thunderbolt_3_firmware jhl7040_thunderbolt_3_retimer_firmware jhl7340_thunderbolt_3_firmware jhl7440_thunderbolt_3… |
Protection mechanism failure in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access. |
NVD-CWE-Other
|
CVE-2020-12288 | 2024-11-21 13:59 | 2021-06-10 | Show | GitHub Exploit DB Packet Storm |
| 214296 | 9.1 |
CRITICAL
Network |
mozilla | nss | A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS in versions before 3.55. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly di… |
CWE-125
Out-of-bounds Read |
CVE-2020-12403 | 2024-11-21 13:59 | 2021-05-28 | Show | GitHub Exploit DB Packet Storm |
| 214297 | 9.8 |
CRITICAL
Network |
nitrokey | fido_u2f_firmware | An issue was discovered in Nitrokey FIDO U2F firmware through 1.1. Communication between the microcontroller and the secure element transmits credentials in plain. This allows an adversary to eavesdr… |
CWE-522
Insufficiently Protected Credentials |
CVE-2020-12061 | 2024-11-21 13:59 | 2021-05-21 | Show | GitHub Exploit DB Packet Storm |
| 214298 | 5.3 |
MEDIUM
Network |
beckhoff |
ipc_diagnostics_ua_server tf6100 twincat_opc_ua_server |
TwinCAT OPC UA Server in versions up to 2.3.0.12 and IPC Diagnostics UA Server in versions up to 3.1.0.1 from Beckhoff Automation GmbH & Co. KG are vulnerable to denial of service attacks. The attack… |
CWE-20
Improper Input Validation |
CVE-2020-12526 | 2024-11-21 13:59 | 2021-05-13 | Show | GitHub Exploit DB Packet Storm |
| 214299 | 6.1 |
MEDIUM
Network |
vivo | appstore | The appstore before 8.12.0.0 exposes some of its components, and the attacker can cause remote download and install apps through carefully constructed parameters. |
CWE-601
Open Redirect |
CVE-2020-12483 | 2024-11-21 13:59 | 2021-03-24 | Show | GitHub Exploit DB Packet Storm |
| 214300 | 6.1 |
MEDIUM
Network |
mbconnectline |
mbconnect24 mymbconnect24 |
An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. There is an XSS issue in the redirect.php allowing an attacker to inject code via a g… |
CWE-79
Cross-site Scripting |
CVE-2020-12530 | 2024-11-21 13:59 | 2021-03-3 | Show | GitHub Exploit DB Packet Storm |