Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 31, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 230411 | 6.8 | 警告 | pnflashgames | - | PostNuke 用の pnFlashGames モジュールの index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2013 | 2012-12-20 18:52 | 2008-04-29 | Show | GitHub Exploit DB Packet Storm |
| 230412 | 7.5 | 危険 | postnuke software foundation | - | PostNuke 用の PostSchedule モジュールにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2012 | 2012-12-20 18:52 | 2008-04-29 | Show | GitHub Exploit DB Packet Storm |
| 230413 | 7.5 | 危険 | サン・マイクロシステムズ | - | Sun Java System Directory Proxy Server におけるサーバに対するアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-1995 | 2012-12-20 18:52 | 2008-04-25 | Show | GitHub Exploit DB Packet Storm |
| 230414 | 4.3 | 警告 | pixel motion | - | Blog Pixel Motion の liste_article.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-1986 | 2012-12-20 18:52 | 2008-04-27 | Show | GitHub Exploit DB Packet Storm |
| 230415 | 8.5 | 危険 | サン・マイクロシステムズ | - | Sun Ray Kiosk Mode におけるルートの権限を取得される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2008-2112 | 2012-12-20 18:52 | 2008-05-5 | Show | GitHub Exploit DB Packet Storm |
| 230416 | 9.3 | 危険 | Yahoo! | - | Yahoo! Assistant の ActiveX コントロールにおける任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2008-2111 | 2012-12-20 18:52 | 2008-05-7 | Show | GitHub Exploit DB Packet Storm |
| 230417 | 7.5 | 危険 | qto | - | QTOFileManager の qtofm.php における任意の PHP コードをアップロードされる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-2110 | 2012-12-20 18:52 | 2008-05-7 | Show | GitHub Exploit DB Packet Storm |
| 230418 | 7.5 | 危険 | phpforge | - | PHP Forge の admin/news.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2088 | 2012-12-20 18:52 | 2008-05-6 | Show | GitHub Exploit DB Packet Storm |
| 230419 | 6.8 | 警告 | softbiz | - | Softbiz Web Host Directory Script の search_result.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2087 | 2012-12-20 18:52 | 2008-05-6 | Show | GitHub Exploit DB Packet Storm |
| 230420 | 6.8 | 警告 | prozilla | - | Prozilla Hosting Index の directory.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2083 | 2012-12-20 18:52 | 2008-05-5 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 31, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 209581 | 8.8 |
HIGH
Network |
gemteks |
wrtm-127acn_firmware wrtm-127x9_firmware |
An issue was discovered on Gemtek WRTM-127ACN 01.01.02.141 and WRTM-127x9 01.01.02.127 devices. The Monitor Diagnostic network page allows an authenticated attacker to execute a command directly on t… |
CWE-78 CWE-1188 OS Command Insecure Default Initialization of Resource |
CVE-2020-24365 | 2024-11-21 14:14 | 2020-09-25 | Show | GitHub Exploit DB Packet Storm |
| 209582 | 7.5 |
HIGH
Network |
trendmicro |
antivirus\+_2019 internet_security_2019 maximum_security_2019 officescan_cloud premium_security_2019 |
An incomplete SSL server certification validation vulnerability in the Trend Micro Security 2019 (v15) consumer family of products could allow an attacker to combine this vulnerability with another a… |
CWE-295
Improper Certificate Validation |
CVE-2020-24560 | 2024-11-21 14:14 | 2020-09-24 | Show | GitHub Exploit DB Packet Storm |
| 209583 | 7.5 |
HIGH
Network |
ygopro | ygocore | An integer overflow was discovered in YGOPro ygocore v13.51. Attackers can use it to leak the game server thread's memory. |
CWE-190
Integer Overflow or Wraparound |
CVE-2020-24213 | 2024-11-21 14:14 | 2020-09-24 | Show | GitHub Exploit DB Packet Storm |
| 209584 | 6.5 |
MEDIUM
Network |
arista | cloudvision_portal | A vulnerability in Arista’s CloudVision Portal (CVP) prior to 2020.2 allows users with “read-only” or greater access rights to the Configlet Management module to download files not intended for acces… |
NVD-CWE-noinfo
|
CVE-2020-24333 | 2024-11-21 14:14 | 2020-09-23 | Show | GitHub Exploit DB Packet Storm |
| 209585 | 7.2 |
HIGH
Network |
titanhq | spamtitan | A sandbox escape issue was discovered in TitanHQ SpamTitan Gateway 7.07. It limits the admin user to a restricted shell, allowing execution of a small number of tools of the operating system. This re… |
CWE-269
Improper Privilege Management |
CVE-2020-24046 | 2024-11-21 14:14 | 2020-09-18 | Show | GitHub Exploit DB Packet Storm |
| 209586 | 7.2 |
HIGH
Network |
titanhq | spamtitan | A sandbox escape issue was discovered in TitanHQ SpamTitan Gateway 7.07. It limits the admin user to a restricted shell, allowing execution of a small number of tools of the operating system. The res… |
CWE-345
Insufficient Verification of Data Authenticity |
CVE-2020-24045 | 2024-11-21 14:14 | 2020-09-18 | Show | GitHub Exploit DB Packet Storm |
| 209587 | 9.6 |
CRITICAL
Network |
free |
freebox_revolution_firmware freebox_mini_firmware freebox_one_firmware freebox_delta_firmware freebox_pop_firmware |
A DNS rebinding vulnerability in the Freebox OS web interface in Freebox Server before 4.2.3. |
CWE-20
Improper Input Validation |
CVE-2020-24377 | 2024-11-21 14:14 | 2020-09-17 | Show | GitHub Exploit DB Packet Storm |
| 209588 | 9.6 |
CRITICAL
Network |
free |
freebox_revolution_firmware freebox_mini_firmware freebox_one_firmware freebox_delta_firmware freebox_pop_firmware |
A DNS rebinding vulnerability in the UPnP IGD implementations in Freebox v5 before 1.5.29 and Freebox Server before 4.2.3. |
CWE-20
Improper Input Validation |
CVE-2020-24376 | 2024-11-21 14:14 | 2020-09-17 | Show | GitHub Exploit DB Packet Storm |
| 209589 | 9.6 |
CRITICAL
Network |
free | freebox_hd_firmware | A DNS rebinding vulnerability in Freebox v5 before 1.5.29. |
CWE-20
Improper Input Validation |
CVE-2020-24374 | 2024-11-21 14:14 | 2020-09-17 | Show | GitHub Exploit DB Packet Storm |
| 209590 | 8.8 |
HIGH
Network |
free |
freebox_revolution_firmware freebox_mini_firmware freebox_one_firmware freebox_delta_firmware freebox_pop_firmware |
A CSRF vulnerability in the UPnP MediaServer implementation in Freebox Server before 4.2.3. |
CWE-352
Origin Validation Error |
CVE-2020-24373 | 2024-11-21 14:14 | 2020-09-17 | Show | GitHub Exploit DB Packet Storm |