Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 4, 2026, 4 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 230701 | 7.5 | 危険 | PreProject.com | - | Pre Shopping Mall の emall/search.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2114 | 2012-12-20 18:52 | 2008-05-8 | Show | GitHub Exploit DB Packet Storm |
| 230702 | 7.5 | 危険 | phpeasydata | - | PHPEasyData の annuaire.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2113 | 2012-12-20 18:52 | 2008-05-8 | Show | GitHub Exploit DB Packet Storm |
| 230703 | 5 | 警告 | vicftps | - | VicFTPS におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-2031 | 2012-12-20 18:52 | 2008-04-30 | Show | GitHub Exploit DB Packet Storm |
| 230704 | 5.8 | 警告 | RSAセキュリティ | - | Web の IIS 用の RSA Authentication Agent におけるオープンリダイレクトの脆弱性 |
CWE-200
情報漏えい |
CVE-2008-2027 | 2012-12-20 18:52 | 2008-04-30 | Show | GitHub Exploit DB Packet Storm |
| 230705 | 4.3 | 警告 | RSAセキュリティ | - | RSA Authentication Agent の WebID/IISWebAgentIF.dll におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-2026 | 2012-12-20 18:52 | 2008-04-30 | Show | GitHub Exploit DB Packet Storm |
| 230706 | 7.5 | 危険 | Simple Machines | - | SMF における CAPTCHA のテストを通過される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-2019 | 2012-12-20 18:52 | 2008-04-29 | Show | GitHub Exploit DB Packet Storm |
| 230707 | 4 | 警告 | phpizabi | - | PHPizabi の template.class.php の AssignUser 関数における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2008-2018 | 2012-12-20 18:52 | 2008-04-29 | Show | GitHub Exploit DB Packet Storm |
| 230708 | 9.3 | 危険 | watchfire | - | WatchFire AppScan の特定の ActiveX コントロールにおける絶対パストラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-2015 | 2012-12-20 18:52 | 2008-04-29 | Show | GitHub Exploit DB Packet Storm |
| 230709 | 6.8 | 警告 | pnflashgames | - | PostNuke 用の pnFlashGames モジュールの index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2013 | 2012-12-20 18:52 | 2008-04-29 | Show | GitHub Exploit DB Packet Storm |
| 230710 | 7.5 | 危険 | postnuke software foundation | - | PostNuke 用の PostSchedule モジュールにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2012 | 2012-12-20 18:52 | 2008-04-29 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 5, 2026, 4:11 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 209481 | 4.3 |
MEDIUM
Network |
redhat quarkus |
resteasy quarkus |
A flaw was found in RESTEasy, where an incorrect response to an HTTP request is provided. This flaw allows an attacker to gain access to privileged information. The highest threat from this vulnerabi… | - | CVE-2020-25724 | 2024-11-21 14:18 | 2021-05-27 | Show | GitHub Exploit DB Packet Storm |
| 209482 | 5.4 |
MEDIUM
Network |
redhat |
3scale_api_management 3scale |
A flaw was found in Red Hat 3scale’s API docs URL, where it is accessible without credentials. This flaw allows an attacker to view sensitive information or modify service APIs. Versions before 3scal… |
CWE-306
Missing Authentication for Critical Function |
CVE-2020-25634 | 2024-11-21 14:18 | 2021-05-27 | Show | GitHub Exploit DB Packet Storm |
| 209483 | 7.0 |
HIGH
Local |
x.org | x_server | A privilege escalation flaw was found in the Xorg-x11-server due to a lack of authentication for X11 clients. This flaw allows an attacker to take control of an X application by impersonating the ser… | - | CVE-2020-25697 | 2024-11-21 14:18 | 2021-05-26 | Show | GitHub Exploit DB Packet Storm |
| 209484 | 7.0 |
HIGH
Local |
linux debian netapp |
linux_kernel debian_linux cloud_backup solidfire_\&_hci_management_node solidfire_baseboard_management_controller_firmware h410c_firmware h300s_firmware h500s_firmware h70… |
A flaw was found in Linux Kernel because access to the global variable fg_console is not properly synchronized leading to a use after free in con_font_op. |
CWE-662
Improper Synchronization |
CVE-2020-25668 | 2024-11-21 14:18 | 2021-05-26 | Show | GitHub Exploit DB Packet Storm |
| 209485 | 7.8 |
HIGH
Local |
linux debian netapp |
linux_kernel debian_linux cloud_backup solidfire_\&_hci_management_node solidfire_baseboard_management_controller h300s_firmware h500s_firmware h700s_firmware h300e_firmwa… |
A vulnerability was found in the Linux Kernel where the function sunkbd_reinit having been scheduled by sunkbd_interrupt before sunkbd being freed. Though the dangling pointer is set to NULL in sunkb… | - | CVE-2020-25669 | 2024-11-21 14:18 | 2021-05-26 | Show | GitHub Exploit DB Packet Storm |
| 209486 | 5.5 |
MEDIUM
Local |
linux fedoraproject netapp |
linux_kernel fedora cloud_backup active_iq_unified_manager solidfire_baseboard_management_controller_firmware h410c_firmware h300s_firmware h500s_firmware h700s_firmware h3… |
A vulnerability was found in Linux kernel where non-blocking socket in llcp_sock_connect() leads to leak and eventually hanging-up the system. | - | CVE-2020-25673 | 2024-11-21 14:18 | 2021-05-26 | Show | GitHub Exploit DB Packet Storm |
| 209487 | 7.8 |
HIGH
Local |
linux fedoraproject netapp debian |
linux_kernel fedora cloud_backup active_iq_unified_manager solidfire_baseboard_management_controller_firmware h410c_firmware h300s_firmware h500s_firmware h700s_firmware h3… |
A vulnerability was found in Linux Kernel, where a refcount leak in llcp_sock_connect() causing use-after-free which might lead to privilege escalations. | - | CVE-2020-25671 | 2024-11-21 14:18 | 2021-05-26 | Show | GitHub Exploit DB Packet Storm |
| 209488 | 7.8 |
HIGH
Local |
linux fedoraproject netapp debian |
linux_kernel fedora cloud_backup active_iq_unified_manager solidfire_baseboard_management_controller_firmware h410c_firmware h300s_firmware h500s_firmware h700s_firmware h3… |
A vulnerability was found in Linux Kernel where refcount leak in llcp_sock_bind() causing use-after-free which might lead to privilege escalations. | - | CVE-2020-25670 | 2024-11-21 14:18 | 2021-05-26 | Show | GitHub Exploit DB Packet Storm |
| 209489 | 7.5 |
HIGH
Network |
linux fedoraproject debian netapp |
linux_kernel fedora debian_linux cloud_backup active_iq_unified_manager solidfire_baseboard_management_controller_firmware h410c_firmware h300s_firmware h500s_firmware h700… |
A memory leak vulnerability was found in Linux kernel in llcp_sock_connect | - | CVE-2020-25672 | 2024-11-21 14:18 | 2021-05-26 | Show | GitHub Exploit DB Packet Storm |
| 209490 | 7.5 |
HIGH
Network |
openldap debian apple redhat |
openldap debian_linux macos mac_os_x jboss_core_services |
A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP’s slapd server, to trigger an assertion failure. The highest threat from this vu… |
CWE-617
Reachable Assertion |
CVE-2020-25709 | 2024-11-21 14:18 | 2021-05-18 | Show | GitHub Exploit DB Packet Storm |