Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 15, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 230961 | 5 | 警告 | tptest | - | TPTEST の GetStatsFromLine 関数におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-0659 | 2012-12-20 19:10 | 2009-02-20 | Show | GitHub Exploit DB Packet Storm |
| 230962 | 5.1 | 警告 | The Tor Project | - | Tor における送信元および送信先間の通信を特定される脆弱性 |
CWE-Other
その他 |
CVE-2009-0654 | 2012-12-20 19:10 | 2009-02-20 | Show | GitHub Exploit DB Packet Storm |
| 230963 | 10 | 危険 | tptest | - | TPTEST の GetStatsFromLine 関数におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-0650 | 2012-12-20 19:10 | 2009-02-20 | Show | GitHub Exploit DB Packet Storm |
| 230964 | 5 | 警告 | swannsecurity | - | Swann DVR4-SecuraNet の HTTP インターフェースにおける昇格したアクセス権を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2009-0644 | 2012-12-20 19:10 | 2009-02-18 | Show | GitHub Exploit DB Packet Storm |
| 230965 | 5 | 警告 | swannsecurity | - | Swann DVR4-SecuraNet の管理 Web サーバにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2009-0640 | 2012-12-20 19:10 | 2009-02-20 | Show | GitHub Exploit DB Packet Storm |
| 230966 | 7.5 | 危険 | phpyabs | - | phpyabs の moduli/libri/index.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-0639 | 2012-12-20 19:10 | 2009-02-18 | Show | GitHub Exploit DB Packet Storm |
| 230967 | 7.5 | 危険 | wikkitikkitavi | - | WikkiTikkiTavi の upload.php における任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-0602 | 2012-12-20 19:10 | 2009-02-16 | Show | GitHub Exploit DB Packet Storm |
| 230968 | 7.5 | 危険 | phpmesfilms | - | PhpMesFilms の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-0598 | 2012-12-20 19:10 | 2009-02-16 | Show | GitHub Exploit DB Packet Storm |
| 230969 | 6.8 | 警告 | w3bcms | - | w3b>cms の admin/index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-0597 | 2012-12-20 19:10 | 2009-02-16 | Show | GitHub Exploit DB Packet Storm |
| 230970 | 6.8 | 警告 | phpskelsite | - | phpSkelSite の skysilver/login.tpl.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2009-0596 | 2012-12-20 19:10 | 2009-02-16 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 15, 2026, 4:10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 196281 | 9.1 |
CRITICAL
Network |
mitreid | connect | The OpenID Connect server implementation for MITREid Connect through 1.3.3 contains a Server Side Request Forgery (SSRF) vulnerability. The vulnerability arises due to unsafe usage of the logo_uri pa… |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2021-26715 | 2024-11-21 14:56 | 2021-03-25 | Show | GitHub Exploit DB Packet Storm |
| 196282 | 7.5 |
HIGH
Network |
hpe | network_orchestrator | A potential security vulnerability has been identified in HPE Network Orchestrator (NetO) version(s): Prior to 2.5. The vulnerability could be remotely exploited with SQL injection. |
CWE-89
SQL Injection |
CVE-2021-26578 | 2024-11-21 14:56 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 196283 | 9.8 |
CRITICAL
Network |
apache | ofbiz | Apache OFBiz has unsafe deserialization prior to 17.12.06. An unauthenticated attacker can use this vulnerability to successfully take over Apache OFBiz. |
CWE-502
Deserialization of Untrusted Data |
CVE-2021-26295 | 2024-11-21 14:56 | 2021-03-22 | Show | GitHub Exploit DB Packet Storm |
| 196284 | 9.8 |
CRITICAL
Network |
eslint-fixer_project | eslint-fixer | The eslint-fixer package through 0.1.5 for Node.js allows command injection via shell metacharacters to the fix function. NOTE: This vulnerability only affects products that are no longer supported b… |
CWE-77
Command Injection |
CVE-2021-26275 | 2024-11-21 14:56 | 2021-03-19 | Show | GitHub Exploit DB Packet Storm |
| 196285 | 8.1 |
HIGH
Network |
synology | diskstation_manager | Race Condition within a Thread vulnerability in iscsi_snapshot_comm_core in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows remote attackers to execute arbitrary code via crafted web r… |
CWE-362
Race Condition |
CVE-2021-26569 | 2024-11-21 14:56 | 2021-03-12 | Show | GitHub Exploit DB Packet Storm |
| 196286 | 5.4 |
MEDIUM
Network |
cszcms | csz_cms | CSZ CMS 1.2.9 is affected by a cross-site scripting (XSS) vulnerability in multiple pages through the field name. |
CWE-79
Cross-site Scripting |
CVE-2021-26776 | 2024-11-21 14:56 | 2021-03-12 | Show | GitHub Exploit DB Packet Storm |
| 196287 | 7.8 |
HIGH
Local |
microsoft |
windows_10 windows_server_2008 windows_server_2016 windows_rt_8.1 windows_server_2012 windows_server_2019 windows_8.1 windows_7 |
Windows UPnP Device Host Elevation of Privilege Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-26899 | 2024-11-21 14:56 | 2021-03-12 | Show | GitHub Exploit DB Packet Storm |
| 196288 | 7.8 |
HIGH
Local |
microsoft |
windows_10 windows_server_2008 windows_server_2016 windows_rt_8.1 windows_server_2012 windows_server_2019 windows_8.1 windows_7 |
Windows Event Tracing Elevation of Privilege Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-26898 | 2024-11-21 14:56 | 2021-03-12 | Show | GitHub Exploit DB Packet Storm |
| 196289 | 9.8 |
CRITICAL
Network |
microsoft |
windows_server_2008 windows_server_2016 windows_server_2012 windows_server_2019 |
Windows DNS Server Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-26897 | 2024-11-21 14:56 | 2021-03-12 | Show | GitHub Exploit DB Packet Storm |
| 196290 | 7.5 |
HIGH
Network |
microsoft |
windows_server_2008 windows_server_2016 windows_server_2012 windows_server_2019 |
Windows DNS Server Denial of Service Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-26896 | 2024-11-21 14:56 | 2021-03-12 | Show | GitHub Exploit DB Packet Storm |