Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 23, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 231501 | 4.3 | 警告 | Yahoo! | - | Yahoo! Messenger 用の YahooBridgeLib.dll におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4171 | 2012-12-20 19:28 | 2009-12-2 | Show | GitHub Exploit DB Packet Storm |
| 231502 | 5 | 警告 | roytanck | - | WordPress 用の WP-Cumulus プラグインにおける重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2009-4170 | 2012-12-20 19:28 | 2009-12-2 | Show | GitHub Exploit DB Packet Storm |
| 231503 | 4.3 | 警告 | roytanck | - | WordPress 用の WP-Cumulus プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4169 | 2012-12-20 19:28 | 2009-09-27 | Show | GitHub Exploit DB Packet Storm |
| 231504 | 4.3 | 警告 | roytanck | - | WordPress、Joomulus モジュール、および Joomla! 用の WP-Cumulus モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4168 | 2012-12-20 19:28 | 2009-11-15 | Show | GitHub Exploit DB Packet Storm |
| 231505 | 7.5 | 危険 | simple glossar | - | TYPO3 用の simple_glossar エクステンションにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-4165 | 2012-12-20 19:28 | 2009-12-2 | Show | GitHub Exploit DB Packet Storm |
| 231506 | 4.3 | 警告 | simple glossar | - | TYPO3 用の simple_glossar エクステンションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4164 | 2012-12-20 19:28 | 2009-12-2 | Show | GitHub Exploit DB Packet Storm |
| 231507 | 7.5 | 危険 | tw productfinder | - | TYPO3 用の TW Productfinder エクステンションにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-4163 | 2012-12-20 19:28 | 2009-12-2 | Show | GitHub Exploit DB Packet Storm |
| 231508 | 7.5 | 危険 | Piwik teethgrinder.co.uk |
- | Piwik などの製品で使用される Open Flash Chart Lug Wyrm Charmer における任意のコードを実行される脆弱性 |
CWE-Other
その他 |
CVE-2009-4140 | 2012-12-20 19:28 | 2009-10-21 | Show | GitHub Exploit DB Packet Storm |
| 231509 | 7.5 | 危険 | Piwik | - | Piwik の core/Cookie.php における任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-4137 | 2012-12-20 19:28 | 2009-12-9 | Show | GitHub Exploit DB Packet Storm |
| 231510 | 9.3 | 危険 | wikipedia | - | Firefox の Wikipedia Toolbar エクステンションにおける Chrome 権限を伴う任意の JavaScript を実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-4127 | 2012-12-20 19:28 | 2009-12-2 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 23, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 196691 | 9.8 |
CRITICAL
Network |
tobesoft | nexacro | An improper input validation leading to arbitrary file creation was discovered in copy method of Nexacro platform. Remote attackers use copy method to execute arbitrary command after the file creatio… |
CWE-20
Improper Input Validation |
CVE-2021-26612 | 2024-11-21 14:56 | 2021-12-1 | Show | GitHub Exploit DB Packet Storm |
| 196692 | 8.8 |
HIGH
Network |
bandisoft | ark_library | ARK library allows attackers to execute remote code via the parameter(path value) of Ark_NormalizeAndDupPAthNameW function because of an integer overflow. |
CWE-190
Integer Overflow or Wraparound |
CVE-2021-26615 | 2024-11-21 14:56 | 2021-11-27 | Show | GitHub Exploit DB Packet Storm |
| 196693 | 9.8 |
CRITICAL
Network |
hej | hejhome_gkw-ic052_firmware | HejHome GKW-IC052 IP Camera contained a hard-coded credentials vulnerability. This issue allows remote attackers to operate the IP Camera.(reboot, factory reset, snapshot etc..) |
CWE-798
Use of Hard-coded Credentials |
CVE-2021-26611 | 2024-11-21 14:56 | 2021-11-27 | Show | GitHub Exploit DB Packet Storm |
| 196694 | 9.8 |
CRITICAL
Network |
iptime | c200_firmware | ius_get.cgi in IpTime C200 camera allows remote code execution. A remote attacker may send a crafted parameters to the exposed vulnerable web service interface which invokes the arbitrary shell comma… |
NVD-CWE-noinfo
|
CVE-2021-26614 | 2024-11-21 14:56 | 2021-11-23 | Show | GitHub Exploit DB Packet Storm |
| 196695 | 5.5 |
MEDIUM
Local |
philips |
mri_3t_firmware mri_1.5t_firmware |
Philips MRI 1.5T and MRI 3T Version 5.x.x does not restrict or incorrectly restricts access to a resource from an unauthorized actor. |
NVD-CWE-Other
|
CVE-2021-26262 | 2024-11-21 14:56 | 2021-11-20 | Show | GitHub Exploit DB Packet Storm |
| 196696 | 5.5 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_7002_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware … |
Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA read from invalid DRAM address to SRAM resulting in SMU not servicing further requests. |
NVD-CWE-noinfo
|
CVE-2021-26337 | 2024-11-21 14:56 | 2021-11-17 | Show | GitHub Exploit DB Packet Storm |
| 196697 | 5.5 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_7002_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware … |
Insufficient bounds checking in System Management Unit (SMU) may cause invalid memory accesses/updates that could result in SMU hang and subsequent failure to service any further requests from other … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2021-26336 | 2024-11-21 14:56 | 2021-11-17 | Show | GitHub Exploit DB Packet Storm |
| 196698 | 7.8 |
HIGH
Local |
amd |
epyc_7003_firmware epyc_7002_firmware epyc_7001_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_73f3_firmware epyc_7413_firmware … |
Improper input and range checking in the AMD Secure Processor (ASP) boot loader image header may allow an attacker to use attacker-controlled values prior to signature validation potentially resultin… |
NVD-CWE-noinfo
|
CVE-2021-26335 | 2024-11-21 14:56 | 2021-11-17 | Show | GitHub Exploit DB Packet Storm |
| 196699 | 7.8 |
HIGH
Local |
amd |
epyc_7003_firmware epyc_7002_firmware epyc_7001_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_73f3_firmware epyc_7413_firmware … |
AMD System Management Unit (SMU) contains a potential issue where a malicious user may be able to manipulate mailbox entries leading to arbitrary code execution. |
NVD-CWE-noinfo
|
CVE-2021-26331 | 2024-11-21 14:56 | 2021-11-17 | Show | GitHub Exploit DB Packet Storm |
| 196700 | 5.5 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_7002_firmware epyc_7001_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_73f3_firmware epyc_7413_firmware … |
AMD System Management Unit (SMU) may experience a heap-based overflow which may result in a loss of resources. |
CWE-787
Out-of-bounds Write |
CVE-2021-26330 | 2024-11-21 14:56 | 2021-11-17 | Show | GitHub Exploit DB Packet Storm |