Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 23, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 231511 | 10 | 危険 | Ruby-lang.org | - | Ruby の string.c におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4124 | 2012-12-20 19:28 | 2009-12-11 | Show | GitHub Exploit DB Packet Storm |
| 231512 | 3.5 | 注意 | TYPSoft | - | TYPSoft FTP Server におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-4105 | 2012-12-20 19:28 | 2009-11-29 | Show | GitHub Exploit DB Packet Storm |
| 231513 | 9.3 | 危険 | robo-ftp | - | Robo-FTP におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4103 | 2012-12-20 19:28 | 2009-11-29 | Show | GitHub Exploit DB Packet Storm |
| 231514 | 9.3 | 危険 | Yoono | - | Firefox 用の Yoono における任意のコマンドを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-4100 | 2012-12-20 19:28 | 2009-11-29 | Show | GitHub Exploit DB Packet Storm |
| 231515 | 7.5 | 危険 | scriptlerim | - | RADIO istek scripti におけるユーザの資格情報を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2009-4096 | 2012-12-20 19:28 | 2009-11-29 | Show | GitHub Exploit DB Packet Storm |
| 231516 | 4.3 | 警告 | simplog | - | Simplog の comments.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4093 | 2012-12-20 19:28 | 2009-11-29 | Show | GitHub Exploit DB Packet Storm |
| 231517 | 6.8 | 警告 | simplog | - | Simplog の user.php におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2009-4092 | 2012-12-20 19:28 | 2009-11-29 | Show | GitHub Exploit DB Packet Storm |
| 231518 | 5 | 警告 | simplog | - | Simplog の comments.php におけるコメントを編集される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-4091 | 2012-12-20 19:28 | 2009-11-29 | Show | GitHub Exploit DB Packet Storm |
| 231519 | 7.5 | 危険 | telepark | - | telepark.wiki の ajax/addComment.php における任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-4090 | 2012-12-20 19:28 | 2009-11-29 | Show | GitHub Exploit DB Packet Storm |
| 231520 | 5 | 警告 | telepark | - | telepark.wiki における認可を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2009-4089 | 2012-12-20 19:28 | 2009-11-29 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 23, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 209371 | 6.8 |
MEDIUM
Adjacent |
netgear |
r7500_firmware r8900_firmware r9000_firmware r7800_firmware |
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R7500v2 before 1.0.3.48, R8900 before 1.0.5.2, R9000 before 1.0.5.2, and R7800 before 1.0.2.68. |
CWE-77
Command Injection |
CVE-2020-35792 | 2024-11-21 14:28 | 2020-12-30 | Show | GitHub Exploit DB Packet Storm |
| 209372 | 6.7 |
MEDIUM
Local |
netgear |
r7800_firmware r8900_firmware r9000_firmware |
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R7800 before 1.0.2.68, R8900 before 1.0.5.2, and R9000 before 1.0.5.2. |
CWE-77
Command Injection |
CVE-2020-35791 | 2024-11-21 14:28 | 2020-12-30 | Show | GitHub Exploit DB Packet Storm |
| 209373 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware rbk40_firmware rbr40_firmware rbs40_firmware rbk20_firmware rbr20_firmware rbs20_firmware … |
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK20 before 2.3.5… |
CWE-79
Cross-site Scripting |
CVE-2020-35814 | 2024-11-21 14:28 | 2020-12-30 | Show | GitHub Exploit DB Packet Storm |
| 209374 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500v2_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware rbk40_firmware rbr40_firmware rbs40_firmware rbk20_firmware rbr20_firmware
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, RBK40 before 2.3.5.30, RBR40 before 2.3.5.…
|
CWE-79
|
Cross-site Scripting
CVE-2020-35813
|
2024-11-21 14:28 |
2020-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 209375 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500v2_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware rbk40_firmware rbr40_firmware rbs40_firmware rbk20_firmware rbr20_firmware
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0…
|
CWE-79
|
Cross-site Scripting
CVE-2020-35812
|
2024-11-21 14:28 |
2020-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 209376 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500v2_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware rbk20_firmware rbr20_firmware rbs20_firmware rbk40_firmware rbr40_firmware
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0…
|
CWE-79
|
Cross-site Scripting
CVE-2020-35811
|
2024-11-21 14:28 |
2020-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 209377 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500v2_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware rbk40_firmware rbr40_firmware rbs40_firmware rbk20_firmware rbr20_firmware
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0…
|
CWE-79
|
Cross-site Scripting
CVE-2020-35810
|
2024-11-21 14:28 |
2020-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 209378 | 6.8 |
MEDIUM
Adjacent |
netgear |
d7800_firmware r7800_firmware r8900_firmware r9000_firmware |
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.56, R7800 before 1.0.2.68, R8900 before 1.0.4.26, and R9000 before 1.0.4.26. |
CWE-77
Command Injection |
CVE-2020-35790 | 2024-11-21 14:28 | 2020-12-30 | Show | GitHub Exploit DB Packet Storm |
| 209379 | 8.8 |
HIGH
Network |
netgear | nms300_firmware | NETGEAR NMS300 devices before 1.6.0.27 are affected by command injection by an authenticated user. |
CWE-20 CWE-78 Improper Input Validation OS Command |
CVE-2020-35789 | 2024-11-21 14:28 | 2020-12-30 | Show | GitHub Exploit DB Packet Storm |
| 209380 | 6.8 |
MEDIUM
Adjacent |
netgear | wac104_firmware | NETGEAR WAC104 devices before 1.0.4.13 are affected by a buffer overflow by an authenticated user. |
CWE-120
Classic Buffer Overflow |
CVE-2020-35788 | 2024-11-21 14:28 | 2020-12-30 | Show | GitHub Exploit DB Packet Storm |