Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 14, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 245131 | 7.5 | 危険 | bhavesh chauhan Joomla! |
- | Joomla! 用の Quick News コンポーネントにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-4785 | 2012-06-26 16:19 | 2010-04-21 | Show | GitHub Exploit DB Packet Storm |
| 245132 | 9.3 | 危険 | Blizzard Entertainment, Inc. | - | Warcraft III: The Frozen Throne の JASS スクリプトインタプリタにおける任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-4768 | 2012-06-26 16:19 | 2010-04-20 | Show | GitHub Exploit DB Packet Storm |
| 245133 | 5 | 警告 | cnr.somee | - | CNR Hikaye Portal におけるデータベースをダウンロードされる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-4765 | 2012-06-26 16:19 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 245134 | 9.3 | 危険 | マイクロソフト アドビシステムズ |
- | Adobe Reader におけるユーザに任意のコードを実行させる脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-4764 | 2012-06-26 16:19 | 2010-04-5 | Show | GitHub Exploit DB Packet Storm |
| 245135 | 9.3 | 危険 | dicas | - | dicas Mpegable Player におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4758 | 2012-06-26 16:19 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 245136 | 9.3 | 危険 | evils-world | - | BrotherSoft EW-MusicPlayer におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4757 | 2012-06-26 16:19 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 245137 | 9.3 | 危険 | beatport | - | Beatport Player の TraktorBeatport.exe におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4756 | 2012-06-26 16:19 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 245138 | 7.5 | 危険 | andrew charlton WordPress.org |
- | WordPress の My Category Order プラグインの mycategoryorder.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-4748 | 2012-06-26 16:19 | 2010-03-26 | Show | GitHub Exploit DB Packet Storm |
| 245139 | 4.3 | 警告 | dreamlevels | - | Dreamlevels DreamPoll の index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4746 | 2012-06-26 16:19 | 2010-03-26 | Show | GitHub Exploit DB Packet Storm |
| 245140 | 7.5 | 危険 | dreamlevels | - | Dreamlevels DreamPoll の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-4745 | 2012-06-26 16:19 | 2010-03-26 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 14, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 218081 | 7.5 |
HIGH
Network |
sylabs | singularity | Sylabs Singularity 3.0 through 3.5 lacks support for an Integrity Check. Singularity's sign and verify commands do not sign metadata found in the global header or data object descriptors of a SIF fil… |
CWE-354
Improper Validation of Integrity Check Value |
CVE-2020-13847 | 2024-11-21 14:01 | 2020-07-15 | Show | GitHub Exploit DB Packet Storm |
| 218082 | 7.5 |
HIGH
Network |
sylabs | singularity | Sylabs Singularity 3.5.0 through 3.5.3 fails to report an error in a Status Code. |
NVD-CWE-Other
|
CVE-2020-13846 | 2024-11-21 14:01 | 2020-07-15 | Show | GitHub Exploit DB Packet Storm |
| 218083 | 7.5 |
HIGH
Network |
sylabs | singularity | Sylabs Singularity 3.0 through 3.5 has Improper Validation of an Integrity Check Value. Image integrity is not validated when an ECL policy is enforced. The fingerprint required by the ECL is compare… |
CWE-347 CWE-354 Improper Verification of Cryptographic Signature Improper Validation of Integrity Check Value |
CVE-2020-13845 | 2024-11-21 14:01 | 2020-07-15 | Show | GitHub Exploit DB Packet Storm |
| 218084 | 10.0 |
CRITICAL
Network |
wpewebkit webkitgtk fedoraproject debian canonical opensuse |
wpe_webkit webkitgtk fedora debian_linux ubuntu_linux leap |
The bubblewrap sandbox of WebKitGTK and WPE WebKit, prior to 2.28.3, failed to properly block access to CLONE_NEWUSER and the TIOCSTI ioctl. CLONE_NEWUSER could potentially be used to confuse xdg-des… |
CWE-20
Improper Input Validation |
CVE-2020-13753 | 2024-11-21 14:01 | 2020-07-14 | Show | GitHub Exploit DB Packet Storm |
| 218085 | 6.1 |
MEDIUM
Network |
synacor | zimbra_collaboration_suite | An XSS vulnerability exists in the Webmail component of Zimbra Collaboration Suite before 8.8.15 Patch 11. It allows an attacker to inject executable JavaScript into the account name of a user's prof… |
CWE-79
Cross-site Scripting |
CVE-2020-13653 | 2024-11-21 14:01 | 2020-07-3 | Show | GitHub Exploit DB Packet Storm |
| 218086 | 9.8 |
CRITICAL
Network |
locutus | locutus_php | php/exec/escapeshellarg in Locutus PHP through 2.0.11 allows an attacker to achieve code execution. |
CWE-78
OS Command |
CVE-2020-13619 | 2024-11-21 14:01 | 2020-07-2 | Show | GitHub Exploit DB Packet Storm |
| 218087 | 7.5 |
HIGH
Network |
os4ed | opensis | openSIS through 7.4 allows Directory Traversal. |
CWE-22
Path Traversal |
CVE-2020-13383 | 2024-11-21 14:01 | 2020-07-2 | Show | GitHub Exploit DB Packet Storm |
| 218088 | 9.1 |
CRITICAL
Network |
os4ed | opensis | openSIS through 7.4 has Incorrect Access Control. |
CWE-306
Missing Authentication for Critical Function |
CVE-2020-13382 | 2024-11-21 14:01 | 2020-07-2 | Show | GitHub Exploit DB Packet Storm |
| 218089 | 9.8 |
CRITICAL
Network |
os4ed | opensis | openSIS through 7.4 allows SQL Injection. |
CWE-89
SQL Injection |
CVE-2020-13381 | 2024-11-21 14:01 | 2020-07-2 | Show | GitHub Exploit DB Packet Storm |
| 218090 | 9.8 |
CRITICAL
Network |
os4ed | opensis | openSIS before 7.4 allows SQL Injection. |
CWE-89
SQL Injection |
CVE-2020-13380 | 2024-11-21 14:01 | 2020-07-2 | Show | GitHub Exploit DB Packet Storm |