Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 23, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 245351 | 7.5 | 危険 | agaresmedia | - | Agares phpAutoVideo の theme/phpAutoVideo/LightTwoOh/sidebar.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-0433 | 2012-06-26 15:55 | 2008-01-23 | Show | GitHub Exploit DB Packet Storm |
| 245352 | 4.3 | 警告 | agaresmedia | - | phpAutoVideo の index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-0432 | 2012-06-26 15:55 | 2008-01-23 | Show | GitHub Exploit DB Packet Storm |
| 245353 | 7.5 | 危険 | 360 web manager | - | 360 Web Manager の form.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-0430 | 2012-06-26 15:55 | 2008-01-23 | Show | GitHub Exploit DB Packet Storm |
| 245354 | 7.5 | 危険 | AlstraSoft | - | AlstraSoft Forum Pay Per Post Exchange の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-0429 | 2012-06-26 15:55 | 2008-01-23 | Show | GitHub Exploit DB Packet Storm |
| 245355 | 7.5 | 危険 | bloofox | - | bloofoxCMS の system/class_permissions.php の login 関数における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-0428 | 2012-06-26 15:55 | 2008-01-23 | Show | GitHub Exploit DB Packet Storm |
| 245356 | 7.8 | 危険 | bloofox | - | bloofoxCMS の file.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-0427 | 2012-06-26 15:55 | 2008-01-23 | Show | GitHub Exploit DB Packet Storm |
| 245357 | 5 | 警告 | frimousse | - | Frimousse の explorerdir.php における絶対パストラバーサルの脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-0425 | 2012-06-26 15:55 | 2008-01-23 | Show | GitHub Exploit DB Packet Storm |
| 245358 | 7.5 | 危険 | boastmachine | - | boastMachine の mail.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-0422 | 2012-06-26 15:55 | 2008-01-23 | Show | GitHub Exploit DB Packet Storm |
| 245359 | 5.5 | 警告 | Belkin International | - | Belkin Wireless G Plus MIMO Router F5D9230-4 の Web サーバにおける設定を変更される脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-0403 | 2012-06-26 15:55 | 2008-01-23 | Show | GitHub Exploit DB Packet Storm |
| 245360 | 4.3 | 警告 | aflog | - | aflog におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-0398 | 2012-06-26 15:55 | 2008-01-23 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 23, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 218651 | 7.5 |
HIGH
Network |
abine | blur | Abine Blur 7.8.2431 allows remote attackers to conduct "Second-Factor Auth Bypass" attacks by using the "Perform a right-click operation to access a forgotten dev menu to insert user passwords that o… |
CWE-287
Improper Authentication |
CVE-2019-6481 | 2024-11-21 13:46 | 2019-03-29 | Show | GitHub Exploit DB Packet Storm |
| 218652 | 6.8 |
MEDIUM
Network |
f5 | big-ip_application_security_manager | On BIG-IP ASM 11.5.1-11.5.8, 11.6.1-11.6.3, 12.1.0-12.1.3, 13.0.0-13.1.1.3, and 14.0.0-14.0.0.2, there is a stored cross-site scripting vulnerability in an ASM violation viewed in the Configuration u… |
CWE-352
Origin Validation Error |
CVE-2019-6607 | 2024-11-21 13:46 | 2019-03-29 | Show | GitHub Exploit DB Packet Storm |
| 218653 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_edge_gateway big-ip_fraud_protection_service big-ip_global_traffic_manager<… |
On BIG-IP 11.5.1-11.6.3, 12.1.0-12.1.3, 13.0.0-13.1.1.1, and 14.0.0-14.0.0.2, under certain conditions, the snmpd daemon may leak memory on a multi-blade BIG-IP vCMP guest when processing authorized … |
CWE-401
Missing Release of Memory after Effective Lifetime |
CVE-2019-6608 | 2024-11-21 13:46 | 2019-03-29 | Show | GitHub Exploit DB Packet Storm |
| 218654 | 4.3 |
MEDIUM
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_edge_gateway big-ip_fraud_protection_service big-ip_global_traffic_manager<… |
On BIG-IP 11.5.1-11.6.3.4, 12.1.0-12.1.3.7, 13.0.0-13.1.1.3, and 14.0.0-14.0.0.2, when processing certain SNMP requests with a request-id of 0, the snmpd process may leak a small amount of memory. |
CWE-401
Missing Release of Memory after Effective Lifetime |
CVE-2019-6606 | 2024-11-21 13:46 | 2019-03-29 | Show | GitHub Exploit DB Packet Storm |
| 218655 | 7.5 |
HIGH
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_edge_gateway big-ip_fraud_protection_service big-ip_global_traffic_manager<… |
On BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, and 12.0.x, an undisclosed sequence of packets received by an SSL virtual server and processed by an associated Client SSL or Server SSL profile may cause a de… |
NVD-CWE-noinfo
|
CVE-2019-6605 | 2024-11-21 13:46 | 2019-03-29 | Show | GitHub Exploit DB Packet Storm |
| 218656 | 6.8 |
MEDIUM
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_edge_gateway big-ip_fraud_protection_service big-ip_global_traffic_manager<… |
On BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, 12.1.0-12.1.3.6, 13.0.0-13.1.1.1, and 14.0.0-14.0.0.2, under certain conditions, hardware systems with a High-Speed Bridge and using non-default Layer 2 forwar… |
NVD-CWE-noinfo
|
CVE-2019-6604 | 2024-11-21 13:46 | 2019-03-29 | Show | GitHub Exploit DB Packet Storm |
| 218657 | 7.5 |
HIGH
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_edge_gateway big-ip_fraud_protection_service big-ip_global_traffic_manager<… |
In BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, 12.1.0-12.1.3, and 13.0.0-13.0.1, malformed TCP packets sent to a self IP address or a FastL4 virtual server may cause an interruption of service. The control … |
NVD-CWE-noinfo
|
CVE-2019-6603 | 2024-11-21 13:46 | 2019-03-29 | Show | GitHub Exploit DB Packet Storm |
| 218658 | 7.5 |
HIGH
Network |
f5 |
big-ip_application_acceleration_manager big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<… |
In BIG-IP 11.5.1-11.5.8 and 11.6.1-11.6.3, the Configuration Utility login page may not follow best security practices when handling a malicious request. |
CWE-203
Information Exposure Through Discrepancy |
CVE-2019-6602 | 2024-11-21 13:46 | 2019-03-29 | Show | GitHub Exploit DB Packet Storm |
| 218659 | 7.5 |
HIGH
Network |
enttec |
datagate_mk2_firmware storm_24_firmware pixelator_firmware |
ENTTEC Datagate MK2, Storm 24, Pixelator all firmware versions prior to (70044,70050,70060)_update_05032019-482 allows an unauthenticated user to initiate a remote reboot, which may be used to cause … |
CWE-306
Missing Authentication for Critical Function |
CVE-2019-6542 | 2024-11-21 13:46 | 2019-03-28 | Show | GitHub Exploit DB Packet Storm |
| 218660 | 7.8 |
HIGH
Local |
lcds | laquis_scada | Opening a specially crafted LCDS LAquis SCADA before 4.3.1.71 ELS file may result in a write past the end of an allocated buffer, which may allow an attacker to execute remote code in the context of … |
CWE-787
Out-of-bounds Write |
CVE-2019-6536 | 2024-11-21 13:46 | 2019-03-28 | Show | GitHub Exploit DB Packet Storm |