Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 23, 2026, 10:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 246121 | 9.3 | 危険 | energizer | - | Energizer DUO USB の UsbCharger.dll におけるプログラムを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0103 | 2012-06-26 16:19 | 2010-03-10 | Show | GitHub Exploit DB Packet Storm |
| 246122 | 7.5 | 危険 | GNU Project | - | GNU C Library の nis/nss_nis/nis-pwd.c における NIS アカウントの暗号化されたパスワードを取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2010-0015 | 2012-06-26 16:19 | 2010-01-14 | Show | GitHub Exploit DB Packet Storm |
| 246123 | 3.7 | 注意 | Fedora Project | - | SSSD における制限されたアクセスを回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2010-0014 | 2012-06-26 16:19 | 2010-01-14 | Show | GitHub Exploit DB Packet Storm |
| 246124 | 4.3 | 警告 | Apache Software Foundation | - | Apache CouchDB における重要情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-0009 | 2012-06-26 16:19 | 2010-04-5 | Show | GitHub Exploit DB Packet Storm |
| 246125 | 2.1 | 注意 | GNU Project | - | Bash の /etc/profile.d/60alias.sh スクリプトにおける存在するファイルを非表示にされる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0002 | 2012-06-26 16:19 | 2010-01-14 | Show | GitHub Exploit DB Packet Storm |
| 246126 | 4.3 | 警告 | aj square | - | AJ Auction Pro OOPD の index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4989 | 2012-06-26 16:19 | 2010-08-25 | Show | GitHub Exploit DB Packet Storm |
| 246127 | 7.5 | 危険 | TYPO3 Association christian ehmann |
- | TYPO3 の event_registr 拡張における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-4968 | 2012-06-26 16:19 | 2010-07-28 | Show | GitHub Exploit DB Packet Storm |
| 246128 | 7.5 | 危険 | elemente TYPO3 Association |
- | TYPO3 の ast_addresszipsearch 拡張における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-4966 | 2012-06-26 16:19 | 2010-07-28 | Show | GitHub Exploit DB Packet Storm |
| 246129 | 9.3 | 危険 | adammo | - | Fat Player におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4962 | 2012-06-26 16:19 | 2010-07-28 | Show | GitHub Exploit DB Packet Storm |
| 246130 | 7.5 | 危険 | Emophp Programming | - | EMO Breeder Manager の video.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-4958 | 2012-06-26 16:19 | 2010-07-28 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 23, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 220651 | 7.1 |
HIGH
Network |
mobile-industrial-robots easyrobotics uvd-robots |
mir100_firmware mir200_firmware mir250_firmware mir500_firmware mir1000_firmware er200_firmware er-lite_firmware er-flex_firmware er-one_firmware uvd_firmware |
The access tokens for the REST API are directly derived (sha256 and base64 encoding) from the publicly available default credentials from the Control Dashboard (refer to CVE-2020-10270 for related fl… |
CWE-330
Use of Insufficiently Random Values |
CVE-2020-10274 | 2024-11-21 13:55 | 2020-06-24 | Show | GitHub Exploit DB Packet Storm |
| 220652 | 7.5 |
HIGH
Network |
aliasrobotics mobile-industrial-robotics enabled-robotics uvd-robots |
mir100_firmware mir200_firmware mir250_firmware mir500_firmware mir1000_firmware er200_firmware er-lite_firmware er-flex_firmware er-one_firmware uvd_robots_firmware |
MiR controllers across firmware versions 2.8.1.1 and before do not encrypt or protect in any way the intellectual property artifacts installed in the robots. This flaw allows attackers with access to… |
CWE-312
Cleartext Storage of Sensitive Information |
CVE-2020-10273 | 2024-11-21 13:55 | 2020-06-24 | Show | GitHub Exploit DB Packet Storm |
| 220653 | 9.8 |
CRITICAL
Network |
aliasrobotics mobile-industrial-robotics enabled-robotics uvd-robots |
mir100_firmware mir200_firmware mir250_firmware mir500_firmware mir1000_firmware er200_firmware er-lite_firmware er-flex_firmware er-one_firmware uvd_robots_firmware |
MiR100, MiR200 and other MiR robots use the Robot Operating System (ROS) default packages exposing the computational graph without any sort of authentication. This allows attackers with access to the… |
CWE-306
Missing Authentication for Critical Function |
CVE-2020-10272 | 2024-11-21 13:55 | 2020-06-24 | Show | GitHub Exploit DB Packet Storm |
| 220654 | 9.8 |
CRITICAL
Network |
aliasrobotics mobile-industrial-robotics enabled-robotics uvd-robots |
mir100_firmware mir200_firmware mir250_firmware mir500_firmware mir1000_firmware er200_firmware er-lite_firmware er-flex_firmware er-one_firmware uvd_robots_firmware |
MiR100, MiR200 and other MiR robots use the Robot Operating System (ROS) default packages exposing the computational graph to all network interfaces, wireless and wired. This is the result of a bad s… |
CWE-668
Exposure of Resource to Wrong Sphere |
CVE-2020-10271 | 2024-11-21 13:55 | 2020-06-24 | Show | GitHub Exploit DB Packet Storm |
| 220655 | 9.8 |
CRITICAL
Network |
aliasrobotics mobile-industrial-robotics enabled-robotics uvd-robots |
mir100_firmware mir200_firmware mir250_firmware mir500_firmware mir1000_firmware er200_firmware er-lite_firmware er-flex_firmware er-one_firmware uvd_robots_firmware |
Out of the wired and wireless interfaces within MiR100, MiR200 and other vehicles from the MiR fleet, it's possible to access the Control Dashboard on a hardcoded IP address. Credentials to such wire… |
CWE-798
Use of Hard-coded Credentials |
CVE-2020-10270 | 2024-11-21 13:55 | 2020-06-24 | Show | GitHub Exploit DB Packet Storm |
| 220656 | 9.8 |
CRITICAL
Network |
aliasrobotics mobile-industrial-robotics enabled-robotics uvd-robots |
mir100_firmware mir200_firmware mir250_firmware mir500_firmware mir1000_firmware er200_firmware er-lite_firmware er-flex_firmware er-one_firmware uvd_robots_firmware |
One of the wireless interfaces within MiR100, MiR200 and possibly (according to the vendor) other MiR fleet vehicles comes pre-configured in WiFi Master (Access Point) mode. Credentials to such wirel… |
CWE-798
Use of Hard-coded Credentials |
CVE-2020-10269 | 2024-11-21 13:55 | 2020-06-24 | Show | GitHub Exploit DB Packet Storm |
| 220657 | 7.5 |
HIGH
Network |
redhat | wildfly | A vulnerability was found in Wildfly in versions before 20.0.0.Final, where a remote deserialization attack is possible in the Enterprise Application Beans(EJB) due to lack of validation/filtering ca… |
CWE-502
Deserialization of Untrusted Data |
CVE-2020-10740 | 2024-11-21 13:55 | 2020-06-23 | Show | GitHub Exploit DB Packet Storm |
| 220658 | 8.0 |
HIGH
Adjacent |
linuxfoundation | ceph | An authorization bypass vulnerability was found in Ceph versions 15.2.0 before 15.2.2, where the ceph-mon and ceph-mgr daemons do not properly restrict access, resulting in gaining access to unauthor… |
NVD-CWE-Other
|
CVE-2020-10736 | 2024-11-21 13:55 | 2020-06-23 | Show | GitHub Exploit DB Packet Storm |
| 220659 | 5.5 |
MEDIUM
Local |
linuxfoundation | jaeger | Sensitive information written to a log file vulnerability was found in jaegertracing/jaeger before version 1.18.1 when the Kafka data store is used. This flaw allows an attacker with access to the co… |
CWE-532
Inclusion of Sensitive Information in Log Files |
CVE-2020-10750 | 2024-11-21 13:55 | 2020-06-20 | Show | GitHub Exploit DB Packet Storm |
| 220660 | 6.1 |
MEDIUM
Physics |
kuka | kr_c4_firmware | Critical services for operation can be terminated from windows task manager, bringing the manipulator to a halt. After this a Re-Calibration of the brakes needs to be performed. Be noted that this on… |
NVD-CWE-noinfo
|
CVE-2020-10268 | 2024-11-21 13:55 | 2020-06-17 | Show | GitHub Exploit DB Packet Storm |