Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 11, 2026, 6:13 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 246421 | 9.3 | 危険 | BoonEx | - | Boonex Orca の layout/default/params.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-5167 | 2012-06-26 16:03 | 2008-11-19 | Show | GitHub Exploit DB Packet Storm |
| 246422 | 7.5 | 危険 | easysitenetwork | - | Riddles Website の riddle.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-5166 | 2012-06-26 16:03 | 2008-11-19 | Show | GitHub Exploit DB Packet Storm |
| 246423 | 7.5 | 危険 | eticket | - | eTicket における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-5165 | 2012-06-26 16:03 | 2008-11-19 | Show | GitHub Exploit DB Packet Storm |
| 246424 | 10 | 危険 | clientsoftware | - | Client Software WinCom LPD Total のリモート管理プロトコル処理における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2008-5159 | 2012-06-26 16:03 | 2008-11-18 | Show | GitHub Exploit DB Packet Storm |
| 246425 | 7.5 | 危険 | clientsoftware | - | Client Software WinCom LPD Total における管理者操作を実行される脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-5158 | 2012-06-26 16:03 | 2008-11-18 | Show | GitHub Exploit DB Packet Storm |
| 246426 | 6.9 | 警告 | dann frazier | - | systemimager-server の si_mkbootserver における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-5156 | 2012-06-26 16:03 | 2008-08-13 | Show | GitHub Exploit DB Packet Storm |
| 246427 | 6.9 | 警告 | abottoms | - | mayavi の test_parser.py における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-5151 | 2012-06-26 16:03 | 2008-11-18 | Show | GitHub Exploit DB Packet Storm |
| 246428 | 6.9 | 警告 | aucko | - | libncbi6 の fwd_check.sh における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-5149 | 2012-06-26 16:03 | 2008-11-18 | Show | GitHub Exploit DB Packet Storm |
| 246429 | 6.9 | 警告 | geda | - | geda-gnetlist の sch2eaglepos.sh における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-5148 | 2012-06-26 16:03 | 2008-11-18 | Show | GitHub Exploit DB Packet Storm |
| 246430 | 6.9 | 警告 | erl wustl | - | ctn の add-accession-numbers における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-5146 | 2012-06-26 16:03 | 2008-11-18 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 11, 2026, 5:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 218611 | 8.8 |
HIGH
Network |
opmantek | open-audit | An issue was discovered in Open-AudIT 3.2.2. There is Arbitrary file upload. |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2020-11943 | 2024-11-21 13:58 | 2020-04-30 | Show | GitHub Exploit DB Packet Storm |
| 218612 | 9.8 |
CRITICAL
Network |
opmantek | open-audit | An issue was discovered in Open-AudIT 3.2.2. There are Multiple SQL Injections. |
CWE-89
SQL Injection |
CVE-2020-11942 | 2024-11-21 13:58 | 2020-04-30 | Show | GitHub Exploit DB Packet Storm |
| 218613 | 8.8 |
HIGH
Adjacent |
cerner | medico | Cerner medico 26.00 has a Local Buffer Overflow (issue 3 of 3). |
CWE-120
Classic Buffer Overflow |
CVE-2020-11677 | 2024-11-21 13:58 | 2020-04-29 | Show | GitHub Exploit DB Packet Storm |
| 218614 | 8.8 |
HIGH
Adjacent |
cerner | medico | Cerner medico 26.00 has a Local Buffer Overflow (issue 2 of 3). |
CWE-120
Classic Buffer Overflow |
CVE-2020-11676 | 2024-11-21 13:58 | 2020-04-29 | Show | GitHub Exploit DB Packet Storm |
| 218615 | 8.8 |
HIGH
Adjacent |
cerner | medico | Cerner medico 26.00 has a Local Buffer Overflow (issue 1 of 3). |
CWE-120
Classic Buffer Overflow |
CVE-2020-11675 | 2024-11-21 13:58 | 2020-04-29 | Show | GitHub Exploit DB Packet Storm |
| 218616 | 8.8 |
HIGH
Adjacent |
cerner | medico | Cerner medico 26.00 allows variable reuse, possibly causing data corruption. |
NVD-CWE-noinfo
|
CVE-2020-11674 | 2024-11-21 13:58 | 2020-04-29 | Show | GitHub Exploit DB Packet Storm |
| 218617 | 7.0 |
HIGH
Local |
linux canonical debian fedoraproject netapp |
linux_kernel ubuntu_linux debian_linux fedora cloud_backup element_software steelstore_cloud_integrated_storage solidfire hci_management_node active_iq_unified_manager s… |
In the Linux kernel 4.19 through 5.6.7 on the s390 platform, code execution may occur because of a race condition, as demonstrated by code in enable_sacf_uaccess in arch/s390/lib/uaccess.c that fails… |
CWE-362
Race Condition |
CVE-2020-11884 | 2024-11-21 13:58 | 2020-04-29 | Show | GitHub Exploit DB Packet Storm |
| 218618 | 3.3 |
LOW
Local |
qemu | qemu | An integer overflow was found in QEMU 4.0.1 through 4.2.0 in the way it implemented ATI VGA emulation. This flaw occurs in the ati_2d_blt() routine in hw/display/ati-2d.c while handling MMIO write op… |
CWE-190
Integer Overflow or Wraparound |
CVE-2020-11869 | 2024-11-21 13:58 | 2020-04-28 | Show | GitHub Exploit DB Packet Storm |
| 218619 | 8.8 |
HIGH
Network |
opmantek | open-audit | An issue was discovered in Open-AudIT 3.2.2. There is OS Command injection in Discovery. |
CWE-78
OS Command |
CVE-2020-11941 | 2024-11-21 13:58 | 2020-04-28 | Show | GitHub Exploit DB Packet Storm |
| 218620 | 6.1 |
MEDIUM
Network |
rukovoditel | rukovoditel | In Rukovoditel 2.5.2, there is a stored XSS vulnerability on the application structure --> user access groups page. Thus, an attacker can inject malicious script to steal all users' valuable data. |
CWE-79
Cross-site Scripting |
CVE-2020-11822 | 2024-11-21 13:58 | 2020-04-28 | Show | GitHub Exploit DB Packet Storm |