Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 21, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 246451 | 7.5 | 危険 | glFusion | - | glFusion の private/system/lib-session.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-1282 | 2012-06-26 16:10 | 2009-04-9 | Show | GitHub Exploit DB Packet Storm |
| 246452 | 4.3 | 警告 | glFusion | - | glFusion におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-1281 | 2012-06-26 16:10 | 2009-04-9 | Show | GitHub Exploit DB Packet Storm |
| 246453 | 7.5 | 危険 | gravityboardx | - | GBX の forms/ajax/configure.php における任意の PHP コードを挿入される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-1278 | 2012-06-26 16:10 | 2009-04-9 | Show | GitHub Exploit DB Packet Storm |
| 246454 | 7.5 | 危険 | gravityboardx | - | GBX の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-1277 | 2012-06-26 16:10 | 2009-04-9 | Show | GitHub Exploit DB Packet Storm |
| 246455 | 6.8 | 警告 | Apache Software Foundation | - | Apache Struts などで使用される Apache Tiles における重要情報を取得される脆弱性 |
CWE-Other
その他 |
CVE-2009-1275 | 2012-06-26 16:10 | 2009-04-9 | Show | GitHub Exploit DB Packet Storm |
| 246456 | 5 | 警告 | andrew j.korty | - | USE=ssh でコンパイルされた PAM で使用される pam_ssh におけるユーザ名が列挙される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2009-1273 | 2012-06-26 16:10 | 2009-04-8 | Show | GitHub Exploit DB Packet Storm |
| 246457 | 7.5 | 危険 | alikonweb Joomla! |
- | Joomla! の bookjoomlas コンポーネントの sub_commententry.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-1263 | 2012-06-26 16:10 | 2009-04-7 | Show | GitHub Exploit DB Packet Storm |
| 246458 | 7.2 | 危険 | フォーティネット | - | Fortinet FortiClient におけるフォーマットストリングの脆弱性 |
CWE-134
書式文字列の問題 |
CVE-2009-1262 | 2012-06-26 16:10 | 2009-04-7 | Show | GitHub Exploit DB Packet Storm |
| 246459 | 9.3 | 危険 | EZB Systems | - | UltraISO におけるスタックベースのバッファーオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-1260 | 2012-06-26 16:10 | 2009-04-7 | Show | GitHub Exploit DB Packet Storm |
| 246460 | 7.5 | 危険 | FlexCMS | - | FlexCMS における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-1256 | 2012-06-26 16:10 | 2009-04-7 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 21, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 218031 | 6.5 |
MEDIUM
Network |
libvncserver_project debian opensuse siemens |
libvncserver debian_linux leap simatic_itc1500_firmware simatic_itc1500_pro_firmware simatic_itc1900_firmware simatic_itc1900_pro_firmware simatic_itc2200_firmware simatic_itc… |
An issue was discovered in LibVNCServer before 0.9.13. libvncserver/scale.c has a pixel_value integer overflow. |
CWE-190
Integer Overflow or Wraparound |
CVE-2020-14401 | 2024-11-21 14:03 | 2020-06-18 | Show | GitHub Exploit DB Packet Storm |
| 218032 | 7.5 |
HIGH
Network |
libvncserver_project debian opensuse canonical |
libvncserver debian_linux leap ubuntu_linux |
An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint16_t pointers in libvncserver/translate.c. NOTE: Third parties do not consider this to be a vulnerabil… |
NVD-CWE-Other
|
CVE-2020-14400 | 2024-11-21 14:03 | 2020-06-18 | Show | GitHub Exploit DB Packet Storm |
| 218033 | 7.5 |
HIGH
Network |
libvncserver_project debian opensuse canonical |
libvncserver debian_linux leap ubuntu_linux |
An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint32_t pointers in libvncclient/rfbproto.c. NOTE: there is reportedly "no trust boundary crossed. |
NVD-CWE-Other
|
CVE-2020-14399 | 2024-11-21 14:03 | 2020-06-18 | Show | GitHub Exploit DB Packet Storm |
| 218034 | 7.5 |
HIGH
Network |
libvnc_project canonical debian siemens opensuse |
libvncserver ubuntu_linux debian_linux simatic_itc1500_firmware simatic_itc1500_pro_firmware simatic_itc1900_firmware simatic_itc1900_pro_firmware simatic_itc2200_firmware sim… |
An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c. |
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop') |
CVE-2020-14398 | 2024-11-21 14:03 | 2020-06-18 | Show | GitHub Exploit DB Packet Storm |
| 218035 | 7.5 |
HIGH
Network |
libvnc_project canonical debian siemens opensuse |
libvncserver ubuntu_linux debian_linux simatic_itc1500_firmware simatic_itc1500_pro_firmware simatic_itc1900_firmware simatic_itc1900_pro_firmware simatic_itc2200_firmware sim… |
An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rfbregion.c has a NULL pointer dereference. |
CWE-476
NULL Pointer Dereference |
CVE-2020-14397 | 2024-11-21 14:03 | 2020-06-18 | Show | GitHub Exploit DB Packet Storm |
| 218036 | 7.5 |
HIGH
Network |
libvnc_project canonical debian siemens |
libvncserver ubuntu_linux debian_linux simatic_itc1500_firmware simatic_itc1500_pro_firmware simatic_itc1900_firmware simatic_itc1900_pro_firmware simatic_itc2200_firmware sim… |
An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer dereference. |
CWE-476
NULL Pointer Dereference |
CVE-2020-14396 | 2024-11-21 14:03 | 2020-06-18 | Show | GitHub Exploit DB Packet Storm |
| 218037 | 9.8 |
CRITICAL
Network |
irfanview | b3d | IrfanView B3D PlugIns before version 4.56 has a B3d.dll!+1cbf heap-based out-of-bounds write. |
CWE-787
Out-of-bounds Write |
CVE-2020-13880 | 2024-11-21 14:02 | 2024-01-5 | Show | GitHub Exploit DB Packet Storm |
| 218038 | 9.8 |
CRITICAL
Network |
irfanview | b3d | IrfanView B3D PlugIns before version 4.56 has a B3d.dll!+214f heap-based out-of-bounds write. |
CWE-787
Out-of-bounds Write |
CVE-2020-13879 | 2024-11-21 14:02 | 2024-01-5 | Show | GitHub Exploit DB Packet Storm |
| 218039 | 9.8 |
CRITICAL
Network |
irfanview | b3d | IrfanView B3D PlugIns before version 4.56 has a B3d.dll!+27ef heap-based out-of-bounds write. |
CWE-787
Out-of-bounds Write |
CVE-2020-13878 | 2024-11-21 14:02 | 2024-01-5 | Show | GitHub Exploit DB Packet Storm |
| 218040 | 7.5 |
HIGH
Network |
mi | xiaomi_router_firmware | When Xiaomi router firmware is updated in 2020, there is an unauthenticated API that can reveal WIFI password vulnerability. This vulnerability is caused by the lack of access control policies on som… |
CWE-306
Missing Authentication for Critical Function |
CVE-2020-14140 | 2024-11-21 14:02 | 2023-03-30 | Show | GitHub Exploit DB Packet Storm |