Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 21, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 246491 | 7.5 | 危険 | Apache Friends | - | XAMPP におけるアクセス権を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2009-0919 | 2012-06-26 16:10 | 2009-03-16 | Show | GitHub Exploit DB Packet Storm |
| 246492 | 7.5 | 危険 | DFLabs | - | DFLabs PTK における PTK の Apache HTTP サーバで起動されたプロセス内で任意のコマンドを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-0918 | 2012-06-26 16:10 | 2009-03-16 | Show | GitHub Exploit DB Packet Storm |
| 246493 | 4.3 | 警告 | DFLabs | - | DFLabs PTK におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-0917 | 2012-06-26 16:10 | 2009-03-16 | Show | GitHub Exploit DB Packet Storm |
| 246494 | 5 | 警告 | FileZilla | - | FileZilla Server におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-0884 | 2012-06-26 16:10 | 2009-03-12 | Show | GitHub Exploit DB Packet Storm |
| 246495 | 6.8 | 警告 | amunak | - | Blue Eye CMS における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-0883 | 2012-06-26 16:10 | 2009-03-12 | Show | GitHub Exploit DB Packet Storm |
| 246496 | 3.5 | 注意 | Digium | - | Asterisk Open Source の SIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-0871 | 2012-06-26 16:10 | 2009-02-6 | Show | GitHub Exploit DB Packet Storm |
| 246497 | 8.8 | 危険 | GeoVision | - | LIVEX_~1.OCX の GeoVision LiveX ActiveX コントロールにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2009-0865 | 2012-06-26 16:10 | 2009-03-10 | Show | GitHub Exploit DB Packet Storm |
| 246498 | 4.3 | 警告 | denorastats | - | phpDenora におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-0861 | 2012-06-26 16:10 | 2009-03-10 | Show | GitHub Exploit DB Packet Storm |
| 246499 | 6.9 | 警告 | dash | - | dash における任意のコードを実行される脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2009-0854 | 2012-06-26 16:10 | 2009-03-11 | Show | GitHub Exploit DB Packet Storm |
| 246500 | 10 | 危険 | Foxit Software Inc | - | Foxit Reader におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-0837 | 2012-06-26 16:10 | 2009-03-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 22, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 218031 | 6.5 |
MEDIUM
Network |
libvncserver_project debian opensuse siemens |
libvncserver debian_linux leap simatic_itc1500_firmware simatic_itc1500_pro_firmware simatic_itc1900_firmware simatic_itc1900_pro_firmware simatic_itc2200_firmware simatic_itc… |
An issue was discovered in LibVNCServer before 0.9.13. libvncserver/scale.c has a pixel_value integer overflow. |
CWE-190
Integer Overflow or Wraparound |
CVE-2020-14401 | 2024-11-21 14:03 | 2020-06-18 | Show | GitHub Exploit DB Packet Storm |
| 218032 | 7.5 |
HIGH
Network |
libvncserver_project debian opensuse canonical |
libvncserver debian_linux leap ubuntu_linux |
An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint16_t pointers in libvncserver/translate.c. NOTE: Third parties do not consider this to be a vulnerabil… |
NVD-CWE-Other
|
CVE-2020-14400 | 2024-11-21 14:03 | 2020-06-18 | Show | GitHub Exploit DB Packet Storm |
| 218033 | 7.5 |
HIGH
Network |
libvncserver_project debian opensuse canonical |
libvncserver debian_linux leap ubuntu_linux |
An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint32_t pointers in libvncclient/rfbproto.c. NOTE: there is reportedly "no trust boundary crossed. |
NVD-CWE-Other
|
CVE-2020-14399 | 2024-11-21 14:03 | 2020-06-18 | Show | GitHub Exploit DB Packet Storm |
| 218034 | 7.5 |
HIGH
Network |
libvnc_project canonical debian siemens opensuse |
libvncserver ubuntu_linux debian_linux simatic_itc1500_firmware simatic_itc1500_pro_firmware simatic_itc1900_firmware simatic_itc1900_pro_firmware simatic_itc2200_firmware sim… |
An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c. |
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop') |
CVE-2020-14398 | 2024-11-21 14:03 | 2020-06-18 | Show | GitHub Exploit DB Packet Storm |
| 218035 | 7.5 |
HIGH
Network |
libvnc_project canonical debian siemens opensuse |
libvncserver ubuntu_linux debian_linux simatic_itc1500_firmware simatic_itc1500_pro_firmware simatic_itc1900_firmware simatic_itc1900_pro_firmware simatic_itc2200_firmware sim… |
An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rfbregion.c has a NULL pointer dereference. |
CWE-476
NULL Pointer Dereference |
CVE-2020-14397 | 2024-11-21 14:03 | 2020-06-18 | Show | GitHub Exploit DB Packet Storm |
| 218036 | 7.5 |
HIGH
Network |
libvnc_project canonical debian siemens |
libvncserver ubuntu_linux debian_linux simatic_itc1500_firmware simatic_itc1500_pro_firmware simatic_itc1900_firmware simatic_itc1900_pro_firmware simatic_itc2200_firmware sim… |
An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer dereference. |
CWE-476
NULL Pointer Dereference |
CVE-2020-14396 | 2024-11-21 14:03 | 2020-06-18 | Show | GitHub Exploit DB Packet Storm |
| 218037 | 9.8 |
CRITICAL
Network |
irfanview | b3d | IrfanView B3D PlugIns before version 4.56 has a B3d.dll!+1cbf heap-based out-of-bounds write. |
CWE-787
Out-of-bounds Write |
CVE-2020-13880 | 2024-11-21 14:02 | 2024-01-5 | Show | GitHub Exploit DB Packet Storm |
| 218038 | 9.8 |
CRITICAL
Network |
irfanview | b3d | IrfanView B3D PlugIns before version 4.56 has a B3d.dll!+214f heap-based out-of-bounds write. |
CWE-787
Out-of-bounds Write |
CVE-2020-13879 | 2024-11-21 14:02 | 2024-01-5 | Show | GitHub Exploit DB Packet Storm |
| 218039 | 9.8 |
CRITICAL
Network |
irfanview | b3d | IrfanView B3D PlugIns before version 4.56 has a B3d.dll!+27ef heap-based out-of-bounds write. |
CWE-787
Out-of-bounds Write |
CVE-2020-13878 | 2024-11-21 14:02 | 2024-01-5 | Show | GitHub Exploit DB Packet Storm |
| 218040 | 7.5 |
HIGH
Network |
mi | xiaomi_router_firmware | When Xiaomi router firmware is updated in 2020, there is an unauthenticated API that can reveal WIFI password vulnerability. This vulnerability is caused by the lack of access control policies on som… |
CWE-306
Missing Authentication for Critical Function |
CVE-2020-14140 | 2024-11-21 14:02 | 2023-03-30 | Show | GitHub Exploit DB Packet Storm |