Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 16, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 247051 | 4.3 | 警告 | firmchannel | - | firmCHANNEL Digital Signage の account モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-4931 | 2012-06-26 16:03 | 2008-11-5 | Show | GitHub Exploit DB Packet Storm |
| 247052 | 9.3 | 危険 | マイクロソフト djvu |
- | DjVu_ActiveX_MSOffice.dll の DjVu ActiveX コントロール におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-4922 | 2012-06-26 16:03 | 2008-11-4 | Show | GitHub Exploit DB Packet Storm |
| 247053 | 4.6 | 警告 | VMware | - | 複数の VMware 製品のゲスト仮想デバイスドライバにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2008-4916 | 2012-06-26 16:02 | 2009-04-3 | Show | GitHub Exploit DB Packet Storm |
| 247054 | 9.3 | 危険 | EZB Systems | - | UltraISO におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-4825 | 2012-06-26 16:02 | 2009-04-1 | Show | GitHub Exploit DB Packet Storm |
| 247055 | 7.5 | 危険 | Chipmunk Scripts | - | Chipmunk CMS の board/admin/reguser.php における管理者権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-4921 | 2012-06-26 16:02 | 2008-11-4 | Show | GitHub Exploit DB Packet Storm |
| 247056 | 7.5 | 危険 | chattaitaliano | - | Chattaitaliano Istant-Replay の read.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-4911 | 2012-06-26 16:02 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 247057 | 4.3 | 警告 | compact cms | - | CompactCMS におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-4909 | 2012-06-26 16:02 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 247058 | 3.3 | 注意 | crossfire | - | CrossFire crossfire-maps の maps/Info/combine.pl における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-4908 | 2012-06-26 16:02 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 247059 | 7.5 | 危険 | 1st news | - | 1st News 4 Professional の products.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4890 | 2012-06-26 16:02 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 247060 | 7.5 | 危険 | deV!L'z Clanportal | - | DZCP の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4889 | 2012-06-26 16:02 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 16, 2026, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 219431 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware |
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… |
CWE-79
Cross-site Scripting |
CVE-2020-11776 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 219432 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware |
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… |
CWE-79
Cross-site Scripting |
CVE-2020-11774 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 219433 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware |
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… |
CWE-79
Cross-site Scripting |
CVE-2020-11773 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 219434 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware |
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… |
CWE-79
Cross-site Scripting |
CVE-2020-11772 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 219435 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware |
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… |
CWE-79
Cross-site Scripting |
CVE-2020-11771 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 219436 | 5.5 |
MEDIUM
Local |
openexr fedoraproject opensuse debian canonical apple |
openexr fedora leap debian_linux ubuntu_linux tvos iphone_os icloud itunes watchos ipados mac_os_x |
An issue was discovered in OpenEXR before 2.4.1. There is an off-by-one error in use of the ImfXdr.h read function by DwaCompressor::Classifier::Classifier, leading to an out-of-bounds read. |
CWE-125 CWE-193 Out-of-bounds Read Off-by-one Error |
CVE-2020-11765 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 219437 | 5.5 |
MEDIUM
Local |
openexr fedoraproject canonical opensuse debian apple |
openexr fedora ubuntu_linux leap debian_linux tvos iphone_os icloud itunes watchos ipados mac_os_x |
An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds write in copyIntoFrameBuffer in ImfMisc.cpp. |
CWE-787
Out-of-bounds Write |
CVE-2020-11764 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 219438 | 5.5 |
MEDIUM
Local |
openexr fedoraproject canonical opensuse debian apple |
openexr fedora ubuntu_linux leap debian_linux tvos iphone_os icloud itunes watchos ipados mac_os_x |
An issue was discovered in OpenEXR before 2.4.1. There is an std::vector out-of-bounds read and write, as demonstrated by ImfTileOffsets.cpp. |
CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write |
CVE-2020-11763 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 219439 | 5.5 |
MEDIUM
Local |
openexr fedoraproject canonical opensuse debian apple |
openexr fedora ubuntu_linux leap debian_linux mac_os_x tvos iphone_os icloud itunes watchos ipados |
An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read and write in DwaCompressor::uncompress in ImfDwaCompressor.cpp when handling the UNKNOWN compression case. |
CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write |
CVE-2020-11762 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 219440 | 5.5 |
MEDIUM
Local |
openexr fedoraproject canonical debian apple |
openexr fedora ubuntu_linux debian_linux mac_os_x tvos iphone_os icloud itunes watchos ipados |
An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during Huffman uncompression, as demonstrated by FastHufDecoder::refill in ImfFastHuf.cpp. |
CWE-125
Out-of-bounds Read |
CVE-2020-11761 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |