Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 15, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 248951 | 9.3 | 危険 | AVAST Software s.r.o. | - | avast! Anti-Virus Managed Client の CAB 解凍プログラムにおけるヒープベースのバッファオーバーフローの脆弱性 | - | CVE-2007-2845 | 2012-06-26 15:46 | 2007-05-24 | Show | GitHub Exploit DB Packet Storm |
| 248952 | 10 | 危険 | アップル | - | Apple Safari における他のドメインから制限された情報にアクセスされる脆弱性 | - | CVE-2007-2843 | 2012-06-26 15:46 | 2007-05-24 | Show | GitHub Exploit DB Packet Storm |
| 248953 | 7.2 | 危険 | Debian | - | gfax における任意のコマンドを実行される脆弱性 | - | CVE-2007-2839 | 2012-06-26 15:46 | 2007-07-5 | Show | GitHub Exploit DB Packet Storm |
| 248954 | 7.2 | 危険 | gsambad | - | GSAMBAD の populate_conns 関数における任意のファイルを上書きされる脆弱性 | - | CVE-2007-2838 | 2012-06-26 15:46 | 2007-07-1 | Show | GitHub Exploit DB Packet Storm |
| 248955 | 3.6 | 注意 | fireflier | - | FireFlier の fireflier-server における任意のファイルを上書きされる脆弱性 | - | CVE-2007-2837 | 2012-06-26 15:46 | 2007-07-1 | Show | GitHub Exploit DB Packet Storm |
| 248956 | 7.8 | 危険 | GNU Project | - | Emacs におけるサービス運用妨害 (DoS) の脆弱性 | - | CVE-2007-2833 | 2012-06-26 15:46 | 2007-06-21 | Show | GitHub Exploit DB Packet Storm |
| 248957 | 4.3 | 警告 | シスコシステムズ | - | Cisco CallManager の Web アプリケーションファイアウォールにおけるクロスサイトスクリプティングの脆弱性 | - | CVE-2007-2832 | 2012-06-26 15:46 | 2007-05-23 | Show | GitHub Exploit DB Packet Storm |
| 248958 | 4.3 | 警告 | atmail pty ltd | - | Atmail の ReadMsg.php におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2007-2825 | 2012-06-26 15:46 | 2007-05-22 | Show | GitHub Exploit DB Packet Storm |
| 248959 | 10 | 危険 | AlstraSoft | - | AlstraSoft E-Friends の paypal.php における SQL インジェクションの脆弱性 | - | CVE-2007-2824 | 2012-06-26 15:46 | 2007-05-22 | Show | GitHub Exploit DB Packet Storm |
| 248960 | 4.3 | 警告 | Cactusoft International FZ-LLC & Cactusoft Ltd. | - | CactuSoft Parodia の cand_login.asp におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2007-2818 | 2012-06-26 15:46 | 2007-05-22 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 15, 2026, 4:10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 212661 | 5.4 |
MEDIUM
Network |
getgophish | gophish | Cross Site Scripting (XSS) vulnerability in Gophish before 0.11.0 via the IMAP Host field on the account settings page. |
CWE-79
Cross-site Scripting |
CVE-2020-24712 | 2024-11-21 14:15 | 2020-10-29 | Show | GitHub Exploit DB Packet Storm |
| 212662 | 6.5 |
MEDIUM
Network |
getgophish | gophish | The Reset button on the Account Settings page in Gophish before 0.11.0 allows attackers to cause a denial of service via a clickjacking attack |
CWE-1021
Improper Restriction of Rendered UI Layers or Frames |
CVE-2020-24711 | 2024-11-21 14:15 | 2020-10-29 | Show | GitHub Exploit DB Packet Storm |
| 212663 | 5.3 |
MEDIUM
Network |
getgophish | gophish | Gophish before 0.11.0 allows SSRF attacks. |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2020-24710 | 2024-11-21 14:15 | 2020-10-29 | Show | GitHub Exploit DB Packet Storm |
| 212664 | 5.4 |
MEDIUM
Network |
getgophish | gophish | Cross Site Scripting (XSS) vulnerability in Gophish through 0.10.1 via a crafted landing page or email template. |
CWE-79
Cross-site Scripting |
CVE-2020-24709 | 2024-11-21 14:15 | 2020-10-29 | Show | GitHub Exploit DB Packet Storm |
| 212665 | 5.4 |
MEDIUM
Network |
getgophish | gophish | Cross Site Scripting (XSS) vulnerability in Gophish before 0.11.0 via the Host field on the send profile form. |
CWE-79
Cross-site Scripting |
CVE-2020-24708 | 2024-11-21 14:15 | 2020-10-29 | Show | GitHub Exploit DB Packet Storm |
| 212666 | 7.8 |
HIGH
Local |
getgophish | gophish | Gophish before 0.11.0 allows the creation of CSV sheets that contain malicious content. |
CWE-1236
Improper Neutralization of Formula Elements in a CSV File |
CVE-2020-24707 | 2024-11-21 14:15 | 2020-10-29 | Show | GitHub Exploit DB Packet Storm |
| 212667 | 7.2 |
HIGH
Network |
arubanetworks | airwave_glass | A remote execution of arbitrary commandss vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. |
NVD-CWE-noinfo
|
CVE-2020-24632 | 2024-11-21 14:15 | 2020-10-27 | Show | GitHub Exploit DB Packet Storm |
| 212668 | 7.2 |
HIGH
Network |
arubanetworks | airwave_glass | A remote execution of arbitrary commands vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. |
NVD-CWE-noinfo
|
CVE-2020-24631 | 2024-11-21 14:15 | 2020-10-27 | Show | GitHub Exploit DB Packet Storm |
| 212669 | 9.8 |
CRITICAL
Network |
hp | intelligent_management_center | A addvsiinterfaceinfo expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07). |
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') |
CVE-2020-24652 | 2024-11-21 14:15 | 2020-10-20 | Show | GitHub Exploit DB Packet Storm |
| 212670 | 9.8 |
CRITICAL
Network |
hp | intelligent_management_center | A syslogtempletselectwin expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07). |
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') |
CVE-2020-24651 | 2024-11-21 14:15 | 2020-10-20 | Show | GitHub Exploit DB Packet Storm |