Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 28, 2026, 2:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249171 | 3.5 | 注意 | SocialCMS | - | SocialCMS の my_admin/admin1_list_pages.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1982 | 2012-04-9 10:26 | 2012-04-5 | Show | GitHub Exploit DB Packet Storm |
| 249172 | 10 | 危険 | ヒューレット・パッカード | - | HP-UX 上の Distributed Computing Environment におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2012-0131 | 2012-04-9 10:06 | 2012-04-2 | Show | GitHub Exploit DB Packet Storm |
| 249173 | 4.3 | 警告 | ヒューレット・パッカード | - | HP Business Availability Center におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-0132 | 2012-04-9 10:02 | 2012-04-3 | Show | GitHub Exploit DB Packet Storm |
| 249174 | 5 | 警告 | ヒューレット・パッカード | - | HP Onboard Administrator における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2012-0130 | 2012-04-9 09:59 | 2012-04-2 | Show | GitHub Exploit DB Packet Storm |
| 249175 | 7.6 | 危険 | ヒューレット・パッカード | - | HP Onboard Administrator におけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-0129 | 2012-04-9 09:55 | 2012-04-2 | Show | GitHub Exploit DB Packet Storm |
| 249176 | 5.8 | 警告 | ヒューレット・パッカード | - | HP Onboard Administrator におけるユーザを任意の Web サイトにリダイレクトされる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2012-0128 | 2012-04-9 09:51 | 2012-04-2 | Show | GitHub Exploit DB Packet Storm |
| 249177 | 5 | 警告 | GitHub | - | GitHub Enterprise における public_key[user_id] の値を設定される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2012-2055 | 2012-04-6 16:21 | 2012-04-4 | Show | GitHub Exploit DB Packet Storm |
| 249178 | 5 | 警告 | Redmine | - | Redmine における属性を設定される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2012-2054 | 2012-04-6 16:21 | 2012-03-6 | Show | GitHub Exploit DB Packet Storm |
| 249179 | 5 | 警告 | Spree Commerce | - | Spree のセッション Cookie ストアの実装における暗号保護メカニズムを容易に回避される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2008-7311 | 2012-04-6 16:19 | 2008-08-12 | Show | GitHub Exploit DB Packet Storm |
| 249180 | 5 | 警告 | Spree Commerce | - | Spree における Order ステートの値を設定される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2008-7310 | 2012-04-6 16:16 | 2008-09-16 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 28, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 200371 | 9.8 |
CRITICAL
Network |
safe-eval_project | safe-eval | This affects all versions of package safe-eval. It is possible for an attacker to run an arbitrary command on the host machine. |
CWE-94
Code Injection |
CVE-2020-7710 | 2024-11-21 14:37 | 2020-08-21 | Show | GitHub Exploit DB Packet Storm |
| 200372 | 6.9 |
MEDIUM
Local |
mcafee | total_protection | Privilege Escalation vulnerability in the installer in McAfee McAfee Total Protection (MTP) trial prior to 4.0.161.1 allows local users to change files that are part of write protection rules via man… |
CWE-269
Improper Privilege Management |
CVE-2020-7310 | 2024-11-21 14:37 | 2020-08-21 | Show | GitHub Exploit DB Packet Storm |
| 200373 | 9.8 |
CRITICAL
Network |
irrelon |
\@irrelon\/path irrelon-path |
The package irrelon-path before 4.7.0; the package @irrelon/path before 4.7.0 are vulnerable to Prototype Pollution via the set, unSet, pushVal and pullVal functions. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7708 | 2024-11-21 14:37 | 2020-08-19 | Show | GitHub Exploit DB Packet Storm |
| 200374 | 9.8 |
CRITICAL
Network |
property-expr_project | property-expr | The package property-expr before 2.0.3 are vulnerable to Prototype Pollution via the setter function. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7707 | 2024-11-21 14:37 | 2020-08-18 | Show | GitHub Exploit DB Packet Storm |
| 200375 | 9.8 |
CRITICAL
Network |
connie-lang_project | connie-lang | The package connie-lang before 0.1.1 are vulnerable to Prototype Pollution in the configuration language library used by connie. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7706 | 2024-11-21 14:37 | 2020-08-18 | Show | GitHub Exploit DB Packet Storm |
| 200376 | 9.8 |
CRITICAL
Network |
linux-cmdline_project | linux-cmdline | The package linux-cmdline before 1.0.1 are vulnerable to Prototype Pollution via the constructor. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7704 | 2024-11-21 14:37 | 2020-08-18 | Show | GitHub Exploit DB Packet Storm |
| 200377 | 9.8 |
CRITICAL
Network |
nis-utils_project | nis-utils | All versions of package nis-utils are vulnerable to Prototype Pollution via the setValue function. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7703 | 2024-11-21 14:37 | 2020-08-18 | Show | GitHub Exploit DB Packet Storm |
| 200378 | 9.8 |
CRITICAL
Network |
templ8_project | templ8 | All versions of package templ8 are vulnerable to Prototype Pollution via the parse function. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7702 | 2024-11-21 14:37 | 2020-08-17 | Show | GitHub Exploit DB Packet Storm |
| 200379 | 7.8 |
HIGH
Local |
siemens | automation_license_manager | A vulnerability has been identified in Automation License Manager 5 (All versions), Automation License Manager 6 (All versions < V6.0.8). The application does not properly validate the users' privile… |
CWE-863
Incorrect Authorization |
CVE-2020-7583 | 2024-11-21 14:37 | 2020-08-15 | Show | GitHub Exploit DB Packet Storm |
| 200380 | 9.8 |
CRITICAL
Network |
springtree | madlib-object-utils | madlib-object-utils before 0.1.7 is vulnerable to Prototype Pollution via setValue. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7701 | 2024-11-21 14:37 | 2020-08-15 | Show | GitHub Exploit DB Packet Storm |