Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 14, 2026, 6:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249361 | 1.9 | 注意 | kernel.org | - | Linux-PAM の privilege-dropping 実装における重要情報を取得される脆弱性 |
CWE-DesignError
|
CVE-2010-3431 | 2012-03-27 18:42 | 2011-01-24 | Show | GitHub Exploit DB Packet Storm |
| 249362 | 4.7 | 警告 | kernel.org | - | Linux-PAM の privilege-dropping 実装における重要情報を取得される脆弱性 |
CWE-DesignError
|
CVE-2010-3430 | 2012-03-27 18:42 | 2011-01-24 | Show | GitHub Exploit DB Packet Storm |
| 249363 | 7.5 | 危険 | Symphony CMS | - | Symphony CMS の lib/toolkit/events/event.section.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-3458 | 2012-03-27 18:42 | 2010-09-17 | Show | GitHub Exploit DB Packet Storm |
| 249364 | 4.3 | 警告 | Symphony CMS | - | Symphony CMS におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-3457 | 2012-03-27 18:42 | 2010-09-17 | Show | GitHub Exploit DB Packet Storm |
| 249365 | 5 | 警告 | energyscripts | - | ES Simple Download の download.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-3456 | 2012-03-27 18:42 | 2010-09-17 | Show | GitHub Exploit DB Packet Storm |
| 249366 | 4.3 | 警告 | ATutor | - | AChecker の index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-3455 | 2012-03-27 18:42 | 2010-09-17 | Show | GitHub Exploit DB Packet Storm |
| 249367 | 6.8 | 警告 | FFmpeg mplayerhq |
- | MPlayer などの製品で使用される FFmpeg の flicvideo.c における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-3429 | 2012-03-27 18:42 | 2010-09-30 | Show | GitHub Exploit DB Packet Storm |
| 249368 | 7.5 | 危険 | Intermesh | - | Intermesh Group-Office の modules/notes/json.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-3428 | 2012-03-27 18:42 | 2010-09-16 | Show | GitHub Exploit DB Packet Storm |
| 249369 | 4.3 | 警告 | Open Classifieds | - | Open Classifieds におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-3427 | 2012-03-27 18:42 | 2010-09-16 | Show | GitHub Exploit DB Packet Storm |
| 249370 | 7.5 | 危険 | 4you-studio | - | Joomla! 用の Alpha の JPhone (com_jphone) コンポーネントにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-3426 | 2012-03-27 18:42 | 2010-09-16 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 14, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 211751 | 9.8 |
CRITICAL
Network |
onlyoffice | document_server | An issue was discovered in ONLYOFFICE Document Server 5.5.0. An attacker can craft a malicious .docx file, and exploit the NSFileDownloader function to pass parameters to a binary (such as curl or wg… |
CWE-20
Improper Input Validation |
CVE-2020-11534 | 2024-11-21 13:58 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 211752 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware |
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… |
CWE-79
Cross-site Scripting |
CVE-2020-11778 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211753 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware |
Certain NETGEAR devices are affected by Stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… |
CWE-79
Cross-site Scripting |
CVE-2020-11777 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211754 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware |
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… |
CWE-79
Cross-site Scripting |
CVE-2020-11776 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211755 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware |
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… |
CWE-79
Cross-site Scripting |
CVE-2020-11774 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211756 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware |
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… |
CWE-79
Cross-site Scripting |
CVE-2020-11773 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211757 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware |
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… |
CWE-79
Cross-site Scripting |
CVE-2020-11772 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211758 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware |
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… |
CWE-79
Cross-site Scripting |
CVE-2020-11771 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211759 | 5.5 |
MEDIUM
Local |
openexr fedoraproject opensuse debian canonical apple |
openexr fedora leap debian_linux ubuntu_linux tvos iphone_os icloud itunes watchos ipados mac_os_x |
An issue was discovered in OpenEXR before 2.4.1. There is an off-by-one error in use of the ImfXdr.h read function by DwaCompressor::Classifier::Classifier, leading to an out-of-bounds read. |
CWE-125 CWE-193 Out-of-bounds Read Off-by-one Error |
CVE-2020-11765 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211760 | 5.5 |
MEDIUM
Local |
openexr fedoraproject canonical opensuse debian apple |
openexr fedora ubuntu_linux leap debian_linux tvos iphone_os icloud itunes watchos ipados mac_os_x |
An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds write in copyIntoFrameBuffer in ImfMisc.cpp. |
CWE-787
Out-of-bounds Write |
CVE-2020-11764 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |