Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 1, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249991 | 3.5 | 注意 | Plone Foundation | - | Plone の safe_html フィルタにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-1949 | 2012-03-27 18:43 | 2011-06-6 | Show | GitHub Exploit DB Packet Storm |
| 249992 | 4.3 | 警告 | Plone Foundation | - | Plone におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-1948 | 2012-03-27 18:43 | 2011-06-6 | Show | GitHub Exploit DB Packet Storm |
| 249993 | 5 | 警告 | Fetchmail Project | - | fetchmail におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-1947 | 2012-03-27 18:43 | 2011-06-2 | Show | GitHub Exploit DB Packet Storm |
| 249994 | 7.2 | 危険 | hongli lai | - | libgnomesu の gnomesu-pam-backend における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-1946 | 2012-03-27 18:43 | 2011-07-7 | Show | GitHub Exploit DB Packet Storm |
| 249995 | 2.1 | 注意 | Fedora Project レッドハット |
- | Fedora の NetworkManager パッケージの libnm-util の destroy_one_secret 関数における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2011-1943 | 2012-03-27 18:43 | 2011-06-14 | Show | GitHub Exploit DB Packet Storm |
| 249996 | 6.8 | 警告 | VideoLAN FFmpeg Libav |
- | VideoLAN VLC メディアプレイヤーなどの製品で使用される FFmpeg および libav の Sunplus SP5X JPEG デコーダにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-119
バッファエラー |
CVE-2011-1931 | 2012-03-27 18:43 | 2011-07-7 | Show | GitHub Exploit DB Packet Storm |
| 249997 | 5 | 警告 | Wouter Verhelst | - | nbd-server の nbd-server.c におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2011-1925 | 2012-03-27 18:43 | 2011-05-31 | Show | GitHub Exploit DB Packet Storm |
| 249998 | 5 | 警告 | The Tor Project | - | Tor の policy_summarize 関数におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2011-1924 | 2012-03-27 18:43 | 2011-02-28 | Show | GitHub Exploit DB Packet Storm |
| 249999 | 3.3 | 注意 | ihji NetBSD |
- | pmake などの製品で使用される NetBSD の make インクルードファイルにおける任意のファイルを上書される脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2011-1920 | 2012-03-27 18:43 | 2011-05-23 | Show | GitHub Exploit DB Packet Storm |
| 250000 | 9.3 | 危険 | Foxit Software Inc | - | Foxit Reader の FreeType エンジンのType 1 フォントデコーダにおける整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2011-1908 | 2012-03-27 18:43 | 2011-06-24 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 1, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 201321 | 8.1 |
HIGH
Network |
mintegral | mintegraladsdk | This affects the package MintegralAdSDK from 0.0.0. The SDK distributed by the company contains malicious functionality that tracks any URL opened by the app and reports it back to the company, along… |
CWE-1021
Improper Restriction of Rendered UI Layers or Frames |
CVE-2020-7705 | 2024-11-21 14:37 | 2020-08-25 | Show | GitHub Exploit DB Packet Storm |
| 201322 | 8.8 |
HIGH
Network |
inogard | ebiz4u | A vulnerability in the web-based contract management service interface Ebiz4u of INOGARD could allow an victim user to download any file. The attacker is able to use startup menu directory via direct… |
CWE-494
Download of Code Without Integrity Check |
CVE-2020-7831 | 2024-11-21 14:37 | 2020-08-25 | Show | GitHub Exploit DB Packet Storm |
| 201323 | 7.5 |
HIGH
Network |
goxmldsig_project | goxmldsig | This affects all versions of package github.com/russellhaering/goxmldsig. There is a crash on nil-pointer dereference caused by sending malformed XML signatures. |
CWE-476
NULL Pointer Dereference |
CVE-2020-7711 | 2024-11-21 14:37 | 2020-08-23 | Show | GitHub Exploit DB Packet Storm |
| 201324 | 9.8 |
CRITICAL
Network |
safe-eval_project | safe-eval | This affects all versions of package safe-eval. It is possible for an attacker to run an arbitrary command on the host machine. |
CWE-94
Code Injection |
CVE-2020-7710 | 2024-11-21 14:37 | 2020-08-21 | Show | GitHub Exploit DB Packet Storm |
| 201325 | 6.9 |
MEDIUM
Local |
mcafee | total_protection | Privilege Escalation vulnerability in the installer in McAfee McAfee Total Protection (MTP) trial prior to 4.0.161.1 allows local users to change files that are part of write protection rules via man… |
CWE-269
Improper Privilege Management |
CVE-2020-7310 | 2024-11-21 14:37 | 2020-08-21 | Show | GitHub Exploit DB Packet Storm |
| 201326 | 9.8 |
CRITICAL
Network |
irrelon |
\@irrelon\/path irrelon-path |
The package irrelon-path before 4.7.0; the package @irrelon/path before 4.7.0 are vulnerable to Prototype Pollution via the set, unSet, pushVal and pullVal functions. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7708 | 2024-11-21 14:37 | 2020-08-19 | Show | GitHub Exploit DB Packet Storm |
| 201327 | 9.8 |
CRITICAL
Network |
property-expr_project | property-expr | The package property-expr before 2.0.3 are vulnerable to Prototype Pollution via the setter function. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7707 | 2024-11-21 14:37 | 2020-08-18 | Show | GitHub Exploit DB Packet Storm |
| 201328 | 9.8 |
CRITICAL
Network |
connie-lang_project | connie-lang | The package connie-lang before 0.1.1 are vulnerable to Prototype Pollution in the configuration language library used by connie. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7706 | 2024-11-21 14:37 | 2020-08-18 | Show | GitHub Exploit DB Packet Storm |
| 201329 | 9.8 |
CRITICAL
Network |
linux-cmdline_project | linux-cmdline | The package linux-cmdline before 1.0.1 are vulnerable to Prototype Pollution via the constructor. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7704 | 2024-11-21 14:37 | 2020-08-18 | Show | GitHub Exploit DB Packet Storm |
| 201330 | 9.8 |
CRITICAL
Network |
nis-utils_project | nis-utils | All versions of package nis-utils are vulnerable to Prototype Pollution via the setValue function. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7703 | 2024-11-21 14:37 | 2020-08-18 | Show | GitHub Exploit DB Packet Storm |