Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 8, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252601 | 7.5 | 危険 | OpenBSD | - | OpenSSH における共有秘密鍵の認証要求を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2010-4478 | 2011-02-21 16:53 | 2010-12-6 | Show | GitHub Exploit DB Packet Storm |
| 252602 | 5 | 警告 | レッドハット | - | IcedTea における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-3860 | 2011-02-21 16:53 | 2010-12-8 | Show | GitHub Exploit DB Packet Storm |
| 252603 | 6.8 | 警告 | レッドハット | - | IcedTea の JNLP SecurityManager におけるセキュリティポリシーを回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-4351 | 2011-02-21 14:58 | 2011-01-20 | Show | GitHub Exploit DB Packet Storm |
| 252604 | 4.3 | 警告 | シマンテック | - | Symantec Norton Mobile Security for Android における重要な情報を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2010-0113 | 2011-02-21 14:55 | 2010-11-15 | Show | GitHub Exploit DB Packet Storm |
| 252605 | 4.3 | 警告 | - | Android の Dalvik API におけるサービス運用妨害 (DoS) 脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3698 | 2011-02-21 14:54 | 2009-10-14 | Show | GitHub Exploit DB Packet Storm | |
| 252606 | 5 | 警告 | CollabNet, Inc. | - | CollabNet ScrumWorks Basic Server における認証情報取り扱いに関する問題 |
CWE-310
暗号の問題 |
CVE-2011-0410 | 2011-02-21 14:54 | 2011-01-24 | Show | GitHub Exploit DB Packet Storm |
| 252607 | 5 | 警告 | The PHP Group レッドハット |
- | Libmbfl の mb_strcut 関数における重要な情報を取得される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-4156 | 2011-02-18 15:07 | 2010-11-10 | Show | GitHub Exploit DB Packet Storm |
| 252608 | 6.8 | 警告 | The PHP Group サイバートラスト株式会社 レッドハット |
- | PHP の xml_utf8_decode 関数における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-5016 | 2011-02-18 15:03 | 2010-11-12 | Show | GitHub Exploit DB Packet Storm |
| 252609 | 6.8 | 警告 | The PHP Group | - | PHP の set_magic_quotes_runtime 関数における SQL インジェクション攻撃を誘導される脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4700 | 2011-02-18 14:42 | 2010-07-1 | Show | GitHub Exploit DB Packet Storm |
| 252610 | 7.5 | 危険 | The PHP Group | - | PHP の iconv_mime_decode_headers 関数におけるスパムの検出を回避される脆弱性 |
CWE-189
数値処理の問題 |
CVE-2010-4699 | 2011-02-18 14:40 | 2010-09-28 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 9, 2026, 5:07 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224041 | 9.8 |
CRITICAL
Network |
repetier-server | repetier-server | A directory traversal vulnerability was discovered in RepetierServer.exe in Repetier-Server 0.8 through 0.91 that allows for the creation of a user controlled XML file at an unintended location. When… |
CWE-22
Path Traversal |
CVE-2019-14450 | 2024-11-21 13:26 | 2019-10-29 | Show | GitHub Exploit DB Packet Storm |
| 224042 | 9.8 |
CRITICAL
Network |
repetier-server | repetier-server | RepetierServer.exe in Repetier-Server 0.8 through 0.91 does not properly validate the XML data structure provided when uploading a new printer configuration. When this is combined with CVE-2019-14450… |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2019-14451 | 2024-11-21 13:26 | 2019-10-26 | Show | GitHub Exploit DB Packet Storm |
| 224043 | 6.5 |
MEDIUM
Network |
xnat | xnat | WUSTL XNAT 1.7.5.3 allows XXE attacks via a POST request body. |
CWE-611
XXE |
CVE-2019-14276 | 2024-11-21 13:26 | 2019-10-23 | Show | GitHub Exploit DB Packet Storm |
| 224044 | 8.8 |
HIGH
Network |
sudo_project fedoraproject debian opensuse canonical netapp redhat |
sudo fedora debian_linux leap ubuntu_linux element_software_management_node enterprise_linux_desktop enterprise_linux_server enterprise_linux_server_aus enterprise_linux_wo… |
In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a cra… |
CWE-755
Improper Handling of Exceptional Conditions |
CVE-2019-14287 | 2024-11-21 13:26 | 2019-10-18 | Show | GitHub Exploit DB Packet Storm |
| 224045 | 6.5 |
MEDIUM
Network |
eq-3 |
cux-daemon ccu2_firmware |
A Local File Inclusion (LFI) issue in the addon CUx-Daemon 1.11a of the eQ-3 Homematic CCU-Firmware 2.35.16 until 2.45.6 allows remote authenticated attackers to read sensitive files via a simple HTT… |
CWE-22
Path Traversal |
CVE-2019-14424 | 2024-11-21 13:26 | 2019-10-17 | Show | GitHub Exploit DB Packet Storm |
| 224046 | 8.8 |
HIGH
Network |
eq-3 |
cux-daemon ccu2_firmware |
A Remote Code Execution (RCE) issue in the addon CUx-Daemon 1.11a of the eQ-3 Homematic CCU-Firmware 2.35.16 until 2.45.6 allows remote authenticated attackers to execute system commands as root remo… |
CWE-78
OS Command |
CVE-2019-14423 | 2024-11-21 13:26 | 2019-10-17 | Show | GitHub Exploit DB Packet Storm |
| 224047 | 6.1 |
MEDIUM
Network |
open-xchange | open-xchange_appsuite | OX App Suite 7.10.1 and 7.10.2 allows XSS. |
CWE-79
Cross-site Scripting |
CVE-2019-14227 | 2024-11-21 13:26 | 2019-10-15 | Show | GitHub Exploit DB Packet Storm |
| 224048 | 8.1 |
HIGH
Network |
open-xchange | open-xchange_appsuite | OX App Suite through 7.10.2 has Insecure Permissions. |
CWE-281
Improper Preservation of Permissions |
CVE-2019-14226 | 2024-11-21 13:26 | 2019-10-15 | Show | GitHub Exploit DB Packet Storm |
| 224049 | 5.4 |
MEDIUM
Network |
open-xchange | open-xchange_appsuite | OX App Suite 7.10.1 and 7.10.2 allows SSRF. |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2019-14225 | 2024-11-21 13:26 | 2019-10-15 | Show | GitHub Exploit DB Packet Storm |
| 224050 | 7.8 |
HIGH
Local |
intel |
nuc_8_mainstream_game_kit_firmware nuc_8_mainstream_game_mini_computer_firmware nuc_board_de3815tybe_firmware nuc_kit_de3815tykhe_firmware nuc_kit_dn2820fykh_firmware |
Memory corruption in system firmware for Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access. |
CWE-787
Out-of-bounds Write |
CVE-2019-14570 | 2024-11-21 13:26 | 2019-10-12 | Show | GitHub Exploit DB Packet Storm |