Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 13, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 255011 | 2.6 | 注意 | 株式会社アルマス | - | Compiere におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-1333 | 2010-04-1 15:02 | 2010-04-1 | Show | GitHub Exploit DB Packet Storm |
| 255012 | 4.3 | 警告 | PrettyBook | - | PrettyFormMail におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-1332 | 2010-04-1 15:01 | 2010-04-1 | Show | GitHub Exploit DB Packet Storm |
| 255013 | 10 | 危険 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | 複数の Mozilla 製品の HTML パーサにおける任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-1571 | 2010-04-1 13:51 | 2010-02-17 | Show | GitHub Exploit DB Packet Storm |
| 255014 | 10 | 危険 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0159 | 2010-04-1 13:50 | 2010-02-17 | Show | GitHub Exploit DB Packet Storm |
| 255015 | 9.3 | 危険 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | 複数の Mozilla 製品における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3979 | 2010-04-1 13:49 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 255016 | 4.4 | 警告 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox におけるダウンロードファイルを置き換えられる脆弱性 |
CWE-Other
その他 |
CVE-2009-3274 | 2010-04-1 13:47 | 2009-09-21 | Show | GitHub Exploit DB Packet Storm |
| 255017 | 9.3 | 危険 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox/SeaMonkey における意図しないファイルをダウンロードさせられる脆弱性 |
CWE-16
環境設定 |
CVE-2009-3376 | 2010-04-1 13:46 | 2009-10-27 | Show | GitHub Exploit DB Packet Storm |
| 255018 | 10 | 危険 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox の ブラウザエンジンにおける任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3380 | 2010-04-1 13:45 | 2009-10-27 | Show | GitHub Exploit DB Packet Storm |
| 255019 | 10 | 危険 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox の JavaScript エンジンにおける任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3075 | 2010-04-1 13:44 | 2009-09-9 | Show | GitHub Exploit DB Packet Storm |
| 255020 | 10 | 危険 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox のブラウザエンジンにおける任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3072 | 2010-04-1 13:43 | 2009-09-9 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 13, 2026, 5:05 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 211761 | 5.5 |
MEDIUM
Local |
openexr fedoraproject canonical opensuse debian apple |
openexr fedora ubuntu_linux leap debian_linux tvos iphone_os icloud itunes watchos ipados mac_os_x |
An issue was discovered in OpenEXR before 2.4.1. There is an std::vector out-of-bounds read and write, as demonstrated by ImfTileOffsets.cpp. |
CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write |
CVE-2020-11763 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211762 | 5.5 |
MEDIUM
Local |
openexr fedoraproject canonical opensuse debian apple |
openexr fedora ubuntu_linux leap debian_linux mac_os_x tvos iphone_os icloud itunes watchos ipados |
An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read and write in DwaCompressor::uncompress in ImfDwaCompressor.cpp when handling the UNKNOWN compression case. |
CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write |
CVE-2020-11762 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211763 | 5.5 |
MEDIUM
Local |
openexr fedoraproject canonical debian apple |
openexr fedora ubuntu_linux debian_linux mac_os_x tvos iphone_os icloud itunes watchos ipados |
An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during Huffman uncompression, as demonstrated by FastHufDecoder::refill in ImfFastHuf.cpp. |
CWE-125
Out-of-bounds Read |
CVE-2020-11761 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211764 | 5.5 |
MEDIUM
Local |
openexr fedoraproject canonical opensuse debian apple |
openexr fedora ubuntu_linux leap debian_linux mac_os_x tvos iphone_os icloud itunes watchos ipados |
An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during RLE uncompression in rleUncompress in ImfRle.cpp. |
CWE-125
Out-of-bounds Read |
CVE-2020-11760 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211765 | 5.5 |
MEDIUM
Local |
openexr fedoraproject canonical debian apple |
openexr fedora ubuntu_linux debian_linux tvos iphone_os icloud itunes watchos ipados mac_os_x |
An issue was discovered in OpenEXR before 2.4.1. Because of integer overflows in CompositeDeepScanLine::Data::handleDeepFrameBuffer and readSampleCountForLineBlock, an attacker can write to an out-of… |
CWE-190
Integer Overflow or Wraparound |
CVE-2020-11759 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211766 | 5.5 |
MEDIUM
Local |
openexr fedoraproject canonical opensuse debian apple |
openexr fedora ubuntu_linux leap debian_linux mac_os_x tvos iphone_os icloud itunes watchos ipados |
An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read in ImfOptimizedPixelReading.h. |
CWE-125
Out-of-bounds Read |
CVE-2020-11758 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211767 | 5.5 |
MEDIUM
Local |
cellebrite | ufed_firmware | Cellebrite UFED 5.0 through 7.29 uses four hardcoded RSA private keys to authenticate to the ADB daemon on target devices. Extracted keys can be used to place evidence onto target devices when perfor… |
CWE-798
Use of Hard-coded Credentials |
CVE-2020-11723 | 2024-11-21 13:58 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 211768 | 5.5 |
MEDIUM
Local |
xen debian fedoraproject opensuse |
xen debian_linux fedora leap |
An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (without active profiling) to obtain sensitive information about other guests. Unprivileged guests can request to ma… |
CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer |
CVE-2020-11740 | 2024-11-21 13:58 | 2020-04-14 | Show | GitHub Exploit DB Packet Storm |
| 211769 | 7.5 |
HIGH
Network |
snapcreek | duplicator | The Snap Creek Duplicator plugin before 1.3.28 for WordPress (and Duplicator Pro before 3.8.7.1) allows Directory Traversal via ../ in the file parameter to duplicator_download or duplicator_init. |
CWE-22
Path Traversal |
CVE-2020-11738 | 2024-11-21 13:58 | 2020-04-14 | Show | GitHub Exploit DB Packet Storm |
| 211770 | 3.9 |
LOW
Local |
gnome debian canonical |
file-roller debian_linux ubuntu_linux |
fr-archive-libarchive.c in GNOME file-roller through 3.36.1 allows Directory Traversal during extraction because it lacks a check of whether a file's parent is a symlink to a directory outside of the… |
CWE-22 CWE-59 Path Traversal Link Following |
CVE-2020-11736 | 2024-11-21 13:58 | 2020-04-14 | Show | GitHub Exploit DB Packet Storm |