Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 13, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 255331 | 6.5 | 警告 | PostgreSQL.org サイバートラスト株式会社 ターボリナックス サン・マイクロシステムズ レッドハット |
- | PostgreSQL の core server コンポーネントにおける権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-3230 | 2010-01-19 15:49 | 2009-09-17 | Show | GitHub Exploit DB Packet Storm |
| 255332 | 7.5 | 危険 | アップル サイバートラスト株式会社 Python Software Foundation サン・マイクロシステムズ レッドハット |
- | Python における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2008-2315 | 2010-01-19 15:48 | 2008-08-1 | Show | GitHub Exploit DB Packet Storm |
| 255333 | 7.5 | 危険 | アップル サイバートラスト株式会社 Python Software Foundation サン・マイクロシステムズ レッドハット |
- | Python の zlib 拡張モジュールにおける任意のコードを実行される脆弱性 |
CWE-189
数値処理の問題 |
CVE-2008-1721 | 2010-01-19 15:48 | 2008-04-10 | Show | GitHub Exploit DB Packet Storm |
| 255334 | 6.8 | 警告 | アップル サイバートラスト株式会社 Python Software Foundation サン・マイクロシステムズ レッドハット |
- | Python の imageop.c における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2008-1679 | 2010-01-19 15:48 | 2008-04-22 | Show | GitHub Exploit DB Packet Storm |
| 255335 | 5.8 | 警告 | アップル サイバートラスト株式会社 Python Software Foundation サン・マイクロシステムズ レッドハット |
- | Python の imageop モジュールにおける複数の整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2007-4965 | 2010-01-19 15:47 | 2007-09-18 | Show | GitHub Exploit DB Packet Storm |
| 255336 | 7.5 | 危険 | アップル | - | Mac OS X 用の Java における任意のコードを実行される脆弱性 |
CWE-310
暗号の問題 |
CVE-2009-2843 | 2010-01-18 12:22 | 2009-12-3 | Show | GitHub Exploit DB Packet Storm |
| 255337 | 6.8 | 警告 | アップル GNU Project サン・マイクロシステムズ サイバートラスト株式会社 レッドハット |
- | GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性 | - | CVE-2007-4131 | 2010-01-18 12:21 | 2007-08-23 | Show | GitHub Exploit DB Packet Storm |
| 255338 | 4.6 | 警告 | IBM | - | IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-4150 | 2010-01-15 14:10 | 2009-12-2 | Show | GitHub Exploit DB Packet Storm |
| 255339 | 2.1 | 注意 | サン・マイクロシステムズ | - | Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-4080 | 2010-01-15 14:10 | 2009-11-24 | Show | GitHub Exploit DB Packet Storm |
| 255340 | 5 | 警告 | サン・マイクロシステムズ | - | Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-4075 | 2010-01-15 14:09 | 2009-11-23 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 14, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 210631 | 6.5 |
MEDIUM
Network |
gnome canonical fedoraproject netapp broadcom |
balsa glib-networking ubuntu_linux fedora cloud_backup fabric_operating_system |
In GNOME glib-networking through 2.64.2, the implementation of GTlsClientConnection skips hostname verification of the server's TLS certificate if the application fails to specify the expected server… |
CWE-295
Improper Certificate Validation |
CVE-2020-13645 | 2024-11-21 14:01 | 2020-05-28 | Show | GitHub Exploit DB Packet Storm |
| 210632 | 5.4 |
MEDIUM
Network |
pickplugins | accordion | An issue was discovered in the Accordion plugin before 2.2.9 for WordPress. The unprotected AJAX wp_ajax_accordions_ajax_import_json action allowed any authenticated user with Subscriber or higher pe… |
CWE-79
Cross-site Scripting |
CVE-2020-13644 | 2024-11-21 14:01 | 2020-05-28 | Show | GitHub Exploit DB Packet Storm |
| 210633 | 8.8 |
HIGH
Network |
siteorigin | page_builder | An issue was discovered in the SiteOrigin Page Builder plugin before 2.10.16 for WordPress. The live editor feature did not do any nonce verification, allowing for requests to be forged on behalf of … |
CWE-352
Origin Validation Error |
CVE-2020-13643 | 2024-11-21 14:01 | 2020-05-28 | Show | GitHub Exploit DB Packet Storm |
| 210634 | 8.8 |
HIGH
Network |
siteorigin | page_builder | An issue was discovered in the SiteOrigin Page Builder plugin before 2.10.16 for WordPress. The action_builder_content function did not do any nonce verification, allowing for requests to be forged o… |
CWE-352
Origin Validation Error |
CVE-2020-13642 | 2024-11-21 14:01 | 2020-05-28 | Show | GitHub Exploit DB Packet Storm |
| 210635 | 8.8 |
HIGH
Network |
infolific | real-time_find_and_replace | An issue was discovered in the Real-Time Find and Replace plugin before 4.0.2 for WordPress. The far_options_page function did not do any nonce verification, allowing for requests to be forged on beh… |
CWE-352
Origin Validation Error |
CVE-2020-13641 | 2024-11-21 14:01 | 2020-05-28 | Show | GitHub Exploit DB Packet Storm |
| 210636 | 6.1 |
MEDIUM
Network |
fork-cms | fork_cms | Fork before 5.8.3 allows XSS via navigation_title or title. |
CWE-79
Cross-site Scripting |
CVE-2020-13633 | 2024-11-21 14:01 | 2020-05-28 | Show | GitHub Exploit DB Packet Storm |
| 210637 | 6.1 |
MEDIUM
Network |
centreon |
centreon_host-monitoring_widget centreon_tactical-overview_widget centreon_service-monitoring_widget |
Cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via the widgetId parameter to host-monitoring/src/toolbar.php. This vulnerability is fixed in v… |
CWE-79
Cross-site Scripting |
CVE-2020-13628 | 2024-11-21 14:01 | 2020-05-28 | Show | GitHub Exploit DB Packet Storm |
| 210638 | 6.1 |
MEDIUM
Network |
centreon |
centreon_host-monitoring_widget centreon_tactical-overview_widget centreon_service-monitoring_widget |
Cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via the widgetId parameter to service-monitoring/src/index.php. This vulnerability is fixed in … |
CWE-79
Cross-site Scripting |
CVE-2020-13627 | 2024-11-21 14:01 | 2020-05-28 | Show | GitHub Exploit DB Packet Storm |
| 210639 | 5.5 |
MEDIUM
Local |
sqlite fedoraproject canonical netapp brocade debian siemens oracle |
sqlite fedora ubuntu_linux cloud_backup solidfire\ _enterprise_sds_\&_hci_storage_node fabric_operating_system hci_compute_node_firmware debian_linux sinec_infrastructu… |
ext/fts3/fts3_snippet.c in SQLite before 3.32.0 has a NULL pointer dereference via a crafted matchinfo() query. |
CWE-476
NULL Pointer Dereference |
CVE-2020-13632 | 2024-11-21 14:01 | 2020-05-28 | Show | GitHub Exploit DB Packet Storm |
| 210640 | 5.5 |
MEDIUM
Local |
sqlite fedoraproject canonical netapp brocade siemens apple oracle |
sqlite fedora ubuntu_linux cloud_backup solidfire\ _enterprise_sds_\&_hci_storage_node fabric_operating_system hci_compute_node_firmware sinec_infrastructure_network_servi… |
SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c. |
NVD-CWE-noinfo
|
CVE-2020-13631 | 2024-11-21 14:01 | 2020-05-28 | Show | GitHub Exploit DB Packet Storm |