Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225961 7.5 危険 socialgroupie - Social Groupie の group_index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6358 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
225962 5 警告 the net guys - The Net Guys ASPired2Protect におけるユーザ名などを含むデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6355 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
225963 5 警告 the net guys - The Net Guys ASPired2poll におけるユーザ名などを含むデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6354 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
225964 7.5 危険 xpoze - Xpoze Pro の home.html における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6352 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
225965 4.3 警告 turnkeyforms - TurnkeyForms Local Classifieds の listtest.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6351 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
225966 7.5 危険 turnkeyforms - TurnkeyForms Local Classifieds の listtest.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6350 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
225967 7.5 危険 turnkeyforms - TurnkeyForms Business Survey Pro の survey_results_text.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6349 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
225968 4.3 警告 ticklespace - Drupal 用の Answers モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6413 2012-12-20 19:10 2008-09-18 Show GitHub Exploit DB Packet Storm
225969 4.3 警告 sadi samami - Multi Languages WebShop Online の detail.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6267 2012-12-20 19:10 2009-02-25 Show GitHub Exploit DB Packet Storm
225970 6.8 警告 xt:Commerce - xt:Commerce における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6304 2012-12-20 19:10 2008-11-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198511 8.8 HIGH
Network 		apple icloud
iphone_os
ipados
tvos
itunes
safari 		Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for… CWE-787
 Out-of-bounds Write 		CVE-2020-3825 2024-11-21 14:31 2020-02-28 Show GitHub Exploit DB Packet Storm
198512 9.8 CRITICAL
Network 		tonnet tat-77104g1_firmware
tat-70432n_firmware
tat-71416g1_firmware
tat-71832g1_firmware
tat-76104g3_firmware
tat-76108g3_firmware
tat-76116g3_firmware
tat-76132g3_firmware 		DVR firmware in TAT-76 and TAT-77 series of products, provided by TONNET do not properly verify patch files. Attackers can inject a specific command into a patch file and gain access to the system. CWE-77
Command Injection 		CVE-2020-3924 2024-11-21 14:31 2020-02-27 Show GitHub Exploit DB Packet Storm
198513 9.8 CRITICAL
Network 		tonnet tat-77104g1_firmware
tat-70432n_firmware
tat-71416g1_firmware
tat-71832g1_firmware
tat-76104g3_firmware
tat-76108g3_firmware
tat-76116g3_firmware
tat-76132g3_firmware 		DVR firmware in TAT-76 and TAT-77 series of products, provided by TONNET, contain misconfigured authentication mechanism. Attackers can crack the default password and gain access to the system. CWE-287
Improper Authentication 		CVE-2020-3923 2024-11-21 14:31 2020-02-27 Show GitHub Exploit DB Packet Storm
198514 9.8 CRITICAL
Network 		adobe after_effects Adobe After Effects versions 16.1.2 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution. CWE-787
 Out-of-bounds Write 		CVE-2020-3765 2024-11-21 14:31 2020-02-21 Show GitHub Exploit DB Packet Storm
198515 7.8 HIGH
Local 		adobe media_encoder Adobe Media Encoder versions 14.0 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution . CWE-787
 Out-of-bounds Write 		CVE-2020-3764 2024-11-21 14:31 2020-02-21 Show GitHub Exploit DB Packet Storm
198516 9.8 CRITICAL
Network 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader versions 2019.021.20061 and earlier, 2017.011.30156 and earlier, 2017.011.30156 and earlier, and 2015.006.30508 and earlier have a privilege escalation vulnerability. Success… NVD-CWE-noinfo
CVE-2020-3763 2024-11-21 14:31 2020-02-14 Show GitHub Exploit DB Packet Storm
198517 9.8 CRITICAL
Network 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader versions 2019.021.20061 and earlier, 2017.011.30156 and earlier, 2017.011.30156 and earlier, and 2015.006.30508 and earlier have a privilege escalation vulnerability. Success… NVD-CWE-noinfo
CVE-2020-3762 2024-11-21 14:31 2020-02-14 Show GitHub Exploit DB Packet Storm
198518 9.8 CRITICAL
Network 		adobe digital_editions Adobe Digital Editions versions 4.5.10 and below have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution. CWE-77
Command Injection 		CVE-2020-3760 2024-11-21 14:31 2020-02-14 Show GitHub Exploit DB Packet Storm
198519 7.5 HIGH
Network 		adobe digital_editions Adobe Digital Editions versions 4.5.10 and below have a buffer errors vulnerability. Successful exploitation could lead to information disclosure. NVD-CWE-noinfo
CVE-2020-3759 2024-11-21 14:31 2020-02-14 Show GitHub Exploit DB Packet Storm
198520 8.8 HIGH
Network 		adobe
redhat 		flash_player
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation 		Adobe Flash Player versions 32.0.0.321 and earlier, 32.0.0.314 and earlier, 32.0.0.321 and earlier, and 32.0.0.255 and earlier have a type confusion vulnerability. Successful exploitation could lead … CWE-843
Type Confusion 		CVE-2020-3757 2024-11-21 14:31 2020-02-14 Show GitHub Exploit DB Packet Storm