Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226111 6.8 警告 PHPKIT - PHPKIT におけるクロスサイトリクエストフォージェリ攻撃を実行される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-7193 2012-12-20 19:10 2009-09-9 Show GitHub Exploit DB Packet Storm
226112 6.8 警告 woltlab - wBB の index.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-7192 2012-12-20 19:10 2009-09-9 Show GitHub Exploit DB Packet Storm
226113 5 警告 pps.jussieu - Polipo におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-7191 2012-12-20 19:10 2009-09-9 Show GitHub Exploit DB Packet Storm
226114 5 警告 rittwick banerjee - Telephone Directory 2008 の del_query1.php における任意の連絡先を削除される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7180 2012-12-20 19:10 2009-09-8 Show GitHub Exploit DB Packet Storm
226115 7.5 危険 XOOPS - XOOPS 用の Uploader モジュールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-7178 2012-12-20 19:10 2009-09-8 Show GitHub Exploit DB Packet Storm
226116 7.5 危険 yanick bourbeau - LNP における管理者権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7172 2012-12-20 19:10 2009-09-8 Show GitHub Exploit DB Packet Storm
226117 4.3 警告 yanick bourbeau - LNP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7171 2012-12-20 19:10 2009-09-8 Show GitHub Exploit DB Packet Storm
226118 9.3 危険 uusee - UUSee UUUpgrade ActiveX コントロールにおける任意のファイルを強制的にダウンロードされる脆弱性 CWE-Other
その他 		CVE-2008-7168 2012-12-20 19:10 2009-09-8 Show GitHub Exploit DB Packet Storm
226119 7.5 危険 sami ekblad - Page Manager の upload.php における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7167 2012-12-20 19:10 2009-09-8 Show GitHub Exploit DB Packet Storm
226120 10 危険 ryo-oh-ki - Shareaza における脆弱性 CWE-noinfo
情報不足 		CVE-2008-7164 2012-12-20 19:10 2009-09-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197791 4.9 MEDIUM
Network 		octobercms october In OctoberCMS (october/october composer package) versions from 1.0.319 and before 1.0.466, an attacker can exploit this vulnerability to read local files of an October CMS server. The vulnerability i… CWE-829
 Inclusion of Functionality from Untrusted Control Sphere 		CVE-2020-5295 2024-11-21 14:33 2020-06-4 Show GitHub Exploit DB Packet Storm
197792 6.0 MEDIUM
Local 		dell dock_wd15_firmware
dock_wd19_firmware
thunderbolt_dock_tb16_firmware
precision_dual_usb-c_thunderbolt_dock_-_tb18dc_firmware 		Dell Dock Firmware Update Utilities for Dell Client Consumer and Commercial docking stations contain an Arbitrary File Overwrite vulnerability. The vulnerability is limited to the Dell Dock Firmware … CWE-427
 Uncontrolled Search Path Element 		CVE-2020-5357 2024-11-21 14:33 2020-05-29 Show GitHub Exploit DB Packet Storm
197793 5.3 MEDIUM
Network 		glpi-project glpi GLPI before before version 9.4.6 has a vulnerability involving a default encryption key. GLPIKEY is public and is used on every instance. This means anyone can decrypt sensitive data stored using thi… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-5248 2024-11-21 14:33 2020-05-13 Show GitHub Exploit DB Packet Storm
197794 7.8 HIGH
Local 		dell os_recovery_image_for_microsoft_windows_10 Dell Client platforms restored using a Dell OS recovery image downloaded before December 20, 2019, may contain an insecure inherited permissions vulnerability. A local authenticated malicious user wi… CWE-863
 Incorrect Authorization 		CVE-2020-5343 2024-11-21 14:33 2020-05-5 Show GitHub Exploit DB Packet Storm
197795 6.1 MEDIUM
Network 		rsa archer RSA Archer, versions prior to 6.7 P1 (6.7.0.1), contain a URL redirection vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to redirect application users t… CWE-601
Open Redirect 		CVE-2020-5337 2024-11-21 14:33 2020-05-5 Show GitHub Exploit DB Packet Storm
197796 6.1 MEDIUM
Network 		rsa archer RSA Archer, versions prior to 6.7 P1 (6.7.0.1), contain a URL injection vulnerability. An unauthenticated attacker could potentially exploit this vulnerability by tricking a victim application user t… CWE-74
Injection 		CVE-2020-5336 2024-11-21 14:33 2020-05-5 Show GitHub Exploit DB Packet Storm
197797 8.8 HIGH
Network 		rsa archer RSA Archer, versions prior to 6.7 P2 (6.7.0.2), contain a cross-site request forgery vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by tricking a victim… CWE-352
 Origin Validation Error 		CVE-2020-5335 2024-11-21 14:33 2020-05-5 Show GitHub Exploit DB Packet Storm
197798 6.1 MEDIUM
Network 		rsa archer RSA Archer, versions prior to 6.7 P2 (6.7.0.2), contains a Document Object Model (DOM) based cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulne… CWE-79
Cross-site Scripting 		CVE-2020-5334 2024-11-21 14:33 2020-05-5 Show GitHub Exploit DB Packet Storm
197799 4.3 MEDIUM
Network 		rsa archer RSA Archer, versions prior to 6.7 P3 (6.7.0.3), contain an authorization bypass vulnerability in the REST API. A remote authenticated malicious Archer user could potentially exploit this vulnerabilit… CWE-863
 Incorrect Authorization 		CVE-2020-5333 2024-11-21 14:33 2020-05-5 Show GitHub Exploit DB Packet Storm
197800 7.2 HIGH
Network 		rsa archer RSA Archer, versions prior to 6.7 P3 (6.7.0.3), contain a command injection vulnerability. AN authenticated malicious user with administrator privileges could potentially exploit this vulnerability t… CWE-78
OS Command  		CVE-2020-5332 2024-11-21 14:33 2020-05-5 Show GitHub Exploit DB Packet Storm