Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226221 7.5 危険 sepcity - SepCity Faculty Portal の deptdisplay.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6152 2012-12-20 19:10 2009-02-16 Show GitHub Exploit DB Packet Storm
226222 7.5 危険 sepcity - SepCity Shopping Mall の shpdetails.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6151 2012-12-20 19:10 2009-02-16 Show GitHub Exploit DB Packet Storm
226223 7.5 危険 sepcity - SepCity Classified Ads の classdis.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6150 2012-12-20 19:10 2009-02-16 Show GitHub Exploit DB Packet Storm
226224 7.5 危険 raven-worx - Joomla! 用の liveticker モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6148 2012-12-20 19:10 2009-02-16 Show GitHub Exploit DB Packet Storm
226225 7.5 危険 Web-Empowered Church Team - TYPO3 用の WEC Discussion Forum エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6145 2012-12-20 19:10 2009-02-16 Show GitHub Exploit DB Packet Storm
226226 4.3 警告 Web-Empowered Church Team - TYPO3 用の WEC Discussion Forum エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6144 2012-12-20 19:10 2009-02-16 Show GitHub Exploit DB Packet Storm
226227 5 警告 webbiscuits - WebBiscuits Modules Controller の faqsupport/wce.download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6139 2012-12-20 19:10 2009-02-13 Show GitHub Exploit DB Packet Storm
226228 7.5 危険 webbiscuits - WebBiscuits Modules Controller の adminhead.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6138 2012-12-20 19:10 2009-02-13 Show GitHub Exploit DB Packet Storm
226229 7.5 危険 socialengine - SocialEngine における CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6121 2012-12-20 19:10 2009-02-11 Show GitHub Exploit DB Packet Storm
226230 7.5 危険 socialengine - SocialEngine の profile_comments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6120 2012-12-20 19:10 2009-02-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212071 9.8 CRITICAL
Network 		microsoft windows_server_2012
windows_server_2016
windows_server_2019 		A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted reques… NVD-CWE-noinfo
CVE-2020-0610 2024-11-21 13:53 2020-01-15 Show GitHub Exploit DB Packet Storm
212072 9.8 CRITICAL
Network 		microsoft windows_server_2012
windows_server_2016
windows_server_2019 		A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted reques… NVD-CWE-noinfo
CVE-2020-0609 2024-11-21 13:53 2020-01-15 Show GitHub Exploit DB Packet Storm
212073 5.5 MEDIUM
Local 		microsoft windows_rt_8.1
windows_server_2008
windows_server_2012
windows_10
windows_server_2016
windows_8.1
windows_7
windows_server_2019 		An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. NVD-CWE-noinfo
CVE-2020-0608 2024-11-21 13:53 2020-01-15 Show GitHub Exploit DB Packet Storm
212074 5.5 MEDIUM
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_server_2016
windows_8.1
windows_7
windows_server_2019 		An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Information Disclosure Vulnerability'. NVD-CWE-noinfo
CVE-2020-0607 2024-11-21 13:53 2020-01-15 Show GitHub Exploit DB Packet Storm
212075 8.8 HIGH
Network 		microsoft .net_framework
.net_core 		A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary… CWE-20
 Improper Input Validation  		CVE-2020-0606 2024-11-21 13:53 2020-01-15 Show GitHub Exploit DB Packet Storm
212076 8.8 HIGH
Network 		microsoft .net_framework
.net_core 		A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary… CWE-20
 Improper Input Validation  		CVE-2020-0605 2024-11-21 13:53 2020-01-15 Show GitHub Exploit DB Packet Storm
212077 8.8 HIGH
Network 		microsoft
redhat 		asp.net_core
enterprise_linux
enterprise_linux_eus 		A remote code execution vulnerability exists in ASP.NET Core software when the software fails to handle objects in memory.An attacker who successfully exploited the vulnerability could run arbitrary … CWE-787
 Out-of-bounds Write 		CVE-2020-0603 2024-11-21 13:53 2020-01-15 Show GitHub Exploit DB Packet Storm
212078 7.5 HIGH
Network 		microsoft
redhat 		asp.net_core
enterprise_linux
enterprise_linux_eus 		A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'. NVD-CWE-noinfo
CVE-2020-0602 2024-11-21 13:53 2020-01-15 Show GitHub Exploit DB Packet Storm
212079 8.1 HIGH
Network 		microsoft
golang 		windows_10
windows_server_2016
windows_server_2019
go 		A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code… CWE-295
Improper Certificate Validation  		CVE-2020-0601 2024-11-21 13:53 2020-01-15 Show GitHub Exploit DB Packet Storm
212080 7.8 HIGH
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is … NVD-CWE-noinfo
CVE-2020-0632 2024-11-21 13:53 2020-01-15 Show GitHub Exploit DB Packet Storm