Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226301 4.3 警告 scripts4profit - Scripts4Profit DXShopCart の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5119 2012-12-20 18:52 2008-11-17 Show GitHub Exploit DB Packet Storm
226302 4 警告 WordPress.org - WordPress におけるクロスサイトリクエストフォージェリ (CSRF) 攻撃を実行される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-5113 2012-12-20 18:52 2008-11-17 Show GitHub Exploit DB Packet Storm
226303 4 警告 Zope Foundation - Zope の PythonScripts におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5102 2012-12-20 18:52 2008-11-17 Show GitHub Exploit DB Packet Storm
226304 5 警告 TYPO3 Association - TYPO3 File List エクステンションにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-5096 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
226305 7.5 危険 TYPO3 Association - TYPO3 Another Backend Login エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5087 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
226306 6.8 警告 scripts frenzy - E-Uploader Pro における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5075 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
226307 7.5 危険 PHP-Fusion - PHP-Fusion 用の Freshlinks モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5074 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
226308 9 危険 yoxel - Yoxel の itpm_estimate.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5071 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
226309 7.5 危険 Pro Chat Rooms - Pro Chat Rooms における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5070 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
226310 5 警告 smolinari - mwcal の php/cal_pdf.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5062 2012-12-20 18:52 2008-11-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198111 5.9 MEDIUM
Network 		vmware workspace_one_sdk
workspace_one_web
workspace_one_piv-d_manager
workspace_one_people
workspace_one_notebook
workspace_one_intelligent_hub
workspace_one_boxer
workspace_one_conten… 		VMware Workspace ONE SDK and dependent mobile application updates address sensitive information disclosure vulnerability. CWE-295
Improper Certificate Validation  		CVE-2020-3940 2024-11-21 14:32 2020-01-18 Show GitHub Exploit DB Packet Storm
198112 7.0 HIGH
Local 		vmware tools The repair operation of VMware Tools for Windows 10.x.y has a race condition which may allow for privilege escalation in the Virtual Machine where Tools is installed. This vulnerability is not presen… CWE-362
Race Condition 		CVE-2020-3941 2024-11-21 14:32 2020-01-16 Show GitHub Exploit DB Packet Storm
198113 5.5 MEDIUM
Local 		apple mac_os_x This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. A malicious application… NVD-CWE-noinfo
CVE-2020-3896 2024-11-21 14:31 2021-12-24 Show GitHub Exploit DB Packet Storm
198114 7.8 HIGH
Local 		apple mac_os_x A use after free issue was addressed with improved memory management. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. A malicious… CWE-416
 Use After Free 		CVE-2020-3886 2024-11-21 14:31 2021-12-24 Show GitHub Exploit DB Packet Storm
198115 6.0 MEDIUM
Local 		qualcomm aqt1000_firmware
ar8031_firmware
ar8035_firmware
csr8811_firmware
csra6620_firmware
csra6640_firmware
csrb31024_firmware
fsm10055_firmware
fsm10056_firmware
ipq6000_firmwar… 		Out of bound read access in hypervisor due to an invalid read access attempt by passing invalid addresses in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Sna… CWE-125
Out-of-bounds Read 		CVE-2020-3664 2024-11-21 14:31 2021-02-22 Show GitHub Exploit DB Packet Storm
198116 5.5 MEDIUM
Local 		qualcomm qualcomm Local privilege escalation in admin services in Windows environment can occur due to an arbitrary read issue. CWE-200
Information Exposure 		CVE-2020-3687 2024-11-21 14:31 2021-01-21 Show GitHub Exploit DB Packet Storm
198117 9.8 CRITICAL
Network 		qualcomm msm8960
mdm9206
mdm9607
mdm9650
msm8909w
mdm9635m
mdm9655
mdm9615
mdm9625
mdm9640
mdm9645
sdm630
qca6174a
qca6574au
qca6584
qca6584au
qca9379
msm897… 		Possible out of bound memory access in audio due to integer underflow while processing modified contents in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snap… CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2020-3691 2024-11-21 14:31 2021-01-21 Show GitHub Exploit DB Packet Storm
198118 9.8 CRITICAL
Network 		qualcomm msm8960
mdm9607
mdm9650
msm8909w
mdm9635m
mdm9655
mdm9615
mdm9625
mdm9640
mdm9645
sdm630
qca6174a
qca6574au
qca6584au
qca9379
msm8976
msm8952
apq809… 		Possible memory out of bound issue during music playback when an incorrect bit stream content is copied into array without checking the length of array in Snapdragon Auto, Snapdragon Compute, Snapdra… CWE-120
Classic Buffer Overflow 		CVE-2020-3686 2024-11-21 14:31 2021-01-21 Show GitHub Exploit DB Packet Storm
198119 7.5 HIGH
Network 		qualcomm msm8960
mdm9206
mdm9607
mdm9650
msm8909w
mdm9635m
mdm9655
mdm9615
mdm9625
mdm9640
mdm9645
sdm630
qca6174a
qca6574au
qca6584
qca6584au
qca9379
msm897… 		Pointer variable which is freed is not cleared can result in memory corruption and leads to denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT,… CWE-415
 Double Free 		CVE-2020-3685 2024-11-21 14:31 2021-01-21 Show GitHub Exploit DB Packet Storm
198120 9.8 CRITICAL
Network 		cisco dna_spaces\ A vulnerability in the web-based management interface of Cisco DNA Spaces Connector could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerabil… CWE-78
OS Command  		CVE-2020-3586 2024-11-21 14:31 2020-11-19 Show GitHub Exploit DB Packet Storm