Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226371 9.3 危険 WordPress.org - WordPress の wp-includes/theme.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4769 2012-12-20 18:52 2008-04-2 Show GitHub Exploit DB Packet Storm
226372 7.5 危険 tlm cms - TLM CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4768 2012-12-20 18:52 2008-10-28 Show GitHub Exploit DB Packet Storm
226373 9 危険 PHPNUKE - PHP-Nuke の DownloadsPlus モジュールにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4767 2012-12-20 18:52 2008-10-28 Show GitHub Exploit DB Packet Storm
226374 4.3 警告 wikidsystems - WiKID wClient-PHP の sample.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4763 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
226375 5 警告 php-daily - PHP-Daily の download_file.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4758 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
226376 7.5 危険 php-daily - PHP-Daily における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4757 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
226377 4.3 警告 php-daily - PHP-Daily の add_prest_date.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4756 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
226378 7.5 危険 pozscripts - PozScripts Classified Auctions Script の gotourl.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4755 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
226379 5.8 警告 scripts-for-sites - SFS Ez Forum の forum.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4754 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
226380 7.5 危険 tech logic - TlNews における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-4752 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198701 9.8 CRITICAL
Network 		rusqlite_project rusqlite An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via the repr(Rust) type. NVD-CWE-noinfo
CVE-2020-35872 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
198702 8.1 HIGH
Network 		rusqlite_project rusqlite An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via an Auxdata API data race. CWE-362
Race Condition 		CVE-2020-35871 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
198703 9.8 CRITICAL
Network 		rusqlite_project rusqlite An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via an Auxdata API use-after-free. CWE-416
 Use After Free 		CVE-2020-35870 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
198704 9.8 CRITICAL
Network 		rusqlite_project rusqlite An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated because rusqlite::trace::log mishandles format strings. CWE-134
Use of Externally-Controlled Format String 		CVE-2020-35869 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
198705 9.8 CRITICAL
Network 		rusqlite_project rusqlite An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via UnlockNotification. NVD-CWE-noinfo
CVE-2020-35868 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
198706 9.8 CRITICAL
Network 		rusqlite_project rusqlite An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via create_module. NVD-CWE-noinfo
CVE-2020-35867 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
198707 9.8 CRITICAL
Network 		rusqlite_project rusqlite An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via VTab / VTabCursor. NVD-CWE-noinfo
CVE-2020-35866 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
198708 7.5 HIGH
Network 		os_str_bytes_project os_str_bytes An issue was discovered in the os_str_bytes crate before 2.0.0 for Rust. It has false expectations about char::from_u32_unchecked behavior. NVD-CWE-noinfo
CVE-2020-35865 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
198709 7.5 HIGH
Network 		google flatbuffers An issue was discovered in the flatbuffers crate through 2020-04-11 for Rust. read_scalar (and read_scalar_at) can transmute values without unsafe blocks. NVD-CWE-noinfo
CVE-2020-35864 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
198710 9.8 CRITICAL
Network 		hyper hyper An issue was discovered in the hyper crate before 0.12.34 for Rust. HTTP request smuggling can occur. Remote code execution can occur in certain situations with an HTTP server on the loopback interfa… CWE-444
HTTP Request Smuggling 		CVE-2020-35863 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm