Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226461	7.5	危険	Web-Empowered Church Team	-	TYPO3 用の WEC Discussion Forum エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6145	2012-12-20 19:10	2009-02-16	Show	GitHub Exploit DB Packet Storm

226462	4.3	警告	Web-Empowered Church Team	-	TYPO3 用の WEC Discussion Forum エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6144	2012-12-20 19:10	2009-02-16	Show	GitHub Exploit DB Packet Storm

226463	5	警告	webbiscuits	-	WebBiscuits Modules Controller の faqsupport/wce.download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6139	2012-12-20 19:10	2009-02-13	Show	GitHub Exploit DB Packet Storm

226464	7.5	危険	webbiscuits	-	WebBiscuits Modules Controller の adminhead.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6138	2012-12-20 19:10	2009-02-13	Show	GitHub Exploit DB Packet Storm

226465	7.5	危険	socialengine	-	SocialEngine における CRLF インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2008-6121	2012-12-20 19:10	2009-02-11	Show	GitHub Exploit DB Packet Storm

226466	7.5	危険	socialengine	-	SocialEngine の profile_comments.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6120	2012-12-20 19:10	2009-02-11	Show	GitHub Exploit DB Packet Storm

226467	7.5	危険	pilotgroup	-	PG Job Site Pro の homepage.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6117	2012-12-20 19:10	2009-02-11	Show	GitHub Exploit DB Packet Storm

226468	7.5	危険	prozilla	-	Prozilla Hosting Index の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6115	2012-12-20 19:10	2009-02-11	Show	GitHub Exploit DB Packet Storm

226469	4.3	警告	SemanticScuttle	-	SemanticScuttle におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6113	2012-12-20 19:10	2009-02-11	Show	GitHub Exploit DB Packet Storm

226470	5	警告	Scriptsez.net	-	Ez Ringtone Manager におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6112	2012-12-20 19:10	2009-02-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197361	7.8	HIGH Local	f5	big-iq_centralized_management big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager…	On BIG-IP 15.0.0-15.0.1.2, 14.1.0-14.1.2.2, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1 and BIG-IQ 7.0.0, 6.0.0-6.1.0, and 5.2.0-5.4.0, users with non-administrator roles (for example, Guest …	NVD-CWE-noinfo	CVE-2020-5858	2024-11-21 14:34	2020-03-28	Show	GitHub Exploit DB Packet Storm

197362	7.5	HIGH Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system …	On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.2, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, undisclosed HTTP behavior may lead to a denial of service.	NVD-CWE-noinfo	CVE-2020-5857	2024-11-21 14:34	2020-03-28	Show	GitHub Exploit DB Packet Storm

197363	9.8	CRITICAL Network	keijiban_tsumiki_project	keijiban_tsumiki	Keijiban Tsumiki v1.15 allows remote attackers to execute arbitrary OS commands via unspecified vectors.	CWE-78 OS Command	CVE-2020-5561	2024-11-21 14:34	2020-03-25	Show	GitHub Exploit DB Packet Storm

197364	9.8	CRITICAL Network	wl-enq_project	wl-enq	WL-Enq 1.11 and 1.12 allows remote attackers to execute arbitrary OS commands with the administrative privilege via unspecified vectors.	CWE-78 OS Command	CVE-2020-5560	2024-11-21 14:34	2020-03-25	Show	GitHub Exploit DB Packet Storm

197365	6.1	MEDIUM Network	wl-enq_project	wl-enq	Cross-site scripting vulnerability in WL-Enq 1.11 and 1.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2020-5559	2024-11-21 14:34	2020-03-25	Show	GitHub Exploit DB Packet Storm

197366	8.8	HIGH Network	cutephp	cutenews	CuteNews 2.0.1 allows remote authenticated attackers to execute arbitrary PHP code via unspecified vectors.	CWE-94 Code Injection	CVE-2020-5558	2024-11-21 14:34	2020-03-25	Show	GitHub Exploit DB Packet Storm

197367	6.1	MEDIUM Network	cutephp	cutenews	Cross-site scripting vulnerability in CuteNews 2.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2020-5557	2024-11-21 14:34	2020-03-25	Show	GitHub Exploit DB Packet Storm

197368	9.8	CRITICAL Network	shihonkanri_plus_goout_project	shihonkanri_plus_goout	Shihonkanri Plus GOOUT Ver1.5.8 and Ver2.2.10 allows remote attackers to execute arbitrary OS commands via unspecified vectors.	CWE-78 OS Command	CVE-2020-5556	2024-11-21 14:34	2020-03-25	Show	GitHub Exploit DB Packet Storm

197369	9.1	CRITICAL Network	shihonkanri_plus_goout_project	shihonkanri_plus_goout	Shihonkanri Plus GOOUT Ver1.5.8 and Ver2.2.10 allows remote attackers to read and write data of the files placed in the same directory where it is placed via unspecified vector due to the improper in…	CWE-20 Improper Input Validation	CVE-2020-5555	2024-11-21 14:34	2020-03-25	Show	GitHub Exploit DB Packet Storm

197370	9.1	CRITICAL Network	shihonkanri_plus_goout_project	shihonkanri_plus_goout	Directory traversal vulnerability in Shihonkanri Plus GOOUT Ver1.5.8 and Ver2.2.10 allows remote attackers to read and write arbitrary files via unspecified vectors.	CWE-22 Path Traversal	CVE-2020-5554	2024-11-21 14:34	2020-03-25	Show	GitHub Exploit DB Packet Storm