Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226501	7.5	危険	Pligg	-	Pligg CMS の submit.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6968	2012-12-20 19:10	2009-08-13	Show	GitHub Exploit DB Packet Storm

226502	7.5	危険	X7 Group	-	X7 Chat のログインページにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6964	2012-12-20 19:10	2009-08-13	Show	GitHub Exploit DB Packet Storm

226503	7.5	危険	turnkeyforms	-	TurnkeyForms Text Link Sales の admin.php における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6963	2012-12-20 19:10	2009-08-13	Show	GitHub Exploit DB Packet Storm

226504	5	警告	x10media	-	X10media x10 Automatic Mp3 Search Engine Script の download.php における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6960	2012-12-20 19:10	2009-08-12	Show	GitHub Exploit DB Packet Storm

226505	7.5	危険	wowraidmanager	-	WoW Raid Manager の auth/auth_phpbb3.php における認証を回避される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-7050	2012-12-20 19:10	2008-10-13	Show	GitHub Exploit DB Packet Storm

226506	7.5	危険	Simple Machines	-	SMF のパスワードリセット機能における他のユーザのパスワードを変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-6971	2012-12-20 19:10	2008-09-7	Show	GitHub Exploit DB Packet Storm

226507	7.5	危険	UBB Systems	-	UBB.threads の dosearch.inc.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6970	2012-12-20 19:10	2008-09-2	Show	GitHub Exploit DB Packet Storm

226508	10	危険	raidsonic	-	RaidSonic ICY BOX NAS の userHandler.cgi における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-7081	2012-12-20 19:10	2009-08-25	Show	GitHub Exploit DB Packet Storm

226509	5	警告	phpclassifiedsscript	-	Team PHP PHP Classifieds Script におけるデータベース資格情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7080	2012-12-20 19:10	2009-08-25	Show	GitHub Exploit DB Packet Storm

226510	7.5	危険	relative	-	SailPlanner における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-7077	2012-12-20 19:10	2009-08-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197181	9.6	CRITICAL Network	google debian	chrome debian_linux	Use after free in task scheduling in Google Chrome prior to 81.0.4044.129 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML…	CWE-416 Use After Free	CVE-2020-6462	2024-11-21 14:35	2020-05-21	Show	GitHub Exploit DB Packet Storm

197182	9.6	CRITICAL Network	google debian	chrome debian_linux	Use after free in storage in Google Chrome prior to 81.0.4044.129 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.	CWE-416 Use After Free	CVE-2020-6461	2024-11-21 14:35	2020-05-21	Show	GitHub Exploit DB Packet Storm

197183	6.5	MEDIUM Network	google debian	chrome debian_linux	Insufficient data validation in URL formatting in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to perform domain spoofing via a crafted domain name.	NVD-CWE-noinfo	CVE-2020-6460	2024-11-21 14:35	2020-05-21	Show	GitHub Exploit DB Packet Storm

197184	8.8	HIGH Network	google debian	chrome debian_linux	Use after free in payments in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	CWE-787 CWE-416 Out-of-bounds Write Use After Free	CVE-2020-6459	2024-11-21 14:35	2020-05-21	Show	GitHub Exploit DB Packet Storm

197185	8.8	HIGH Network	google debian	chrome debian_linux	Out of bounds read and write in PDFium in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2020-6458	2024-11-21 14:35	2020-05-21	Show	GitHub Exploit DB Packet Storm

197186	9.6	CRITICAL Network	google debian	chrome debian_linux	Use after free in speech recognizer in Google Chrome prior to 81.0.4044.113 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.	CWE-416 Use After Free	CVE-2020-6457	2024-11-21 14:35	2020-05-21	Show	GitHub Exploit DB Packet Storm

197187	5.5	MEDIUM Local	gonitro	nitro_pro	An exploitable information disclosure vulnerability exists in the way Nitro Pro 13.9.1.155 does XML error handling. A specially crafted PDF document can cause uninitialized memory access resulting in…	CWE-824 Access of Uninitialized Pointer	CVE-2020-6093	2024-11-21 14:35	2020-05-19	Show	GitHub Exploit DB Packet Storm

197188	7.8	HIGH Local	gonitro	nitro_pro	An exploitable code execution vulnerability exists in the way Nitro Pro 13.9.1.155 parses Pattern objects. A specially crafted PDF file can trigger an integer overflow that can lead to arbitrary code…	CWE-190 Integer Overflow or Wraparound	CVE-2020-6092	2024-11-21 14:35	2020-05-19	Show	GitHub Exploit DB Packet Storm

197189	8.8	HIGH Network	gonitro	nitro_pro	An exploitable code execution vulnerability exists in the PDF parser of Nitro Pro 13.9.1.155. A specially crafted PDF document can cause a use-after-free which can lead to remote code execution. An a…	CWE-416 Use After Free	CVE-2020-6074	2024-11-21 14:35	2020-05-19	Show	GitHub Exploit DB Packet Storm

197190	8.8	HIGH Network	sap	application_server	Service Data Download in SAP Application Server ABAP (ST-PI, before versions 2008_1_46C, 2008_1_620, 2008_1_640, 2008_1_700, 2008_1_710, 740) allows an attacker to inject code that can be executed by…	CWE-94 Code Injection	CVE-2020-6262	2024-11-21 14:35	2020-05-13	Show	GitHub Exploit DB Packet Storm