Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226611	6.8	警告	Xen プロジェクト	-	Xen の flask_security_label 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-3687	2012-12-20 18:52	2008-08-14	Show	GitHub Exploit DB Packet Storm

226612	5	警告	サン・マイクロシステムズ	-	Sun Java System Web Proxy Server の FTP サブシステムにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-3683	2012-12-20 18:52	2008-08-12	Show	GitHub Exploit DB Packet Storm

226613	6.8	警告	YPNinc	-	YPN PHP Realty の dpage.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3682	2012-12-20 18:52	2008-08-14	Show	GitHub Exploit DB Packet Storm

226614	7.5	危険	pozscripts	-	PozScripts TubeGuru Video Sharing Script の ugroups.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3674	2012-12-20 18:52	2008-08-13	Show	GitHub Exploit DB Packet Storm

226615	7.5	危険	pozscripts	-	PozScripts Classified Ads の browsecats.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3673	2012-12-20 18:52	2008-08-13	Show	GitHub Exploit DB Packet Storm

226616	7.5	危険	pozscripts	-	PozScripts Classified Ads の showcategory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3672	2012-12-20 18:52	2008-08-13	Show	GitHub Exploit DB Packet Storm

226617	7.5	危険	ZeeScripts.com	-	ZeeScripts Reviews Opinions Rating Posting Engine Web-Site PHP Script の comments.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3669	2012-12-20 18:52	2008-08-13	Show	GitHub Exploit DB Packet Storm

226618	4.3	警告	xrms	-	XRMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3664	2012-12-20 18:52	2008-09-5	Show	GitHub Exploit DB Packet Storm

226619	5	警告	Tiki Software Community Association	-	TikiWiki CMS/Groupware における "パスおよび PHP の設定" を取得される脆弱性	CWE-noinfo 情報不足	CVE-2008-3654	2012-12-20 18:52	2008-08-4	Show	GitHub Exploit DB Packet Storm

226620	10	危険	Tiki Software Community Association	-	TikiWiki CMS/Groupware における脆弱性	CWE-noinfo 情報不足	CVE-2008-3653	2012-12-20 18:52	2008-08-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197341	5.3	MEDIUM Network	vmware	esxi workstation cloud_foundation fusion	In VMware ESXi (6.7 before ESXi670-201908101-SG, 6.5 before ESXi650-202007101-SG), Workstation (15.x before 15.1.0), Fusion (11.x before 11.1.0), the VMCI host drivers used by VMware hypervisors cont…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2020-3995	2024-11-21 14:32	2020-10-21	Show	GitHub Exploit DB Packet Storm

197342	7.4	HIGH Network	vmware	vcenter_server cloud_foundation	VMware vCenter Server (6.7 before 6.7u3, 6.6 before 6.5u3k) contains a session hijack vulnerability in the vCenter Server Appliance Management Interface update function due to a lack of certificate v…	CWE-295 Improper Certificate Validation	CVE-2020-3994	2024-11-21 14:32	2020-10-21	Show	GitHub Exploit DB Packet Storm

197343	5.9	MEDIUM Network	vmware	cloud_foundation nsx-t_data_center	VMware NSX-T (3.x before 3.0.2, 2.5.x before 2.5.2.2.0) contains a security vulnerability that exists in the way it allows a KVM host to download and install packages from NSX manager. A malicious ac…	NVD-CWE-noinfo	CVE-2020-3993	2024-11-21 14:32	2020-10-21	Show	GitHub Exploit DB Packet Storm

197344	9.8	CRITICAL Network	vmware	esxi cloud_foundation	OpenSLP as used in VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202010401-SG, 6.5 before ESXi650-202010401-SG) has a use-after-free issue. A malicious actor residing in the man…	CWE-416 Use After Free	CVE-2020-3992	2024-11-21 14:32	2020-10-21	Show	GitHub Exploit DB Packet Storm

197345	5.8	MEDIUM Network	vmware	esxi workstation cloud_foundation fusion	VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202008101-SG, 6.5 before ESXi650-202007101-SG), Workstation (15.x), Fusion (11.x before 11.5.6) contain an out-of-bounds read vulne…	CWE-125 CWE-367 Out-of-bounds Read Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2020-3981	2024-11-21 14:32	2020-10-21	Show	GitHub Exploit DB Packet Storm

197346	5.4	MEDIUM Network	ibm	sterling_file_gateway sterling_b2b_integrator	IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.0.3.1 and IBM Sterling File Gateway 2.2.0.0 through 6.0.3.1 are vulnerable to cross-site scripting. This vulnerability allows users to e…	CWE-79 Cross-site Scripting	CVE-2020-4564	2024-11-21 14:32	2020-10-21	Show	GitHub Exploit DB Packet Storm

197347	5.5	MEDIUM Local	ibm	spectrum_scale	IBM Spectrum Scale V4.2.0.0 through V4.2.3.22 and V5.0.0.0 through V5.0.5 could allow a local attacker to cause a denial of service by sending a large number of RPC requests to the mmfsd daemon which…	NVD-CWE-noinfo	CVE-2020-4491	2024-11-21 14:32	2020-10-21	Show	GitHub Exploit DB Packet Storm

197348	7.7	HIGH Network	vmware	esxi cloud_foundation workstation workstation_player fusion	VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202008101-SG, 6.5 before ESXi650-202007101-SG), Workstation (15.x), Fusion (11.x before 11.5.6) contain an out-of-bounds write vuln…	CWE-787 CWE-367 Out-of-bounds Write Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2020-3982	2024-11-21 14:32	2020-10-21	Show	GitHub Exploit DB Packet Storm

197349	7.5	HIGH Network	ibm	security_guardium_big_data_intelligence	IBM Security Guardium Big Data Intelligence 1.0 (SonarG) uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 17556…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-4254	2024-11-21 14:32	2020-10-17	Show	GitHub Exploit DB Packet Storm

197350	7.1	HIGH Local	vmware	horizon_client	VMware Horizon Client for Windows (5.x before 5.5.0) contains a denial-of-service vulnerability due to a file system access control issue during install time. Successful exploitation of this issue ma…	NVD-CWE-Other	CVE-2020-3991	2024-11-21 14:32	2020-10-16	Show	GitHub Exploit DB Packet Storm