Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226611 6.8 警告 Xen プロジェクト - Xen の flask_security_label 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3687 2012-12-20 18:52 2008-08-14 Show GitHub Exploit DB Packet Storm
226612 5 警告 サン・マイクロシステムズ - Sun Java System Web Proxy Server の FTP サブシステムにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-3683 2012-12-20 18:52 2008-08-12 Show GitHub Exploit DB Packet Storm
226613 6.8 警告 YPNinc - YPN PHP Realty の dpage.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3682 2012-12-20 18:52 2008-08-14 Show GitHub Exploit DB Packet Storm
226614 7.5 危険 pozscripts - PozScripts TubeGuru Video Sharing Script の ugroups.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3674 2012-12-20 18:52 2008-08-13 Show GitHub Exploit DB Packet Storm
226615 7.5 危険 pozscripts - PozScripts Classified Ads の browsecats.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3673 2012-12-20 18:52 2008-08-13 Show GitHub Exploit DB Packet Storm
226616 7.5 危険 pozscripts - PozScripts Classified Ads の showcategory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3672 2012-12-20 18:52 2008-08-13 Show GitHub Exploit DB Packet Storm
226617 7.5 危険 ZeeScripts.com - ZeeScripts Reviews Opinions Rating Posting Engine Web-Site PHP Script の comments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3669 2012-12-20 18:52 2008-08-13 Show GitHub Exploit DB Packet Storm
226618 4.3 警告 xrms - XRMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3664 2012-12-20 18:52 2008-09-5 Show GitHub Exploit DB Packet Storm
226619 5 警告 Tiki Software Community Association - TikiWiki CMS/Groupware における "パスおよび PHP の設定" を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2008-3654 2012-12-20 18:52 2008-08-4 Show GitHub Exploit DB Packet Storm
226620 10 危険 Tiki Software Community Association - TikiWiki CMS/Groupware における脆弱性 CWE-noinfo
情報不足 		CVE-2008-3653 2012-12-20 18:52 2008-08-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211151 5.5 MEDIUM
Local 		apple mac_os_x A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1. A sandboxed process may be able to circumvent sandbox restrictions. NVD-CWE-noinfo
CVE-2020-10009 2024-11-21 13:54 2020-12-9 Show GitHub Exploit DB Packet Storm
211152 5.5 MEDIUM
Local 		apple mac_os_x A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1. A malicious application may be able to determine kernel memory layout. NVD-CWE-noinfo
CVE-2020-10007 2024-11-21 13:54 2020-12-9 Show GitHub Exploit DB Packet Storm
211153 5.5 MEDIUM
Local 		apple mac_os_x This issue was addressed with improved entitlements. This issue is fixed in macOS Big Sur 11.0.1. A malicious application may be able to access restricted files. NVD-CWE-Other
CVE-2020-10006 2024-11-21 13:54 2020-12-9 Show GitHub Exploit DB Packet Storm
211154 7.8 HIGH
Local 		apple mac_os_x
tvos
iphone_os
ipados 		A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2. Opening a maliciously crafted file may lead to unexpected applicatio… NVD-CWE-noinfo
CVE-2020-10004 2024-11-21 13:54 2020-12-9 Show GitHub Exploit DB Packet Storm
211155 7.8 HIGH
Local 		apple mac_os_x
tvos
iphone_os
watchos
ipados 		An issue existed within the path validation logic for symlinks. This issue was addressed with improved path sanitization. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 1… CWE-59
Link Following 		CVE-2020-10003 2024-11-21 13:54 2020-12-9 Show GitHub Exploit DB Packet Storm
211156 5.5 MEDIUM
Local 		apple mac_os_x
tvos
itunes
iphone_os
watchos
icloud
ipados 		A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, tvOS 14.2, iTunes 12.11 for Wi… NVD-CWE-noinfo
CVE-2020-10002 2024-11-21 13:54 2020-12-9 Show GitHub Exploit DB Packet Storm
211157 7.3 HIGH
Local 		acronis true_image Acronis True Image 2021 fails to properly set ACLs of the C:\ProgramData\Acronis directory. Because some privileged processes are executed from the C:\ProgramData\Acronis, an unprivileged user can ac… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-10140 2024-11-21 13:54 2020-10-21 Show GitHub Exploit DB Packet Storm
211158 7.8 HIGH
Local 		acronis true_image Acronis True Image 2021 includes an OpenSSL component that specifies an OPENSSLDIR variable as a subdirectory within C:\jenkins_agent\. Acronis True Image contains a privileged service that uses this… CWE-665
 Improper Initialization 		CVE-2020-10139 2024-11-21 13:54 2020-10-21 Show GitHub Exploit DB Packet Storm
211159 7.8 HIGH
Local 		acronis cyber_protect
cyber_backup 		Acronis Cyber Backup 12.5 and Cyber Protect 15 include an OpenSSL component that specifies an OPENSSLDIR variable as a subdirectory within C:\jenkins_agent\. Acronis Cyber Backup and Cyber Protect co… CWE-665
 Improper Initialization 		CVE-2020-10138 2024-11-21 13:54 2020-10-21 Show GitHub Exploit DB Packet Storm
211160 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		<p>An elevation of privilege vulnerability exists when the Windows Storage Services improperly handle file operations. An attacker who successfully exploited this vulnerability could gain elevated pr… NVD-CWE-noinfo
CVE-2020-0764 2024-11-21 13:54 2020-10-17 Show GitHub Exploit DB Packet Storm