Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226621 7.5 危険 telephone - Telephone Directory 2008 における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2678 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
226622 4.3 警告 telephone - Telephone Directory 2008 の edit1.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2677 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
226623 4.3 警告 softcomplex - PHP Image Gallery の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2675 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
226624 7.5 危険 Powie - Powie pNews の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2673 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
226625 7.5 危険 y-blog - yBlog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2669 2012-12-20 18:52 2008-06-11 Show GitHub Exploit DB Packet Storm
226626 4.3 警告 y-blog - yBlog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2668 2012-12-20 18:52 2008-06-11 Show GitHub Exploit DB Packet Storm
226627 7.5 危険 smeweb - SMEWeb の catalog.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2652 2012-12-20 18:52 2008-06-10 Show GitHub Exploit DB Packet Storm
226628 4.3 警告 smeweb - SMEWeb における任意の Web スクリプトまたは HTML を挿入される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2644 2012-12-20 18:52 2008-06-10 Show GitHub Exploit DB Packet Storm
226629 7.5 危険 theflashblog - FlashBlog の php/leer_comentarios.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2572 2012-12-20 18:52 2008-06-6 Show GitHub Exploit DB Packet Storm
226630 4.3 警告 samtodo - SamTodo の dsp_main.php などにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2563 2012-12-20 18:52 2008-06-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198871 6.5 MEDIUM
Network 		oracle peoplesoft_enterprise_scm_purchasing Vulnerability in the PeopleSoft Enterprise SCM Purchasing product of Oracle PeopleSoft (component: Supplier Change). The supported version that is affected is 9.2. Easily exploitable vulnerability al… NVD-CWE-noinfo
CVE-2020-2906 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
198872 8.2 HIGH
Local 		oracle
opensuse 		vm_virtualbox
leap 		Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily expl… NVD-CWE-noinfo
CVE-2020-2905 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
198873 4.9 MEDIUM
Network 		oracle
fedoraproject
canonical
netapp 		mysql
fedora
ubuntu_linux
snapcenter
oncommand_workflow_automation
oncommand_insight
active_iq_unified_manager 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privi… NVD-CWE-noinfo
CVE-2020-2904 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
198874 4.9 MEDIUM
Network 		oracle
fedoraproject
canonical
netapp 		mysql
fedora
ubuntu_linux
snapcenter
oncommand_workflow_automation
oncommand_insight
active_iq_unified_manager 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Connection Handling). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows … NVD-CWE-noinfo
CVE-2020-2903 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
198875 8.8 HIGH
Local 		oracle
opensuse 		vm_virtualbox
leap 		Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily expl… CWE-787
 Out-of-bounds Write 		CVE-2020-2902 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
198876 4.9 MEDIUM
Network 		oracle
fedoraproject
canonical
netapp 		mysql
fedora
ubuntu_linux
snapcenter
oncommand_workflow_automation
oncommand_insight
active_iq_unified_manager 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privi… NVD-CWE-noinfo
CVE-2020-2901 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
198877 3.7 LOW
Network 		oracle graalvm Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle GraalVM (component: Tools). Supported versions that are affected are 19.3.1 and 20.0.0. Difficult to exploit vulnerability all… NVD-CWE-noinfo
CVE-2020-2900 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
198878 4.8 MEDIUM
Network 		oracle peoplesoft_enterprise_scm_purchasing Vulnerability in the PeopleSoft Enterprise SCM Purchasing product of Oracle PeopleSoft (component: Purchasing). The supported version that is affected is 9.2. Easily exploitable vulnerability allows … NVD-CWE-noinfo
CVE-2020-2899 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
198879 4.9 MEDIUM
Network 		oracle
fedoraproject
canonical
netapp 		mysql
fedora
ubuntu_linux
snapcenter
oncommand_workflow_automation
oncommand_insight
active_iq_unified_manager 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Charsets). The supported version that is affected is 8.0.19. Easily exploitable vulnerability allows high privileged atta… NVD-CWE-noinfo
CVE-2020-2898 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
198880 4.9 MEDIUM
Network 		oracle
fedoraproject
netapp
canonical 		mysql
fedora
snapcenter
oncommand_workflow_automation
oncommand_insight
active_iq_unified_manager
ubuntu_linux 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privi… NVD-CWE-noinfo
CVE-2020-2897 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm