Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226761	7.5	危険	scripts frenzy	-	Article Publisher Pro の admin/admin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4901	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226762	9.3	危険	SAP	-	SAP GUI の KWEdit ActiveX コントロールにおける任意のファイルを上書きされる脆弱性	CWE-Other その他	CVE-2008-4830	2012-12-20 18:52	2009-04-16	Show	GitHub Exploit DB Packet Storm

226763	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Classifieds Blaster Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4900	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226764	6.8	警告	planetluc	-	Planetluc RateMe におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-4899	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226765	4.3	警告	planetluc	-	planetluc RateMe におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4898	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226766	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Downline Builder の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4895	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226767	5.1	警告	Tribal Ltd.	-	Tribiq CMS の templates/mytribiqsite/tribal-GPL-1066/includes/header.inc.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4894	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226768	2.6	注意	Tribal Ltd.	-	Tribiq CMS の templates/mytribiqsite/tribal-GPL-1066/includes/header.inc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4893	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226769	4.3	警告	planetluc	-	Planetluc MyGallery の gallery.inc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4892	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226770	4.3	警告	planetluc	-	Planetluc SignMe の signme.inc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4891	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197061	9.8	CRITICAL Network	mitsubishielectric	iu1-1m20-d_firmware	Null Pointer Dereference vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop …	CWE-476 NULL Pointer Dereference	CVE-2020-5544	2024-11-21 14:34	2020-03-16	Show	GitHub Exploit DB Packet Storm

197062	9.8	CRITICAL Network	mitsubishielectric	iu1-1m20-d_firmware	TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier does not properly manage sessions, which allows remote attackers to stop t…	CWE-384 Session Fixation	CVE-2020-5543	2024-11-21 14:34	2020-03-16	Show	GitHub Exploit DB Packet Storm

197063	9.8	CRITICAL Network	mitsubishielectric	iu1-1m20-d_firmware	Buffer error vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-5542	2024-11-21 14:34	2020-03-16	Show	GitHub Exploit DB Packet Storm

197064	5.5	MEDIUM Local	nvidia	virtual_gpu_graphics_driver	NVIDIA vGPU graphics driver for guest OS contains a vulnerability in which an incorrect resource clean up on a failure path can impact the guest VM, leading to denial of service.	CWE-459 Incomplete Cleanup	CVE-2020-5961	2024-11-21 14:34	2020-03-13	Show	GitHub Exploit DB Packet Storm

197065	5.5	MEDIUM Local	nvidia	virtual_gpu_manager	NVIDIA Virtual GPU Manager contains a vulnerability in the kernel module (nvidia.ko), where a null pointer dereference may occur, which may lead to denial of service.	CWE-476 NULL Pointer Dereference	CVE-2020-5960	2024-11-21 14:34	2020-03-13	Show	GitHub Exploit DB Packet Storm

197066	5.5	MEDIUM Local	nvidia	virtual_gpu_manager	NVIDIA Virtual GPU Manager, all versions, contains a vulnerability in the vGPU plugin in which an input index value is incorrectly validated which may lead to denial of service.	CWE-129 Improper Validation of Array Index	CVE-2020-5959	2024-11-21 14:34	2020-03-13	Show	GitHub Exploit DB Packet Storm

197067	7.8	HIGH Local	nvidia	quadro_firmware geforce_experience tesla_firmware	NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the NVIDIA Control Panel component in which an attacker with local system access can plant a malicious DLL file, which may…	NVD-CWE-noinfo	CVE-2020-5958	2024-11-21 14:34	2020-03-12	Show	GitHub Exploit DB Packet Storm

197068	7.8	HIGH Local	nvidia	quadro_firmware geforce_experience tesla_firmware	NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the NVIDIA Control Panel component in which an attacker with local system access can corrupt a system file, which may lead…	NVD-CWE-noinfo	CVE-2020-5957	2024-11-21 14:34	2020-03-6	Show	GitHub Exploit DB Packet Storm

197069	6.5	MEDIUM Network	vmware	spring_cloud_config	Spring Cloud Config, versions 2.2.x prior to 2.2.2, versions 2.1.x prior to 2.1.7, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-co…	CWE-22 Path Traversal	CVE-2020-5405	2024-11-21 14:34	2020-03-6	Show	GitHub Exploit DB Packet Storm

197070	8.8	HIGH Adjacent	plathome	openblocks_iot_vx2_firmware	OpenBlocks IoT VX2 prior to Ver.4.0.0 (Ver.3 Series) allows an attacker on the same network segment to bypass authentication and to initialize the device via unspecified vectors.	CWE-287 Improper Authentication	CVE-2020-5536	2024-11-21 14:34	2020-03-4	Show	GitHub Exploit DB Packet Storm