Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 2:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226811	4.3	警告	CJ Niemira	-	phpMyID の MyID.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4730	2012-12-20 18:52	2008-10-24	Show	GitHub Exploit DB Packet Storm

226812	4.3	警告	sungard	-	SunGard Banner Student のコンタクトアップデートページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4727	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

226813	7.5	危険	X7 Group	-	X7 Chat の help/mini.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4718	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

226814	7.5	危険	zeeways	-	ZEELYRICS の bannerclick.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4717	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

226815	7.5	危険	scriptdemo	-	BitmixSoft PHP-Lance の show.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4716	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

226816	7.5	危険	pilotgroup	-	PG eTraining の news_read.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4709	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

226817	7.5	危険	sylvain pasquet	-	BbZL.PhP における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-4708	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

226818	5	警告	sylvain pasquet	-	BbZL.PhP の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4707	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

226819	7.5	危険	vBulletin Solutions, Inc.	-	VBGooglemap Hotspot Edition モジュールなどにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4706	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

226820	7.5	危険	phponlinedatingsoftware	-	php Online Dating Software MyPHPDating の success_story.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4705	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197041	7.5	HIGH Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system …	On BIG-IP 15.1.0.1, specially formatted HTTP/3 messages may cause TMM to produce a core file.	NVD-CWE-noinfo	CVE-2020-5859	2024-11-21 14:34	2020-03-28	Show	GitHub Exploit DB Packet Storm

197042	7.5	HIGH Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system …	On BIG-IP 12.1.0-12.1.5, the TMM process may produce a core file in some cases when Ram Cache incorrectly optimizes stored data resulting in memory errors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-5861	2024-11-21 14:34	2020-03-28	Show	GitHub Exploit DB Packet Storm

197043	8.1	HIGH Network	f5	big-iq_centralized_management big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager…	On BIG-IP 15.0.0-15.1.0.2, 14.1.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5.1, and 11.5.2-11.6.5.1 and BIG-IQ 7.0.0, 6.0.0-6.1.0, and 5.2.0-5.4.0, in a High Availability (HA) network failover in Devic…	CWE-287 CWE-319 Improper Authentication Cleartext Transmission of Sensitive Information	CVE-2020-5860	2024-11-21 14:34	2020-03-28	Show	GitHub Exploit DB Packet Storm

197044	7.8	HIGH Local	f5	big-iq_centralized_management big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager…	On BIG-IP 15.0.0-15.0.1.2, 14.1.0-14.1.2.2, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1 and BIG-IQ 7.0.0, 6.0.0-6.1.0, and 5.2.0-5.4.0, users with non-administrator roles (for example, Guest …	NVD-CWE-noinfo	CVE-2020-5858	2024-11-21 14:34	2020-03-28	Show	GitHub Exploit DB Packet Storm

197045	7.5	HIGH Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system …	On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.2, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, undisclosed HTTP behavior may lead to a denial of service.	NVD-CWE-noinfo	CVE-2020-5857	2024-11-21 14:34	2020-03-28	Show	GitHub Exploit DB Packet Storm

197046	9.8	CRITICAL Network	keijiban_tsumiki_project	keijiban_tsumiki	Keijiban Tsumiki v1.15 allows remote attackers to execute arbitrary OS commands via unspecified vectors.	CWE-78 OS Command	CVE-2020-5561	2024-11-21 14:34	2020-03-25	Show	GitHub Exploit DB Packet Storm

197047	9.8	CRITICAL Network	wl-enq_project	wl-enq	WL-Enq 1.11 and 1.12 allows remote attackers to execute arbitrary OS commands with the administrative privilege via unspecified vectors.	CWE-78 OS Command	CVE-2020-5560	2024-11-21 14:34	2020-03-25	Show	GitHub Exploit DB Packet Storm

197048	6.1	MEDIUM Network	wl-enq_project	wl-enq	Cross-site scripting vulnerability in WL-Enq 1.11 and 1.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2020-5559	2024-11-21 14:34	2020-03-25	Show	GitHub Exploit DB Packet Storm

197049	8.8	HIGH Network	cutephp	cutenews	CuteNews 2.0.1 allows remote authenticated attackers to execute arbitrary PHP code via unspecified vectors.	CWE-94 Code Injection	CVE-2020-5558	2024-11-21 14:34	2020-03-25	Show	GitHub Exploit DB Packet Storm

197050	6.1	MEDIUM Network	cutephp	cutenews	Cross-site scripting vulnerability in CuteNews 2.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2020-5557	2024-11-21 14:34	2020-03-25	Show	GitHub Exploit DB Packet Storm