Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226831	7.5	危険	xnova	-	Xnova の includes/todofleetcontrol.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6023	2012-12-20 19:10	2009-02-2	Show	GitHub Exploit DB Packet Storm

226832	7.5	危険	xnova	-	Xnova の includes/todofleetcontrol.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6022	2012-12-20 19:10	2009-02-2	Show	GitHub Exploit DB Packet Storm

226833	7.5	危険	rianxosencabos cms	-	Rianxosencabos CMS の scripts/links.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6014	2012-12-20 19:10	2009-01-30	Show	GitHub Exploit DB Packet Storm

226834	7.5	危険	sg real estate portal	-	SG Real Estate Portal の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6011	2012-12-20 19:10	2009-01-30	Show	GitHub Exploit DB Packet Storm

226835	5	警告	sg real estate portal	-	SG Real Estate Portal におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6010	2012-12-20 19:10	2009-01-30	Show	GitHub Exploit DB Packet Storm

226836	7.5	危険	sg real estate portal	-	SG Real Estate Portal における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-6009	2012-12-20 19:10	2009-01-30	Show	GitHub Exploit DB Packet Storm

226837	7.5	危険	quidascript	-	APB の view_group.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6007	2012-12-20 19:10	2009-01-30	Show	GitHub Exploit DB Packet Storm

226838	10	危険	W3C	-	W3C Amaya Web Browser の CheckUniqueName 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-6005	2012-12-20 19:10	2009-01-28	Show	GitHub Exploit DB Packet Storm

226839	7.1	危険	web-cp	-	web-cp の sendfile.php における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6002	2012-12-20 19:10	2009-01-28	Show	GitHub Exploit DB Packet Storm

226840	4.3	警告	TYPO3 Association	-	TYPO3 用の freeCap CAPTCHA エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5995	2012-12-20 19:10	2009-01-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196781	7.5	HIGH Network	netty fedoraproject debian redhat	netty fedora debian_linux jboss_enterprise_application_platform jboss_enterprise_application_platform_text-only_advisories openshift_application_runtimes_text-only_advisories	Netty 4.1.43.Final allows HTTP Request Smuggling because it mishandles Transfer-Encoding whitespace (such as a [space]Transfer-Encoding:chunked line) and a later Content-Length header. This issue exi…	CWE-444 HTTP Request Smuggling	CVE-2020-7238	2024-11-21 14:36	2020-01-28	Show	GitHub Exploit DB Packet Storm

196782	6.5	MEDIUM Network	codesys	control_for_beaglebone control_for_empc-a\/imx6 control_for_iot2000 control_for_linux control_for_plcnext control_for_pfc100 control_for_pfc200 control_for_raspberry_pi contro…	CODESYS Control V3, Gateway V3, and HMI V3 before 3.5.15.30 allow uncontrolled memory allocation which can result in a remote denial of service condition.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-7052	2024-11-21 14:36	2020-01-25	Show	GitHub Exploit DB Packet Storm

196783	10.0	CRITICAL Network	gehealthcare	apexpro_telemetry_server_firmware carescape_central_station_mai700_firmware carescape_central_station_mas700_firmware clinical_information_center_mp100d_firmware clinical_information_cent…	In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, the…	CWE-326 Inadequate Encryption Strength	CVE-2020-6966	2024-11-21 14:36	2020-01-25	Show	GitHub Exploit DB Packet Storm

196784	9.9	CRITICAL Network	gehealthcare	apexpro_telemetry_server_firmware carescape_b450_monitor_firmware carescape_b650_monitor_firmware carescape_b850_monitor_firmware carescape_central_station_mai700_firmware carescape_ce…	In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, B45…	CWE-20 CWE-434 Improper Input Validation Unrestricted Upload of File with Dangerous Type	CVE-2020-6965	2024-11-21 14:36	2020-01-25	Show	GitHub Exploit DB Packet Storm

196785	8.6	HIGH Network	gehealthcare	apexpro_telemetry_server_firmware carescape_central_station_mai700_firmware carescape_central_station_mas700_firmware clinical_information_center_mp100d_firmware clinical_information_cent…	In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X and …	CWE-306 Missing Authentication for Critical Function	CVE-2020-6964	2024-11-21 14:36	2020-01-25	Show	GitHub Exploit DB Packet Storm

196786	10.0	CRITICAL Network	gehealthcare	apexpro_telemetry_server_firmware carescape_central_station_mai700_firmware carescape_central_station_mas700_firmware clinical_information_center_mp100d_firmware clinical_information_cent…	In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, the…	CWE-20 CWE-798 Improper Input Validation Use of Hard-coded Credentials	CVE-2020-6963	2024-11-21 14:36	2020-01-25	Show	GitHub Exploit DB Packet Storm

196787	10.0	CRITICAL Network	gehealthcare	apexpro_telemetry_server_firmware carescape_b450_monitor_firmware carescape_b650_monitor_firmware carescape_b850_monitor_firmware carescape_central_station_mai700_firmware carescape_ce…	In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE…	CWE-20 Improper Input Validation	CVE-2020-6962	2024-11-21 14:36	2020-01-25	Show	GitHub Exploit DB Packet Storm

196788	10.0	CRITICAL Network	gehealthcare	apexpro_telemetry_server_firmware carescape_central_station_mai700_firmware carescape_central_station_mas700_firmware clinical_information_center_mp100d_firmware clinical_information_cent…	In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE…	CWE-522 Insufficiently Protected Credentials	CVE-2020-6961	2024-11-21 14:36	2020-01-25	Show	GitHub Exploit DB Packet Storm

196789	7.5	HIGH Network	vt oracle	cryptacular webcenter_sites weblogic_server communications_services_gatekeeper	CiphertextHeader.java in Cryptacular 1.2.3, as used in Apereo CAS and other products, allows attackers to trigger excessive memory allocation during a decode operation, because the nonce array length…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-7226	2024-11-21 14:36	2020-01-25	Show	GitHub Exploit DB Packet Storm

196790	9.8	CRITICAL Network	ctfd	ctfd	Incorrect username validation in the registration process of CTFd v2.0.0 - v2.2.2 allows an attacker to take over an arbitrary account if the username is known and emails are enabled on the CTFd inst…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2020-7245	2024-11-21 14:36	2020-01-24	Show	GitHub Exploit DB Packet Storm