Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226831 7.5 危険 SoftbizScripts - Softbiz Jokes & Funny Pics Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2874 2012-12-20 18:52 2008-06-26 Show GitHub Exploit DB Packet Storm
226832 7.5 危険 sharecms - ShareCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2870 2012-12-20 18:52 2008-06-26 Show GitHub Exploit DB Packet Storm
226833 6.8 警告 webchamado - WebChamado の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2858 2012-12-20 18:52 2008-06-25 Show GitHub Exploit DB Packet Storm
226834 7.5 危険 softdivision - Maxtrade AIO の Trade モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2847 2012-12-20 18:52 2008-06-25 Show GitHub Exploit DB Packet Storm
226835 4.3 警告 traindepot - Traindepot の search モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2839 2012-12-20 18:52 2008-06-24 Show GitHub Exploit DB Packet Storm
226836 5 警告 traindepot - Traindepot の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2838 2012-12-20 18:52 2008-06-24 Show GitHub Exploit DB Packet Storm
226837 7.5 危険 sidb - Scientific Image DataBase の projects.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2834 2012-12-20 18:52 2008-06-24 Show GitHub Exploit DB Packet Storm
226838 10 危険 worldlevel - le.cms の admin/upload.php における管理者の認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-2833 2012-12-20 18:52 2008-06-24 Show GitHub Exploit DB Packet Storm
226839 10 危険 tmsnc - tmsnc におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2828 2012-12-20 18:52 2008-06-23 Show GitHub Exploit DB Packet Storm
226840 4.3 警告 Xerox - Xerox WorkCentre M123 などの組込み Web Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2825 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200081 4.7 MEDIUM
Network 		oracle one-to-one_fulfillment Vulnerability in the Oracle One-to-One Fulfillment product of Oracle E-Business Suite (component: Call Phone Number Page). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Ea… NVD-CWE-noinfo
CVE-2020-2597 2024-11-21 14:25 2020-01-16 Show GitHub Exploit DB Packet Storm
200082 4.7 MEDIUM
Network 		oracle crm_technical_foundation Vulnerability in the Oracle CRM Technical Foundation product of Oracle E-Business Suite (component: Message Hooks). Supported versions that are affected are 12.1.3 and 12.2.3-12.2.9. Easily exploitab… NVD-CWE-noinfo
CVE-2020-2596 2024-11-21 14:25 2020-01-16 Show GitHub Exploit DB Packet Storm
200083 5.8 MEDIUM
Network 		oracle graalvm Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle GraalVM (component: GraalVM Compiler). The supported version that is affected is 19.3.0.2. Easily exploitable vulnerability al… NVD-CWE-noinfo
CVE-2020-2595 2024-11-21 14:25 2020-01-16 Show GitHub Exploit DB Packet Storm
200084 4.8 MEDIUM
Network 		oracle
redhat
debian
canonical
opensuse
mcafee
netapp 		jdk
jre
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_tus
enterprise_linux… 		Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: … NVD-CWE-noinfo
CVE-2020-2593 2024-11-21 14:25 2020-01-16 Show GitHub Exploit DB Packet Storm
200085 5.3 MEDIUM
Network 		oracle autovue Vulnerability in the Oracle AutoVue product of Oracle Supply Chain (component: Security). The supported version that is affected is 21.0.2. Easily exploitable vulnerability allows unauthenticated att… NVD-CWE-noinfo
CVE-2020-2592 2024-11-21 14:25 2020-01-16 Show GitHub Exploit DB Packet Storm
200086 8.2 HIGH
Network 		oracle web_applications_desktop_integrator Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite (component: Application Service). The supported version that is affected is 12.1.3. Easily exploitab… NVD-CWE-noinfo
CVE-2020-2591 2024-11-21 14:25 2020-01-16 Show GitHub Exploit DB Packet Storm
200087 3.7 LOW
Network 		oracle
redhat
debian
canonical
opensuse
mcafee
netapp 		jdk
jre
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_eus
enterprise_linux_tus 		Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u… NVD-CWE-noinfo
CVE-2020-2590 2024-11-21 14:25 2020-01-16 Show GitHub Exploit DB Packet Storm
200088 4.9 MEDIUM
Network 		oracle
canonical
netapp 		mysql
ubuntu_linux
snapcenter
oncommand_workflow_automation
oncommand_insight
active_iq_unified_manager 		Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.28 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows … NVD-CWE-noinfo
CVE-2020-2589 2024-11-21 14:25 2020-01-16 Show GitHub Exploit DB Packet Storm
200089 4.9 MEDIUM
Network 		oracle
canonical
netapp 		mysql
ubuntu_linux
snapcenter
oncommand_workflow_automation
oncommand_insight
active_iq_unified_manager 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged … NVD-CWE-noinfo
CVE-2020-2588 2024-11-21 14:25 2020-01-16 Show GitHub Exploit DB Packet Storm
200090 9.9 CRITICAL
Network 		oracle human_resources Vulnerability in the Oracle Human Resources product of Oracle E-Business Suite (component: Hierarchy Diagrammers). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exp… NVD-CWE-noinfo
CVE-2020-2587 2024-11-21 14:25 2020-01-16 Show GitHub Exploit DB Packet Storm