Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226861 7.5 危険 tigris - WebSVN の utils.inc における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5920 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
226862 6.8 警告 tigris - WebSVN の rss.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5919 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
226863 4.3 警告 tigris - WebSVN の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5918 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
226864 7.5 危険 xrdp - xrdp の rdp/rdp_rdp.c における脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5904 2012-12-20 19:10 2009-01-15 Show GitHub Exploit DB Packet Storm
226865 7.5 危険 xrdp - xrdp の xrdp/funcs.c における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2008-5903 2012-12-20 19:10 2009-01-15 Show GitHub Exploit DB Packet Storm
226866 7.5 危険 xrdp - xrdp の xrdp/xrdp_bitmap.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5902 2012-12-20 19:10 2009-01-15 Show GitHub Exploit DB Packet Storm
226867 5 警告 Tincan - phplist におけるファイルをインクルードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5887 2012-12-20 19:10 2009-01-12 Show GitHub Exploit DB Packet Storm
226868 5 警告 takempis - TAKempis Discussion Web におけるパスワードを含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5886 2012-12-20 19:10 2009-01-12 Show GitHub Exploit DB Packet Storm
226869 5 警告 the net guys - The Net Guys ASPired2Quote におけるユーザ名などを含むデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5885 2012-12-20 19:10 2009-01-12 Show GitHub Exploit DB Packet Storm
226870 4.3 警告 zkesoft - AyeView におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-5884 2012-12-20 19:10 2009-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200661 5.5 MEDIUM
Local 		microsoft azure_sphere A denial-of-service vulnerability exists in the asynchronous ioctl functionality of Microsoft Azure Sphere 20.05. A sequence of specially crafted ioctl calls can cause a denial of service. An attacke… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-35609 2024-11-21 14:27 2020-12-23 Show GitHub Exploit DB Packet Storm
200662 7.8 HIGH
Local 		microsoft azure_sphere A code execution vulnerability exists in the normal world’s signed code execution functionality of Microsoft Azure Sphere 20.07. A specially crafted AF_PACKET socket can cause a process to create an … CWE-74
Injection 		CVE-2020-35608 2024-11-21 14:27 2020-12-23 Show GitHub Exploit DB Packet Storm
200663 8.8 HIGH
Network 		mediawiki mediawiki An issue was discovered in the PushToWatch extension for MediaWiki through 1.35.1. The primary form did not implement an anti-CSRF token and therefore was completely vulnerable to CSRF attacks agains… CWE-352
 Origin Validation Error 		CVE-2020-35626 2024-11-21 14:27 2020-12-22 Show GitHub Exploit DB Packet Storm
200664 8.8 HIGH
Network 		mediawiki mediawiki An issue was discovered in the Widgets extension for MediaWiki through 1.35.1. Any user with the ability to edit pages within the Widgets namespace could call any static function within any class (de… CWE-862
 Missing Authorization 		CVE-2020-35625 2024-11-21 14:27 2020-12-22 Show GitHub Exploit DB Packet Storm
200665 5.3 MEDIUM
Network 		mediawiki mediawiki An issue was discovered in the SecurePoll extension for MediaWiki through 1.35.1. The non-admin vote list contains a full vote timestamp, which may provide unintended clues about how a voting process… CWE-203
 Information Exposure Through Discrepancy 		CVE-2020-35624 2024-11-21 14:27 2020-12-22 Show GitHub Exploit DB Packet Storm
200666 7.5 HIGH
Network 		mediawiki mediawiki An issue was discovered in the CasAuth extension for MediaWiki through 1.35.1. Due to improper username validation, it allowed user impersonation with trivial manipulations of certain characters with… CWE-20
CWE-706
 Improper Input Validation 
 Use of Incorrectly-Resolved Name or Reference 		CVE-2020-35623 2024-11-21 14:27 2020-12-22 Show GitHub Exploit DB Packet Storm
200667 6.1 MEDIUM
Network 		mediawiki mediawiki An issue was discovered in the GlobalUsage extension for MediaWiki through 1.35.1. SpecialGlobalUsage.php calls WikiMap::makeForeignLink unsafely. The $page variable within the formatItem function wa… CWE-79
Cross-site Scripting 		CVE-2020-35622 2024-11-21 14:27 2020-12-22 Show GitHub Exploit DB Packet Storm
200668 8.8 HIGH
Network 		webmin webmin Arbitrary command execution can occur in Webmin through 1.962. Any user authorized for the Package Updates module can execute arbitrary commands with root privileges via vectors involving %0A and %0C… CWE-78
OS Command  		CVE-2020-35606 2024-11-21 14:27 2020-12-22 Show GitHub Exploit DB Packet Storm
200669 9.8 CRITICAL
Network 		kitty_project
debian 		kitty
debian_linux 		The Graphics Protocol feature in graphics.c in kitty before 0.19.3 allows remote attackers to execute arbitrary code because a filename containing special characters can be included in an error messa… NVD-CWE-Other
CVE-2020-35605 2024-11-21 14:27 2020-12-22 Show GitHub Exploit DB Packet Storm
200670 9.8 CRITICAL
Network 		kronos web_time_and_attendance An XXE attack can occur in Kronos WebTA 5.0.4 when SAML is used. CWE-611
XXE 		CVE-2020-35604 2024-11-21 14:27 2020-12-22 Show GitHub Exploit DB Packet Storm