Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226881 5 警告 webcamxp - webcamXP におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5862 2012-12-20 19:10 2009-01-6 Show GitHub Exploit DB Packet Storm
226882 4 警告 シックス・アパート株式会社 - Six Apart MT におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5846 2012-12-20 19:10 2009-01-5 Show GitHub Exploit DB Packet Storm
226883 7.5 危険 phpicalendar - PHP iCalendar における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5840 2012-12-20 19:10 2009-01-5 Show GitHub Exploit DB Packet Storm
226884 6.8 警告 web scribble solutions - Web Scribble Solutions webClassifieds の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5817 2012-12-20 19:10 2009-01-2 Show GitHub Exploit DB Packet Storm
226885 7.5 危険 phpalumni - phpAlumni の Acomment.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5815 2012-12-20 19:10 2009-01-2 Show GitHub Exploit DB Packet Storm
226886 7.5 危険 SPIP - SPIP の inc/rubriques.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5813 2012-12-20 19:10 2008-12-24 Show GitHub Exploit DB Packet Storm
226887 10 危険 SPIP - SPIP における脆弱性 CWE-noinfo
情報不足 		CVE-2008-5812 2012-12-20 19:10 2008-12-24 Show GitHub Exploit DB Packet Storm
226888 4.3 警告 TestLink Development Team - TestLink におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5807 2012-12-20 19:10 2008-12-31 Show GitHub Exploit DB Packet Storm
226889 10 危険 TYPO3 Association - TYPO3 用の Dictionary エクステンションにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5801 2012-12-20 19:10 2008-12-31 Show GitHub Exploit DB Packet Storm
226890 7.5 危険 TYPO3 Association - TYPO3 用の fsmi_people エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5800 2012-12-20 19:10 2008-12-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210291 7.5 HIGH
Network 		pilz pmc In Pilz PMC programming tool 3.x before 3.5.17 (based on CODESYS Development System), a user's password may be changed by an attacker without knowledge of the current password. CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2020-12067 2024-11-21 13:59 2022-12-27 Show GitHub Exploit DB Packet Storm
210292 7.5 HIGH
Network 		badgermeter moni\ In s::can moni::tools in versions below 4.2 an unauthenticated attacker could get any file from the device by path traversal in the image-relocator module. - CVE-2020-12508 2024-11-21 13:59 2022-11-16 Show GitHub Exploit DB Packet Storm
210293 8.8 HIGH
Network 		badgermeter moni\ In s::can moni::tools before version 4.2 an authenticated attacker could get full access to the database through SQL injection. This may result in loss of confidentiality, loss of integrity and DoS. - CVE-2020-12507 2024-11-21 13:59 2022-11-16 Show GitHub Exploit DB Packet Storm
210294 7.5 HIGH
Network 		badgermeter moni\ In s::can moni::tools in versions below 4.2 an unauthenticated attacker could get any file from the device by path traversal in the camera-file module. - CVE-2020-12509 2024-11-21 13:59 2022-11-7 Show GitHub Exploit DB Packet Storm
210295 8.8 HIGH
Adjacent 		contiki-ng contiki-ng A buffer overflow in os/net/mac/ble/ble-l2cap.c in the BLE stack in Contiki-NG 4.4 and earlier allows an attacker to execute arbitrary code via malicious L2CAP frames. CWE-120
Classic Buffer Overflow 		CVE-2020-12140 2024-11-21 13:59 2021-12-8 Show GitHub Exploit DB Packet Storm
210296 5.5 MEDIUM
Local 		vivo jovi_smart_scene The attacker can access the sensitive information stored within the jovi Smart Scene module by entering carefully constructed commands without requesting permission. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2020-12488 2024-11-21 13:59 2021-11-11 Show GitHub Exploit DB Packet Storm
210297 9.1 CRITICAL
Network 		contiki-ng contiki-ng An out-of-bounds read in the SNMP stack in Contiki-NG 4.4 and earlier allows an attacker to cause a denial of service and potentially disclose information via crafted SNMP packets to snmp_ber_decode_… CWE-125
Out-of-bounds Read 		CVE-2020-12141 2024-11-21 13:59 2021-10-20 Show GitHub Exploit DB Packet Storm
210298 10.0 CRITICAL
Network 		emerson wireless_1410_gateway_firmware
wireless_1420_gateway_firmware
wireless_1552wu_gateway_firmware 		There is a flaw in the code used to configure the internal gateway firewall when the gateway's VLAN feature is enabled. If a user enables the VLAN setting, the internal gateway firewall becomes disab… NVD-CWE-Other
CVE-2020-12030 2024-11-21 13:59 2021-09-30 Show GitHub Exploit DB Packet Storm
210299 9.9 CRITICAL
Network 		flexera flexnet_code_insight An elevated privileges issue related to Spring MVC calls impacts Code Insight v7.x releases up to and including 2020 R1 (7.11.0-64). NVD-CWE-noinfo
CVE-2020-12083 2024-11-21 13:59 2021-09-18 Show GitHub Exploit DB Packet Storm
210300 5.4 MEDIUM
Network 		flexera flexnet_code_insight A stored cross-site scripting issue impacts certain areas of the Web UI for Code Insight v7.x releases up to and including 2020 R1 (7.11.0-64). CWE-79
Cross-site Scripting 		CVE-2020-12082 2024-11-21 13:59 2021-09-18 Show GitHub Exploit DB Packet Storm