Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226891	6.9	警告	soundblaster	-	Ensoniq PCI 1371 サウンドカードで使用されている CreativeLabs es1371mp.sys WDM 音声ドライバにおける SYSTEM 権限を取得される脆弱性	CWE-Other その他	CVE-2008-7211	2012-12-20 19:10	2009-09-11	Show	GitHub Exploit DB Packet Storm

226892	2.1	注意	RivetCode Software	-	RivetTracker におけるパスワードを特定される脆弱性	CWE-310 暗号の問題	CVE-2008-7207	2012-12-20 19:10	2009-09-11	Show	GitHub Exploit DB Packet Storm

226893	4.3	警告	stefan ritt	-	ELOG における脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-7206	2012-12-20 19:10	2009-09-11	Show	GitHub Exploit DB Packet Storm

226894	4.3	警告	VirtueMart	-	VirtueMart の製品ビュー機能における任意のファイルを読み取られる脆弱性	CWE-20 不適切な入力確認	CVE-2008-7205	2012-12-20 19:10	2009-09-11	Show	GitHub Exploit DB Packet Storm

226895	6.8	警告	VirtueMart	-	VirtueMart におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-7204	2012-12-20 19:10	2009-09-11	Show	GitHub Exploit DB Packet Storm

226896	5	警告	valve software	-	Valve Software Half-Life Counter-Strike におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-7203	2012-12-20 19:10	2009-09-11	Show	GitHub Exploit DB Packet Storm

226897	6.8	警告	PHPKIT	-	PHPKIT におけるクロスサイトリクエストフォージェリ攻撃を実行される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-7193	2012-12-20 19:10	2009-09-9	Show	GitHub Exploit DB Packet Storm

226898	6.8	警告	woltlab	-	wBB の index.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-7192	2012-12-20 19:10	2009-09-9	Show	GitHub Exploit DB Packet Storm

226899	5	警告	pps.jussieu	-	Polipo におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-7191	2012-12-20 19:10	2009-09-9	Show	GitHub Exploit DB Packet Storm

226900	5	警告	rittwick banerjee	-	Telephone Directory 2008 の del_query1.php における任意の連絡先を削除される脆弱性	CWE-20 不適切な入力確認	CVE-2008-7180	2012-12-20 19:10	2009-09-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196451	9.8	CRITICAL Network	phplist	phplist	phpList 3.5.0 allows type juggling for admin login bypass because == is used instead of === for password hashes, which mishandles hashes that begin with 0e followed by exclusively numerical character…	NVD-CWE-noinfo	CVE-2020-8547	2024-11-21 14:39	2020-02-4	Show	GitHub Exploit DB Packet Storm

196452	7.5	HIGH Network	circl	ail_framework	Global.py in AIL framework 2.8 allows path traversal.	CWE-22 Path Traversal	CVE-2020-8545	2024-11-21 14:39	2020-02-4	Show	GitHub Exploit DB Packet Storm

196453	-		-	-	The server in Circontrol Raption through 5.11.2 has a pre-authentication stack-based buffer overflow that can be exploited to gain run-time control of the device as root. The ocpp1.5 and pwrstudio bi…	-	CVE-2020-8006	2024-11-21 14:38	2024-04-12	Show	GitHub Exploit DB Packet Storm

196454	7.2	HIGH Network	expressionengine	expressionengine	Unsanitized user input in ExpressionEngine <= 5.4.0 control panel member creation leads to an SQL injection. The user needs member creation/admin control panel access to execute the attack.	CWE-89 SQL Injection	CVE-2020-8242	2024-11-21 14:38	2022-02-19	Show	GitHub Exploit DB Packet Storm

196455	7.8	HIGH Local	bitdefender	total_security internet_security antivirus_plus	A Process Control vulnerability in ProductAgentUI.exe as used in Bitdefender Antivirus Plus allows an attacker to tamper with product settings via a specially crafted DLL file. This issue affects: Bi…	NVD-CWE-Other	CVE-2020-8107	2024-11-21 14:38	2022-02-18	Show	GitHub Exploit DB Packet Storm

196456	7.8	HIGH Local	goabode	iota_all-in-one_security_kit_firmware	OS Command Injection vulnerability in the wirelessConnect handler of Abode iota All-In-One Security Kit allows an attacker to inject commands and gain root access. This issue affects: Abode iota All-…	CWE-78 OS Command	CVE-2020-8105	2024-11-21 14:38	2021-12-20	Show	GitHub Exploit DB Packet Storm

196457	6.1	MEDIUM Network	rocket.chat	rocket.chat	A link preview rendering issue in Rocket.Chat versions before 3.9 could lead to potential XSS attacks.	CWE-79 Cross-site Scripting	CVE-2020-8291	2024-11-21 14:38	2021-10-18	Show	GitHub Exploit DB Packet Storm

196458	6.5	MEDIUM Network	citrix	netscaler_gateway gateway application_delivery_controller_firmware	Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access control allowing SAML authentication hijack t…	NVD-CWE-Other	CVE-2020-8300	2024-11-21 14:38	2021-06-16	Show	GitHub Exploit DB Packet Storm

196459	6.5	MEDIUM Adjacent	citrix	netscaler_gateway gateway application_delivery_controller_firmware sd-wan_wanop	Citrix ADC and Citrix/NetScaler Gateway 13.0 before 13.0-76.29, 12.1-61.18, 11.1-65.20, Citrix ADC 12.1-FIPS before 12.1-55.238, and Citrix SD-WAN WANOP Edition before 11.4.0, 11.3.2, 11.3.1a, 11.2.3…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-8299	2024-11-21 14:38	2021-06-16	Show	GitHub Exploit DB Packet Storm

196460	6.5	MEDIUM Network	mongodb	mongomirror database_tools	Usage of specific command line parameter in MongoDB Tools which was originally intended to just skip hostname checks, may result in MongoDB skipping all certificate validation. This may result in acc…	CWE-295 Improper Certificate Validation	CVE-2020-7924	2024-11-21 14:38	2021-04-13	Show	GitHub Exploit DB Packet Storm