Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226891 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech Toner Cart の show_series_ink.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4467 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
226892 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech Cosmetics Zone の view_products_cat.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4466 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
226893 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech DVD Zone の view_mags.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4465 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
226894 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech Mag Zone の view_mags.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4464 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
226895 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech Jobs Zone の view_news.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4463 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
226896 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech Visa Zone の view_news.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4462 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
226897 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech Dating Zone の advanced_search_results.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4461 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
226898 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech MMORPG Zone の game.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4460 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
226899 6.8 警告 positive software - Positive Software H-Sphere WebShell の actions.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-4448 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
226900 4.3 警告 positive software - Positive Software H-Sphere WebShell の actions.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4447 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196901 6.5 MEDIUM
Network 		cybozu garoon Cybozu Garoon 4.0.0 to 5.0.1 allow remote authenticated attackers to obtain unintended information via unspecified vectors. NVD-CWE-noinfo
CVE-2020-5587 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
196902 4.8 MEDIUM
Network 		cybozu garoon Cross-site scripting vulnerability in Cybozu Garoon 4.10.3 to 5.0.1 allows attacker with administrator rights to inject an arbitrary script via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2020-5586 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
196903 4.8 MEDIUM
Network 		cybozu garoon Cross-site scripting vulnerability in Cybozu Garoon 5.0.0 to 5.0.1 allows attacker with administrator rights to inject an arbitrary script via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2020-5585 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
196904 7.5 HIGH
Network 		mitsubishielectric cpu_module_logging_configuration_tool
cw_configurator
em_configurator
gt_designer3
gx_logviewer
gx_works2
gx_works3
m_commdtm-hart
m_commdtm-io-link
melfa-works
melsec-l… 		Uncontrolled resource consumption vulnerability in Mitsubishi Electoric FA Engineering Software (CPU Module Logging Configuration Tool Ver. 1.94Y and earlier, CW Configurator Ver. 1.010L and earlier,… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-5603 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
196905 7.5 HIGH
Network 		mitsubishielectric cpu_module_logging_configuration_tool
cw_configurator
em_configurator
gt_designer3
gx_logviewer
gx_works2
gx_works3
m_commdtm-hart
m_commdtm-io-link
melfa-works
melsec-l… 		Mitsubishi Electoric FA Engineering Software (CPU Module Logging Configuration Tool Ver. 1.94Y and earlier, CW Configurator Ver. 1.010L and earlier, EM Software Development Kit (EM Configurator) Ver.… CWE-611
XXE 		CVE-2020-5602 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
196906 7.5 HIGH
Network 		cybozu garoon Cybozu Garoon 4.0.0 to 5.0.1 allow remote attackers to obtain unintended information via unspecified vectors. NVD-CWE-noinfo
CVE-2020-5584 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
196907 6.5 MEDIUM
Network 		cybozu garoon Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to bypass access restriction to obtain unauthorized Multi-Report's data via unspecified vectors. NVD-CWE-noinfo
CVE-2020-5583 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
196908 4.3 MEDIUM
Network 		cybozu garoon Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to bypass access restriction to alter the data for the file attached to Report via unspecified vectors. NVD-CWE-noinfo
CVE-2020-5582 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
196909 6.5 MEDIUM
Network 		cybozu garoon Path traversal vulnerability in Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to obtain unintended information via unspecified vectors. CWE-22
Path Traversal 		CVE-2020-5581 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
196910 8.1 HIGH
Network 		cybozu garoon Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to bypass access restriction to view and/or alter Single sign-on settings via unspecified vectors. NVD-CWE-noinfo
CVE-2020-5580 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm