Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226891	7.5	危険	YABSoft	-	YABSoft AIH Script の out.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2536	2012-12-20 18:52	2008-06-3	Show	GitHub Exploit DB Packet Storm

226892	7.5	危険	quickupcms	-	Concepts & Solutions QuickUpCMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2530	2012-12-20 18:52	2008-06-3	Show	GitHub Exploit DB Packet Storm

226893	4.3	警告	TYPO3 Association	-	TYPO3 用の WT Gallery エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2526	2012-12-20 18:52	2008-06-3	Show	GitHub Exploit DB Packet Storm

226894	4.3	警告	TYPO3 Association	-	TYPO3 用の Event Database エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2525	2012-12-20 18:52	2008-06-3	Show	GitHub Exploit DB Packet Storm

226895	7.5	危険	raknet	-	RakNet の Autopatcher サーバプラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2523	2012-12-20 18:52	2008-06-3	Show	GitHub Exploit DB Packet Storm

226896	6.5	警告	YABSoft	-	YABSoft Mega File Hosting Script の members.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2521	2012-12-20 18:52	2008-06-3	Show	GitHub Exploit DB Packet Storm

226897	2.1	注意	sarab	-	SaraB の sarab.sh スクリプトにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-2517	2012-12-20 18:52	2008-06-3	Show	GitHub Exploit DB Packet Storm

226898	5	警告	シマンテック	-	Symantec Backup Exec System Recovery Manager におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2512	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

226899	7.5	危険	WordPress.org	-	WordPress 用 Upload File プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2510	2012-12-20 18:52	2008-05-29	Show	GitHub Exploit DB Packet Storm

226900	4.3	警告	tr script news	-	Tr Script News の news.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2508	2012-12-20 18:52	2008-05-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210931	5.5	MEDIUM Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_rt_8.1 windows_server_2019	An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory, aka 'Media Foundation Information Disclosure Vulnerability'. This CVE ID is unique from CVE-…	NVD-CWE-noinfo	CVE-2020-0945	2024-11-21 13:54	2020-04-16	Show	GitHub Exploit DB Packet Storm

210932	7.8	HIGH Local	microsoft	windows_10 windows_server_2016 windows_server_2019	An elevation of privilege vulnerability exists when Connected User Experiences and Telemetry Service improperly handles file operations, aka 'Connected User Experiences and Telemetry Service Elevatio…	NVD-CWE-noinfo	CVE-2020-0944	2024-11-21 13:54	2020-04-16	Show	GitHub Exploit DB Packet Storm

210933	4.6	MEDIUM Physics	microsoft	your_phone_companion	An authentication bypass vulnerability exists in Microsoft YourPhoneCompanion application for Android, in the way the application processes notifications generated by work profiles.This could allow a…	NVD-CWE-noinfo	CVE-2020-0943	2024-11-21 13:54	2020-04-16	Show	GitHub Exploit DB Packet Storm

210934	7.1	HIGH Local	microsoft	windows_10 windows_server_2016 windows_server_2019	An elevation of privilege vulnerability exists when Connected User Experiences and Telemetry Service improperly handles file operations, aka 'Connected User Experiences and Telemetry Service Elevatio…	NVD-CWE-noinfo	CVE-2020-0942	2024-11-21 13:54	2020-04-16	Show	GitHub Exploit DB Packet Storm

210935	7.8	HIGH Local	microsoft	windows_10 windows_server_2016 windows_server_2019	An elevation of privilege vulnerability exists in the way the Windows Push Notification Service handles objects in memory, aka 'Windows Push Notification Service Elevation of Privilege Vulnerability'…	NVD-CWE-noinfo	CVE-2020-0940	2024-11-21 13:54	2020-04-16	Show	GitHub Exploit DB Packet Storm

210936	5.5	MEDIUM Local	microsoft	windows_server_2016 windows_10	An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory, aka 'Media Foundation Information Disclosure Vulnerability'. This CVE ID is unique from CVE-…	NVD-CWE-noinfo	CVE-2020-0939	2024-11-21 13:54	2020-04-16	Show	GitHub Exploit DB Packet Storm

210937	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format…	CWE-787 Out-of-bounds Write	CVE-2020-0938	2024-11-21 13:54	2020-04-16	Show	GitHub Exploit DB Packet Storm

210938	5.5	MEDIUM Local	microsoft	windows_10 windows_server_2016 windows_server_2019	An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory, aka 'Media Foundation Information Disclosure Vulnerability'. This CVE ID is unique from CVE-…	NVD-CWE-noinfo	CVE-2020-0937	2024-11-21 13:54	2020-04-16	Show	GitHub Exploit DB Packet Storm

210939	7.1	HIGH Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists when a Windows scheduled task improperly handles file redirections, aka 'Windows Scheduled Task Elevation of Privilege Vulnerability'.	NVD-CWE-noinfo	CVE-2020-0936	2024-11-21 13:54	2020-04-16	Show	GitHub Exploit DB Packet Storm

210940	5.5	MEDIUM Local	microsoft	onedrive	An elevation of privilege vulnerability exists when the OneDrive for Windows Desktop application improperly handles symbolic links, aka 'OneDrive for Windows Elevation of Privilege Vulnerability'.	CWE-269 Improper Privilege Management	CVE-2020-0935	2024-11-21 13:54	2020-04-16	Show	GitHub Exploit DB Packet Storm