Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226941 7.5 危険 tigran abrahamyan - PHPEcho CMS の kernel/smarty/Smarty.class.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-7034 2012-12-20 19:10 2009-08-24 Show GitHub Exploit DB Packet Storm
226942 7.5 危険 site2nite - Site2Nite Real Estate Web における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7030 2012-12-20 19:10 2009-08-24 Show GitHub Exploit DB Packet Storm
226943 10 危険 skalinks - Skalfa Software SkaLinks Exchange Script における管理者を追加される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7010 2012-12-20 19:10 2009-08-19 Show GitHub Exploit DB Packet Storm
226944 7.5 危険 phpversion - Free PHP VX Guestbook における管理者アクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-7007 2012-12-20 19:10 2009-08-19 Show GitHub Exploit DB Packet Storm
226945 5 警告 phpversion - Free PHP VX Guestbook におけるデータベースのバックアップをダウンロードされる脆弱性 CWE-287
不適切な認証 		CVE-2008-7006 2012-12-20 19:10 2009-08-19 Show GitHub Exploit DB Packet Storm
226946 7.5 危険 the-rat-cms - The Rat CMS の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7003 2012-12-20 19:10 2009-08-19 Show GitHub Exploit DB Packet Storm
226947 7.5 危険 phpauction - PHPAuction の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-7000 2012-12-20 19:10 2009-08-19 Show GitHub Exploit DB Packet Storm
226948 5 警告 phpauction - phpAuction における設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-6999 2012-12-20 19:10 2009-08-19 Show GitHub Exploit DB Packet Storm
226949 10 危険 シーメンス - Siemens Gigaset WLAN Camera における許可されていない操作を実行される脆弱性 CWE-310
暗号の問題 		CVE-2008-6993 2012-12-20 19:10 2009-08-19 Show GitHub Exploit DB Packet Storm
226950 6.8 警告 Zen Cart - Zen Cart の includes/classes/shopping_cart.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6986 2012-12-20 19:10 2009-08-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201101 6.5 MEDIUM
Network 		ninjaforms ninja_forms The Ninja Forms plugin before 3.4.27.1 for WordPress allows CSRF via services integration. CWE-352
 Origin Validation Error 		CVE-2020-36174 2024-11-21 14:28 2021-01-7 Show GitHub Exploit DB Packet Storm
201102 5.3 MEDIUM
Network 		ninjaforms ninja_forms The Ninja Forms plugin before 3.4.28 for WordPress lacks escaping for submissions-table fields. CWE-116
 Improper Encoding or Escaping of Output 		CVE-2020-36173 2024-11-21 14:28 2021-01-7 Show GitHub Exploit DB Packet Storm
201103 6.1 MEDIUM
Network 		advancedcustomfields advanced_custom_fields The Advanced Custom Fields plugin before 5.8.12 for WordPress mishandles the escaping of strings in Select2 dropdowns, potentially leading to XSS. CWE-79
Cross-site Scripting 		CVE-2020-36172 2024-11-21 14:28 2021-01-7 Show GitHub Exploit DB Packet Storm
201104 6.1 MEDIUM
Network 		elementor website_builder The Elementor Website Builder plugin before 3.0.14 for WordPress does not properly restrict SVG uploads. CWE-79
Cross-site Scripting 		CVE-2020-36171 2024-11-21 14:28 2021-01-7 Show GitHub Exploit DB Packet Storm
201105 5.3 MEDIUM
Network 		ultimatemember ultimate_member The Ultimate Member plugin before 2.1.13 for WordPress mishandles hidden name="timestamp" fields in forms. NVD-CWE-noinfo
CVE-2020-36170 2024-11-21 14:28 2021-01-6 Show GitHub Exploit DB Packet Storm
201106 8.8 HIGH
Local 		veritas netbackup
opscenter 		An issue was discovered in Veritas NetBackup through 8.3.0.1 and OpsCenter through 8.3.0.1. Processes using OpenSSL attempt to load and execute libraries from paths that do not exist by default on th… NVD-CWE-noinfo
CVE-2020-36169 2024-11-21 14:28 2021-01-6 Show GitHub Exploit DB Packet Storm
201107 8.8 HIGH
Local 		veritas resiliency_platform An issue was discovered in Veritas Resiliency Platform 3.4 and 3.5. It leverages OpenSSL on Windows systems when using the Managed Host addon. On start-up, it loads the OpenSSL library. This library … NVD-CWE-noinfo
CVE-2020-36168 2024-11-21 14:28 2021-01-6 Show GitHub Exploit DB Packet Storm
201108 8.8 HIGH
Local 		veritas backup_exec An issue was discovered in the server in Veritas Backup Exec through 16.2, 20.6 before hotfix 298543, and 21.1 before hotfix 657517. On start-up, it loads the OpenSSL library from the Installation fo… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-36167 2024-11-21 14:28 2021-01-6 Show GitHub Exploit DB Packet Storm
201109 9.8 CRITICAL
Network 		1234n minicms Directory traversal vulnerability in post-edit.php in MiniCMS V1.10 allows remote attackers to include and execute arbitrary files via the state parameter. CWE-22
Path Traversal 		CVE-2020-36052 2024-11-21 14:28 2021-01-6 Show GitHub Exploit DB Packet Storm
201110 7.5 HIGH
Network 		1234n minicms Directory traversal vulnerability in page_edit.php in MiniCMS V1.10 allows remote attackers to read arbitrary files via the state parameter. CWE-22
Path Traversal 		CVE-2020-36051 2024-11-21 14:28 2021-01-6 Show GitHub Exploit DB Packet Storm