Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226961	9.3	危険	ソフォス	-	Sophos Anti-Virus における HTML 文書内のマルウェアの検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5541	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

226962	9.3	危険	securecomputing	-	Secure Computing Secure Web Gateway における HTML ドキュメント内のマルウェアの検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5540	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

226963	9.3	危険	Beijing Rising International Software	-	RISING Antivirus における HTML 文書内のマルウェアの検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5539	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

226964	9.3	危険	ウェブルート株式会社	-	Prevx Prevx における HTML 文書内のマルウェアの検知を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5538	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

226965	9.3	危険	クイックヒール・テクノロジーズ・ジャパン株式会社	-	CAT-QuickHeal におけるマルウェアの検知を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5524	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

226966	7.5	危険	pozscripts	-	PozScripts Business Directory Script の showcategory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5496	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

226967	7.5	危険	phpstore	-	PHPStore Wholesales の track.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5493	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

226968	9.3	危険	verypdf	-	VeryDOC PDF Viewer OCX Control の pdfview.ocx におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5492	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

226969	7.5	危険	slimcms	-	SlimCMS の edit.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5491	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

226970	7.5	危険	phpstore	-	PHPStore Yahoo Answers の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5490	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196631	9.8	CRITICAL Network	hp	intelligent_management_center	A eventinfo_content expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).	CWE-917 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')	CVE-2020-7142	2024-11-21 14:36	2020-10-20	Show	GitHub Exploit DB Packet Storm

196632	9.8	CRITICAL Network	hp	intelligent_management_center	A adddevicetoview expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).	CWE-917 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')	CVE-2020-7141	2024-11-21 14:36	2020-10-20	Show	GitHub Exploit DB Packet Storm

196633	5.5	MEDIUM Local	blackberry	unified_endpoint_manager	An improper input validation vulnerability in the UEM Core of BlackBerry UEM version(s) 12.13.0, 12.12.1a QF2 (and earlier), and 12.11.1 QF3 (and earlier) could allow an attacker to potentially cause…	CWE-20 Improper Input Validation	CVE-2020-6933	2024-11-21 14:36	2020-10-14	Show	GitHub Exploit DB Packet Storm

196634	9.8	CRITICAL Network	zte	zxone_19700_snpe_firmware	A ZTE product is impacted by the improper access control vulnerability. Due to lack of an authentication protection mechanism in the program, attackers could use this vulnerability to gain access rig…	CWE-306 Missing Authentication for Critical Function	CVE-2020-6875	2024-11-21 14:36	2020-10-6	Show	GitHub Exploit DB Packet Storm

196635	5.3	MEDIUM Network	php fedoraproject debian opensuse canonical netapp tenable	php fedora debian_linux leap ubuntu_linux clustered_data_ontap tenable.sc	In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when PHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with pref…	CWE-565 Reliance on Cookies without Validation and Integrity Checking	CVE-2020-7070	2024-11-21 14:36	2020-10-3	Show	GitHub Exploit DB Packet Storm

196636	6.5	MEDIUM Network	php fedoraproject debian opensuse canonical netapp oracle tenable	php fedora debian_linux leap ubuntu_linux clustered_data_ontap communications_diameter_signaling_router tenable.sc	In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when AES-CCM mode is used with openssl_encrypt() function with 12 bytes IV, only first 7 bytes of the IV is actually use…	CWE-326 Inadequate Encryption Strength	CVE-2020-7069	2024-11-21 14:36	2020-10-3	Show	GitHub Exploit DB Packet Storm

196637	7.8	HIGH Local	eaton	9000x_programming_and_configuration_software	A DLL Hijacking vulnerability in Eaton's 9000x Programming and Configuration Software v 2.0.38 and prior allows an attacker to execute arbitrary code by replacing the required DLLs with malicious DLL…	CWE-427 CWE-426 Uncontrolled Search Path Element Untrusted Search Path	CVE-2020-6654	2024-11-21 14:36	2020-10-1	Show	GitHub Exploit DB Packet Storm

196638	7.5	HIGH Network	arubanetworks	cx_6200f_firmware cx_6300_firmware cx_6400_firmware cx_8320_firmware cx_8325_firmware cx_8400_firmware	Two memory corruption vulnerabilities in the Aruba CX Switches Series 6200F, 6300, 6400, 8320, 8325, and 8400 have been found. Successful exploitation of these vulnerabilities could result in Local D…	CWE-787 Out-of-bounds Write	CVE-2020-7122	2024-11-21 14:36	2020-09-23	Show	GitHub Exploit DB Packet Storm

196639	7.5	HIGH Network	arubanetworks	cx_6200f_firmware cx_6300_firmware cx_6400_firmware cx_8320_firmware cx_8325_firmware cx_8400_firmware	Two memory corruption vulnerabilities in the Aruba CX Switches Series 6200F, 6300, 6400, 8320, 8325, and 8400 have been found. Successful exploitation of these vulnerabilities could result in Local D…	CWE-787 Out-of-bounds Write	CVE-2020-7121	2024-11-21 14:36	2020-09-23	Show	GitHub Exploit DB Packet Storm

196640	7.4	HIGH Network	bosch	smart_home	Improper certificate validation for certain connections in the Bosch Smart Home System App for iOS prior to version 9.17.1 potentially allows to intercept video contents by performing a man-in-the-mi…	CWE-295 Improper Certificate Validation	CVE-2020-6781	2024-11-21 14:36	2020-09-17	Show	GitHub Exploit DB Packet Storm