Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226961 10 危険 raidsonic - RaidSonic ICY BOX NAS の userHandler.cgi における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-7081 2012-12-20 19:10 2009-08-25 Show GitHub Exploit DB Packet Storm
226962 5 警告 phpclassifiedsscript - Team PHP PHP Classifieds Script におけるデータベース資格情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7080 2012-12-20 19:10 2009-08-25 Show GitHub Exploit DB Packet Storm
226963 7.5 危険 relative - SailPlanner における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7077 2012-12-20 19:10 2009-08-25 Show GitHub Exploit DB Packet Storm
226964 7.8 危険 シーメンス - Siemens C450 IP など VoIP デバイスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2008-7065 2012-12-20 19:10 2009-08-25 Show GitHub Exploit DB Packet Storm
226965 7.5 危険 quicksilver forums - Quicksilver Forums の global.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-7064 2012-12-20 19:10 2009-08-25 Show GitHub Exploit DB Packet Storm
226966 5.1 警告 visualshapers - ezContents の module.php におけるディレクトリトラバーサル保護メカニズムを回避される脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-7055 2012-12-20 19:10 2009-08-24 Show GitHub Exploit DB Packet Storm
226967 5.1 警告 visualshapers - ezContents におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-7054 2012-12-20 19:10 2009-08-24 Show GitHub Exploit DB Packet Storm
226968 6.5 警告 PreProject.com - Pre Projects Pre Real Estate Listings の profile.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7052 2012-12-20 19:10 2009-08-24 Show GitHub Exploit DB Packet Storm
226969 7.5 危険 yellowswordfish - Wordpress 用の Yellow Swordfish Simple Forum モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7040 2012-12-20 19:10 2009-08-24 Show GitHub Exploit DB Packet Storm
226970 9.3 危険 oovoo - ooVoo の oovoo.exe におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-6953 2012-12-20 19:10 2009-08-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210071 7.5 HIGH
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The RSS To SMS module processes XML files in an unsafe manner. This opens the application to an XML External Entity attack that can be … CWE-611
XXE 		CVE-2020-14029 2024-11-21 14:02 2020-09-19 Show GitHub Exploit DB Packet Storm
210072 4.9 MEDIUM
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The ASP.net SMS module can be used to read and validate the source code of ASP files. By altering the path, it can be made to read any … NVD-CWE-noinfo
CVE-2020-14021 2024-11-21 14:02 2020-09-19 Show GitHub Exploit DB Packet Storm
210073 6.1 MEDIUM
Network 		apache airflow In Apache Airflow < 1.10.12, the "origin" parameter passed to some of the endpoints like '/trigger' was vulnerable to XSS exploit. CWE-79
Cross-site Scripting 		CVE-2020-13944 2024-11-21 14:02 2020-09-17 Show GitHub Exploit DB Packet Storm
210074 5.3 MEDIUM
Network 		atlassian jira
data_center
jira_server 		Affected versions of Atlassian Jira Server and Data Center allow an unauthenticated user to enumerate users via an Information Disclosure vulnerability in the /ViewUserHover.jspa endpoint. The affect… CWE-200
Information Exposure 		CVE-2020-14181 2024-11-21 14:02 2020-09-17 Show GitHub Exploit DB Packet Storm
210075 8.8 HIGH
Network 		apache superset While investigating a bug report on Apache Superset, it was determined that an authenticated user could craft requests via a number of templated text fields in the product that would allow arbitrary … NVD-CWE-noinfo
CVE-2020-13948 2024-11-21 14:02 2020-09-17 Show GitHub Exploit DB Packet Storm
210076 8.8 HIGH
Network 		istio-operator_project istio-operator An incorrect access control flaw was found in the operator, openshift-service-mesh/istio-rhel8-operator all versions through 1.1.3. This flaw allows an attacker with a basic level of access to the cl… CWE-862
 Missing Authorization 		CVE-2020-14306 2024-11-21 14:02 2020-09-17 Show GitHub Exploit DB Packet Storm
210077 6.1 MEDIUM
Network 		apache atlas Apache Atlas before 2.1.0 contain a XSS vulnerability. While saving search or rendering elements values are not sanitized correctly and because of that it triggers the XSS vulnerability. CWE-79
Cross-site Scripting 		CVE-2020-13928 2024-11-21 14:02 2020-09-17 Show GitHub Exploit DB Packet Storm
210078 9.8 CRITICAL
Network 		daemonology bsdiff A memory corruption vulnerability is present in bspatch as shipped in Colin Percival’s bsdiff tools version 4.3. Insufficient checks when handling external inputs allows an attacker to bypass the san… CWE-787
 Out-of-bounds Write 		CVE-2020-14315 2024-11-21 14:02 2020-09-16 Show GitHub Exploit DB Packet Storm
210079 5.5 MEDIUM
Local 		linux
debian
canonical
starwindsoftware 		linux_kernel
debian_linux
ubuntu_linux
starwind_virtual_san 		A memory out-of-bounds read flaw was found in the Linux kernel before 5.9-rc2 with the ext3/ext4 file system, in the way it accesses a directory with broken indexing. This flaw allows a local user to… - CVE-2020-14314 2024-11-21 14:02 2020-09-16 Show GitHub Exploit DB Packet Storm
210080 4.4 MEDIUM
Local 		linux linux_kernel A memory disclosure flaw was found in the Linux kernel's ethernet drivers, in the way it read data from the EEPROM of the device. This flaw allows a local user to read uninitialized values from the k… - CVE-2020-14304 2024-11-21 14:02 2020-09-16 Show GitHub Exploit DB Packet Storm