Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227051	7.5	危険	Xine	-	xine-lib の src/demuxers/demux_nsf.c におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1878	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

227052	6.8	警告	snarky	-	VisualPic の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-1876	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

227053	7.5	危険	terong	-	Terong PHP Photo Gallery の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1875	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

227054	6.5	警告	xpoze	-	Xpoze Pro の account/user/mail.html における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1874	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

227055	4.3	警告	tru-zone	-	Nuke ET のプライベートメッセージ機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1873	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

227056	6.5	警告	scriptsagent	-	Scriptsagent.com Links Directory の links.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1871	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

227057	7.5	危険	site sift media	-	Site Sift Listings における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1869	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

227058	7.5	危険	pixel motion	-	Blog Pixel Motion の admin/sauvBase.php における重要な情報を含む blogPM.sql ファイルの結果を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-1868	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

227059	7.5	危険	pixel motion	-	Blog Pixel Motion における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1867	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

227060	9	危険	pixel motion	-	Blog Pixel Motion の admin/modif_config.php における任意の PHP スクリプトをアップロードされる脆弱性	CWE-94 コード・インジェクション	CVE-2008-1866	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199471	6.0	MEDIUM Local	xen debian fedoraproject	xen debian_linux fedora	An issue was discovered in Xen through 4.14.x. When a Xenstore watch fires, the xenstore client that registered the watch will receive a Xenstore message containing the path of the modified Xenstore …	CWE-476 NULL Pointer Dereference	CVE-2020-29484	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199472	6.5	MEDIUM Local	xen debian fedoraproject	xen debian_linux fedora	An issue was discovered in Xen through 4.14.x. Xenstored and guests communicate via a shared memory page using a specific protocol. When a guest violates this protocol, xenstored will drop the connec…	CWE-416 Use After Free	CVE-2020-29483	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199473	6.5	MEDIUM Local	xen debian	xen debian_linux	An issue was discovered in Xen through 4.14.x. Some OSes (such as Linux, FreeBSD, and NetBSD) are processing watch events using a single thread. If the events are received faster than the thread is a…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-29568	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199474	6.0	MEDIUM Local	xen debian fedoraproject	xen debian_linux fedora	An issue was discovered in Xen through 4.14.x. A guest may access xenstore paths via absolute paths containing a full pathname, or via a relative path, which implicitly includes /local/domain/$DOMID …	CWE-426 Untrusted Search Path	CVE-2020-29482	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199475	8.8	HIGH Local	xen debian fedoraproject	xen debian_linux fedora	An issue was discovered in Xen through 4.14.x. Access rights of Xenstore nodes are per domid. Unfortunately, existing granted access rights are not removed when a domain is being destroyed. This mean…	CWE-269 Improper Privilege Management	CVE-2020-29481	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199476	2.3	LOW Local	xen debian fedoraproject	xen debian_linux fedora	An issue was discovered in Xen through 4.14.x. Neither xenstore implementation does any permission checks when reporting a xenstore watch event. A guest administrator can watch the root xenstored nod…	CWE-862 Missing Authorization	CVE-2020-29480	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199477	8.8	HIGH Local	xen debian fedoraproject	xen debian_linux fedora	An issue was discovered in Xen through 4.14.x. In the Ocaml xenstored implementation, the internal representation of the tree has special cases for the root node, because this node has no parent. Unf…	CWE-862 Missing Authorization	CVE-2020-29479	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199478	6.2	MEDIUM Local	xen debian fedoraproject	xen debian_linux fedora	An issue was discovered in Xen through 4.14.x. A bounds check common to most operation time functions specific to FIFO event channels depends on the CPU observing consistent state. While the producer…	CWE-476 NULL Pointer Dereference	CVE-2020-29571	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199479	8.8	HIGH Local	xen linux netapp debian	xen linux_kernel hci_compute_node_bios solidfire_\&_hci_management_node solidfire_\&_hci_storage_node debian_linux	An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring->xenblkd to NULL when st…	CWE-416 Use After Free	CVE-2020-29569	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199480	6.2	MEDIUM Local	xen fedoraproject	xen fedora	An issue was discovered in Xen 4.14.x. When moving IRQs between CPUs to distribute the load of IRQ handling, IRQ vectors are dynamically allocated and de-allocated on the relevant CPUs. De-allocation…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-29567	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm