Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227061 7.5 危険 PHP-Fusion - PHP-Fusion 用の Freshlinks モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5074 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
227062 9 危険 yoxel - Yoxel の itpm_estimate.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5071 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
227063 7.5 危険 Pro Chat Rooms - Pro Chat Rooms における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5070 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
227064 5 警告 smolinari - mwcal の php/cal_pdf.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5062 2012-12-20 18:52 2008-11-13 Show GitHub Exploit DB Packet Storm
227065 4.3 警告 smolinari - mwcal の php/cal_default.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5061 2012-12-20 18:52 2008-11-13 Show GitHub Exploit DB Packet Storm
227066 7.5 危険 PreProject.com - Pre Simple CMS の siteadmin/loginsucess.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5058 2012-12-20 18:52 2008-11-13 Show GitHub Exploit DB Packet Storm
227067 7.5 危険 zeeways - Zeeways PhotoVideoTube における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-5042 2012-12-20 18:52 2008-11-12 Show GitHub Exploit DB Packet Storm
227068 7.5 危険 Sweex - Sweex RO002 Router におけるアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5041 2012-12-20 18:52 2008-11-12 Show GitHub Exploit DB Packet Storm
227069 4.3 警告 PHPNUKE - PHP-Nuke 用の League モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5039 2012-12-20 18:52 2008-11-12 Show GitHub Exploit DB Packet Storm
227070 5 警告 University of Washington - University of Washington IMAP Toolkit の c-client ライブラリにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5006 2012-12-20 18:52 2008-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210371 7.5 HIGH
Network 		apache
oracle 		camel
flexcube_private_banking
enterprise_manager_base_platform
communications_diameter_signaling_router
communications_diameter_intelligence_hub 		Apache Camel's JMX is vulnerable to Rebind Flaw. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.x, 3.0.0 up to 3.1.0 is affected. Users should upgrade to 3.2.0. NVD-CWE-noinfo
CVE-2020-11971 2024-11-21 13:59 2020-05-15 Show GitHub Exploit DB Packet Storm
210372 8.8 HIGH
Network 		westerndigital wd_discovery The Western Digital WD Discovery application before 3.8.229 for MyCloud Home on Windows and macOS is vulnerable to CSRF, with impacts such as stealing data, modifying disk contents, or exhausting dis… CWE-352
 Origin Validation Error 		CVE-2020-12427 2024-11-21 13:59 2020-05-14 Show GitHub Exploit DB Packet Storm
210373 9.8 CRITICAL
Network 		zulipchat zulip_desktop Zulip Desktop before 5.2.0 has Missing SSL Certificate Validation because all validation was inadvertently disabled during an attempt to recognize the ignoreCerts option. CWE-295
Improper Certificate Validation  		CVE-2020-12637 2024-11-21 13:59 2020-05-10 Show GitHub Exploit DB Packet Storm
210374 8.8 HIGH
Network 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow a low privilege user to overwrite files outside the application… CWE-22
Path Traversal 		CVE-2020-12026 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
210375 9.8 CRITICAL
Network 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An improper validation vulnerability exists that could allow an attacker to inject specially crafted input into memory where it can b… CWE-129
 Improper Validation of Array Index 		CVE-2020-12022 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
210376 7.5 HIGH
Network 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An out-of-bounds vulnerability exists that may allow access to unauthorized data. CWE-125
Out-of-bounds Read 		CVE-2020-12018 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
210377 7.5 HIGH
Network 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Input is not properly sanitized and may allow an attacker to inject SQL commands. CWE-89
SQL Injection 		CVE-2020-12014 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
210378 7.1 HIGH
Local 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow an authenticated user to use a specially crafted file to delete… CWE-22
Path Traversal 		CVE-2020-12010 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
210379 9.8 CRITICAL
Network 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow a low privilege user to overwrite files outside the application… CWE-22
Path Traversal 		CVE-2020-12006 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
210380 9.8 CRITICAL
Network 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple stack-based buffer overflow vulnerabilities exist caused by a lack of proper validation of the length of user-supplied data,… CWE-787
 Out-of-bounds Write 		CVE-2020-12002 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm