Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227151 4.3 警告 pro search - PRO-Search におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0207 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
227152 4.3 警告 WordPress.org - WordPress 用の Captcha! プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0206 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
227153 4.3 警告 WordPress.org - WordPress 用の Math Comment Spam Protection プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0205 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
227154 4.3 警告 WordPress.org - WordPress 用の Math Comment Spam Protection プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0204 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
227155 4.3 警告 WordPress.org - WordPress 用の Cryptographp プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0203 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
227156 5 警告 pro search - PRO-Search におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-0199 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
227157 4.3 警告 WordPress.org - WordPress 用の WP-ContactForm プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-0198 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
227158 4.3 警告 WordPress.org - WordPress 用の WP-ContactForm プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0197 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
227159 5 警告 WordPress.org - WordPress におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0196 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
227160 5 警告 WordPress.org - WordPress における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-0195 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198231 4.8 MEDIUM
Network 		netgear d7800_firmware
r7500v2_firmware
r7800_firmware
r8900_firmware
r9000_firmware
rax120_firmware
rbk40_firmware
rbr40_firmware
rbs40_firmware
rbk20_firmware
rbr20_firmware 		Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, RBK40 before 2.3.5.30, RBR40 before 2.3.5.… CWE-79
Cross-site Scripting 		CVE-2020-35813 2024-11-21 14:28 2020-12-30 Show GitHub Exploit DB Packet Storm
198232 4.8 MEDIUM
Network 		netgear d7800_firmware
r7500v2_firmware
r7800_firmware
r8900_firmware
r9000_firmware
rax120_firmware
rbk40_firmware
rbr40_firmware
rbs40_firmware
rbk20_firmware
rbr20_firmware 		Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… CWE-79
Cross-site Scripting 		CVE-2020-35812 2024-11-21 14:28 2020-12-30 Show GitHub Exploit DB Packet Storm
198233 4.8 MEDIUM
Network 		netgear d7800_firmware
r7500v2_firmware
r7800_firmware
r8900_firmware
r9000_firmware
rax120_firmware
rbk20_firmware
rbr20_firmware
rbs20_firmware
rbk40_firmware
rbr40_firmware 		Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… CWE-79
Cross-site Scripting 		CVE-2020-35811 2024-11-21 14:28 2020-12-30 Show GitHub Exploit DB Packet Storm
198234 4.8 MEDIUM
Network 		netgear d7800_firmware
r7500v2_firmware
r7800_firmware
r8900_firmware
r9000_firmware
rax120_firmware
rbk40_firmware
rbr40_firmware
rbs40_firmware
rbk20_firmware
rbr20_firmware 		Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… CWE-79
Cross-site Scripting 		CVE-2020-35810 2024-11-21 14:28 2020-12-30 Show GitHub Exploit DB Packet Storm
198235 6.8 MEDIUM
Adjacent 		netgear d7800_firmware
r7800_firmware
r8900_firmware
r9000_firmware 		Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.56, R7800 before 1.0.2.68, R8900 before 1.0.4.26, and R9000 before 1.0.4.26. CWE-77
Command Injection 		CVE-2020-35790 2024-11-21 14:28 2020-12-30 Show GitHub Exploit DB Packet Storm
198236 8.8 HIGH
Network 		netgear nms300_firmware NETGEAR NMS300 devices before 1.6.0.27 are affected by command injection by an authenticated user. CWE-20
CWE-78
 Improper Input Validation 
OS Command  		CVE-2020-35789 2024-11-21 14:28 2020-12-30 Show GitHub Exploit DB Packet Storm
198237 6.8 MEDIUM
Adjacent 		netgear wac104_firmware NETGEAR WAC104 devices before 1.0.4.13 are affected by a buffer overflow by an authenticated user. CWE-120
Classic Buffer Overflow 		CVE-2020-35788 2024-11-21 14:28 2020-12-30 Show GitHub Exploit DB Packet Storm
198238 4.5 MEDIUM
Adjacent 		netgear r7800_firmware NETGEAR R7800 devices before 1.0.2.74 are affected by a buffer overflow by an authenticated user. CWE-120
Classic Buffer Overflow 		CVE-2020-35786 2024-11-21 14:28 2020-12-30 Show GitHub Exploit DB Packet Storm
198239 8.8 HIGH
Adjacent 		netgear dgn2200_firmware NETGEAR DGN2200v1 devices before v1.0.0.60 mishandle HTTPd authentication (aka PSV-2020-0363, PSV-2020-0364, and PSV-2020-0365). CWE-287
Improper Authentication 		CVE-2020-35785 2024-11-21 14:28 2020-12-30 Show GitHub Exploit DB Packet Storm
198240 4.8 MEDIUM
Network 		netgear d7800_firmware
r7500v2_firmware
r7800_firmware
r8900_firmware
r9000_firmware
rax120_firmware
rbk50_firmware
rbr50_firmware
rbs50_firmware
xr500_firmware
xr700_firmware 		Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… CWE-79
Cross-site Scripting 		CVE-2020-35809 2024-11-21 14:28 2020-12-30 Show GitHub Exploit DB Packet Storm