Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227151	7.5	危険	sylvain pasquet	-	BbZL.PhP における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-4708	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

227152	5	警告	sylvain pasquet	-	BbZL.PhP の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4707	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

227153	7.5	危険	vBulletin Solutions, Inc.	-	VBGooglemap Hotspot Edition モジュールなどにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4706	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

227154	7.5	危険	phponlinedatingsoftware	-	php Online Dating Software MyPHPDating の success_story.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4705	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

227155	7.5	危険	phpwebgallery	-	PhpWebGallery におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4702	2012-12-20 18:52	2008-10-22	Show	GitHub Exploit DB Packet Storm

227156	9.3	危険	VideoLAN	-	VideoLAN VLC Media Player の TY demux プラグインにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-4686	2012-12-20 18:52	2008-10-18	Show	GitHub Exploit DB Packet Storm

227157	4.3	警告	Wireshark	-	Wireshark の packet-frame におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-4684	2012-12-20 18:52	2008-05-16	Show	GitHub Exploit DB Packet Storm

227158	5	警告	Wireshark	-	Wireshark の wtap.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-4682	2012-12-20 18:52	2008-10-1	Show	GitHub Exploit DB Packet Storm

227159	4.3	警告	Wireshark	-	Wireshark の Bluetooth RFCOMM 解析子におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 CWE-399	CVE-2008-4681	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

227160	4.3	警告	Wireshark	-	Wireshark の USB 解析子におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-4680	2012-12-20 18:52	2008-10-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210231	5.4	MEDIUM Network	open-xchange	open-xchange_appsuite	OX App Suite 7.10.3 and earlier allows XSS via text/x-javascript, text/rdf, or a PDF document.	CWE-79 Cross-site Scripting	CVE-2020-12646	2024-11-21 13:59	2020-09-1	Show	GitHub Exploit DB Packet Storm

210232	9.8	CRITICAL Network	open-xchange	open-xchange_appsuite	OX App Suite 7.10.1 to 7.10.3 has improper input validation for rate limits with a crafted User-Agent header, spoofed vacation notices, and /apps/load memory consumption.	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-12645	2024-11-21 13:59	2020-09-1	Show	GitHub Exploit DB Packet Storm

210233	5.0	MEDIUM Network	open-xchange	open-xchange_appsuite	OX App Suite 7.10.3 and earlier allows SSRF, related to the mail account API and the /folder/list API.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-12644	2024-11-21 13:59	2020-09-1	Show	GitHub Exploit DB Packet Storm

210234	4.3	MEDIUM Network	open-xchange	open-xchange_appsuite	OX App Suite 7.10.3 and earlier has Incorrect Access Control via an /api/subscriptions request for a snippet containing an email address.	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2020-12643	2024-11-21 13:59	2020-09-1	Show	GitHub Exploit DB Packet Storm

210235	8.8	HIGH Network	mitel	mivoice_connect	A remote code execution vulnerability in Mitel MiVoice Connect Client before 214.100.1223.0 could allow an attacker to execute arbitrary code in the chat notification window, due to improper renderin…	CWE-22 Path Traversal	CVE-2020-12456	2024-11-21 13:59	2020-08-27	Show	GitHub Exploit DB Packet Storm

210236	7.5	HIGH Network	wolfssl	wolfssl	An issue was discovered in wolfSSL before 4.5.0. It mishandles the change_cipher_spec (CCS) message processing logic for TLS 1.3. If an attacker sends ChangeCipherSpec messages in a crafted way invol…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2020-12457	2024-11-21 13:59	2020-08-21	Show	GitHub Exploit DB Packet Storm

210237	5.9	MEDIUM Network	freron	mailmate	MailMate before 1.11 automatically imported S/MIME certificates and thereby silently replaced existing ones. This allowed a man-in-the-middle attacker to obtain an email-validated S/MIME certificate …	NVD-CWE-noinfo	CVE-2020-12619	2024-11-21 13:59	2020-08-21	Show	GitHub Exploit DB Packet Storm

210238	4.8	MEDIUM Network	emclient	em_client	eM Client before 7.2.33412.0 automatically imported S/MIME certificates and thereby silently replaced existing ones. This allowed a man-in-the-middle attacker to obtain an email-validated S/MIME cert…	NVD-CWE-noinfo	CVE-2020-12618	2024-11-21 13:59	2020-08-21	Show	GitHub Exploit DB Packet Storm

210239	6.5	MEDIUM Network	lightbend	play_framework	In Play Framework 2.6.0 through 2.8.1, the CSRF filter can be bypassed by making CORS simple requests with content types that contain parameters that can't be parsed.	CWE-352 Origin Validation Error	CVE-2020-12480	2024-11-21 13:59	2020-08-18	Show	GitHub Exploit DB Packet Storm

210240	9.8	CRITICAL Network	dbsoft	sglac	An issue was discovered in DB Soft SGLAC before 20.05.001. The ProcedimientoGenerico method in the SVCManejador.svc webservice of the SGLAC web frontend allows an attacker to run arbitrary SQL comman…	CWE-89 SQL Injection	CVE-2020-12606	2024-11-21 13:59	2020-08-17	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed