Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227171 10 危険 サン・マイクロシステムズ - SPARC Enterprise T5120 および T5220 サーバの特定の間違った Sun Solaris イメージにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1369 2012-12-20 18:52 2008-03-18 Show GitHub Exploit DB Packet Storm
227172 5 警告 トレンドマイクロ - Trend Micro OfficeScan Corporate Edition におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-1366 2012-12-20 18:52 2008-03-17 Show GitHub Exploit DB Packet Storm
227173 6.4 警告 トレンドマイクロ - Trend Micro OfficeScan Corporate Edition におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1365 2012-12-20 18:34 2008-03-17 Show GitHub Exploit DB Packet Storm
227174 4.3 警告 Zabbix - ZABBIX の zabbix_agentd におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2008-1353 2012-12-20 18:34 2008-03-17 Show GitHub Exploit DB Packet Storm
227175 4.9 警告 SCO - SCO UnixWare の pkgadd および pkgrm におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1343 2012-12-20 18:34 2008-02-27 Show GitHub Exploit DB Packet Storm
227176 4.3 警告 polymita technologies - Polymita BPM-Suite などの search 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1342 2012-12-20 18:34 2008-03-17 Show GitHub Exploit DB Packet Storm
227177 6.8 警告 woltlab - wBB の index.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-1323 2012-12-20 18:34 2008-03-13 Show GitHub Exploit DB Packet Storm
227178 9.3 危険 versant - Borland CaliberRM などで使用される Versant Object Database における任意のコマンドを実行される脆弱性 CWE-DesignError
CVE-2008-1319 2012-12-20 18:34 2008-03-13 Show GitHub Exploit DB Packet Storm
227179 6.8 警告 qt-cute - QT-cute QuickTalk フォーラムの qtf_ind_search_ov.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1316 2012-12-20 18:34 2008-03-13 Show GitHub Exploit DB Packet Storm
227180 7.5 危険 PHPNUKE - PHP-Nuke 用の ZClassifieds モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1315 2012-12-20 18:34 2008-03-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210791 5.3 MEDIUM
Network 		cpanel cpanel cPanel before 84.0.20 allows attackers to bypass intended restrictions on features and demo accounts via WebDisk UAPI calls (SEC-541). CWE-862
 Missing Authorization 		CVE-2020-10116 2024-11-21 13:54 2020-03-18 Show GitHub Exploit DB Packet Storm
210792 7.2 HIGH
Network 		cpanel cpanel cPanel before 84.0.20, when PowerDNS is used, allows arbitrary code execution as root via dnsadmin. (SEC-537). NVD-CWE-noinfo
CVE-2020-10115 2024-11-21 13:54 2020-03-18 Show GitHub Exploit DB Packet Storm
210793 6.1 MEDIUM
Network 		cpanel cpanel cPanel before 84.0.20 allows stored self-XSS via the HTML file editor (SEC-535). CWE-79
Cross-site Scripting 		CVE-2020-10114 2024-11-21 13:54 2020-03-18 Show GitHub Exploit DB Packet Storm
210794 6.1 MEDIUM
Network 		cpanel cpanel cPanel before 84.0.20 allows self XSS via a temporary character-set specification (SEC-515). CWE-79
Cross-site Scripting 		CVE-2020-10113 2024-11-21 13:54 2020-03-18 Show GitHub Exploit DB Packet Storm
210795 9.8 CRITICAL
Network 		gitlab gitlab GitLab EE 3.0 through 12.8.1 allows SSRF. An internal investigation revealed that a particular deprecated service was creating a server side request forgery risk. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-10077 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm
210796 6.1 MEDIUM
Network 		gitlab gitlab GitLab 12.1 through 12.8.1 allows XSS. A stored cross-site scripting vulnerability was discovered when displaying merge requests. CWE-79
Cross-site Scripting 		CVE-2020-10076 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm
210797 6.1 MEDIUM
Network 		gitlab gitlab GitLab 12.5 through 12.8.1 allows HTML Injection. A particular error header was potentially susceptible to injection or potentially other vulnerabilities via unescaped input. CWE-79
Cross-site Scripting 		CVE-2020-10075 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm
210798 9.8 CRITICAL
Network 		gitlab gitlab GitLab 10.1 through 12.8.1 has Incorrect Access Control. A scenario was discovered in which a GitLab account could be taken over through an expired link. NVD-CWE-noinfo
CVE-2020-10074 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm
210799 7.5 HIGH
Network 		gitlab gitlab GitLab EE 12.4.2 through 12.8.1 allows Denial of Service. It was internally discovered that a potential denial of service involving permissions checks could impact a project home page. NVD-CWE-noinfo
CVE-2020-10073 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm
210800 6.5 MEDIUM
Network 		sapplica sentrifugo A Blind SQL Injection issue was discovered in Sapplica Sentrifugo 3.2 via the index.php/holidaygroups/add id parameter because of the HolidaydatesController.php addAction function. CWE-89
SQL Injection 		CVE-2020-10218 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm