Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227181 7.5 危険 rgallery - WBB 用の rGallery プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4627 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227182 6.8 警告 zirkon box - Fritz Berger yappa-ng の yappa-ng におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4626 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227183 7.5 危険 shiftthis - WordPress 用の ShiftThis Newsletter プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4625 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227184 5 警告 Wireshark - Wireshark の Bluetooth ACL 解析子におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4683 2012-12-20 18:52 2007-04-4 Show GitHub Exploit DB Packet Storm
227185 7.5 危険 phpfastnews - phpFastNews の fastnews-code.php における認証を迂回される脆弱性 CWE-287
不適切な認証 		CVE-2008-4622 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227186 7.5 危険 ZeeScripts.com - ZeeScripts Zeeproperty の bannerclick.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4621 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227187 10 危険 サン・マイクロシステムズ - Sun Solaris の RPC サブシステムにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-4619 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227188 7.5 危険 pyxicom - Joomla! 用の actualite モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4617 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227189 5 警告 the spanner
WordPress.org		 - WordPress の SpamBam プラグインにおける制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4616 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227190 10 危険 portalapp - PortalApp の i_utils.asp における脆弱性 CWE-noinfo
情報不足 		CVE-2008-4615 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210381 7.5 HIGH
Network 		varnish-cache
varnish-software
opensuse
debian 		varnish_cache
leap
backports_sle
debian_linux 		An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3.x before 6.3.2. It occurs when communication with a TLS termination proxy uses PROXY version 2. There … CWE-617
 Reachable Assertion 		CVE-2020-11653 2024-11-21 13:58 2020-04-9 Show GitHub Exploit DB Packet Storm
210382 7.5 HIGH
Network 		ixsystems freenas_firmware
truenas_firmware 		An issue was discovered in iXsystems FreeNAS (and TrueNAS) 11.2 before 11.2-u8 and 11.3 before 11.3-U1. It allows a denial of service. The login authentication component has no limits on the length o… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2020-11650 2024-11-21 13:58 2020-04-9 Show GitHub Exploit DB Packet Storm
210383 3.1 LOW
Network 		istio
envoyproxy 		istio
envoy 		Istio through 1.5.1 and Envoy through 1.14.1 have a data-leak issue. If there is a TCP connection (negotiated with SNI over HTTPS) to *.example.com, a request for a domain concurrently configured exp… NVD-CWE-noinfo
CVE-2020-11767 2024-11-21 13:58 2020-04-15 Show GitHub Exploit DB Packet Storm
210384 5.5 MEDIUM
Local 		xen
fedoraproject 		xen
fedora 		An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service because of a bad error path in GNTTABOP_map_grant. Grant table operations are expected to return 0 … CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-11743 2024-11-21 13:58 2020-04-14 Show GitHub Exploit DB Packet Storm
210385 5.5 MEDIUM
Local 		xen
fedoraproject 		xen
fedora 		An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service because of bad continuation handling in GNTTABOP_copy. Grant table operations are expected to retur… NVD-CWE-Other
CVE-2020-11742 2024-11-21 13:58 2020-04-14 Show GitHub Exploit DB Packet Storm
210386 8.8 HIGH
Local 		xen
fedoraproject
debian
opensuse 		xen
fedora
debian_linux
leap 		An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (with active profiling) to obtain sensitive information about other guests, cause a denial of service, or possibly g… CWE-909
 Missing Initialization of Resource 		CVE-2020-11741 2024-11-21 13:58 2020-04-14 Show GitHub Exploit DB Packet Storm
210387 7.8 HIGH
Local 		xen
fedoraproject
debian
opensuse 		xen
fedora
debian_linux
leap 		An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service or possibly gain privileges because of missing memory barriers in read-write unlock paths. The read… CWE-362
Race Condition 		CVE-2020-11739 2024-11-21 13:58 2020-04-14 Show GitHub Exploit DB Packet Storm
210388 7.8 HIGH
Local 		linux linux_kernel snd_ctl_elem_add in sound/core/control.c in the Linux kernel through 5.6.3 has a count=info->owner line, which later affects a private_size*count multiplication for unspecified "interesting side effe… NVD-CWE-noinfo
CVE-2020-11725 2024-11-21 13:58 2020-04-13 Show GitHub Exploit DB Packet Storm
210389 9.8 CRITICAL
Network 		konghq docker-kong An issue was discovered in docker-kong (for Kong) through 2.0.3. The admin API port may be accessible on interfaces other than 127.0.0.1. NOTE: The vendor argue that this CVE is not a vulnerability b… NVD-CWE-Other
CVE-2020-11710 2024-11-21 13:58 2020-04-13 Show GitHub Exploit DB Packet Storm
210390 5.3 MEDIUM
Network 		argoproj argo_cd Fixed in v1.5.1, Argo version v1.5.0 was vulnerable to a user-enumeration vulnerability which allowed attackers to determine the usernames of valid (non-SSO) accounts because /api/v1/session returned… CWE-203
 Information Exposure Through Discrepancy 		CVE-2020-11576 2024-11-21 13:58 2020-04-9 Show GitHub Exploit DB Packet Storm