Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227201	7.5	危険	xpoze	-	Xpoze Pro の user.html における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3089	2012-12-20 18:52	2008-07-9	Show	GitHub Exploit DB Packet Storm

227202	7.5	危険	Simple Machines	-	SMF における脆弱性	CWE-noinfo 情報不足	CVE-2008-3073	2012-12-20 18:52	2008-04-30	Show	GitHub Exploit DB Packet Storm

227203	7.5	危険	Simple Machines	-	Simple Machines Forum における脆弱性	CWE-189 数値処理の問題	CVE-2008-3072	2012-12-20 18:52	2008-04-30	Show	GitHub Exploit DB Packet Storm

227204	2.1	注意	SUSE	-	SUSE openSUSE の sudo におけるパスワードを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-3067	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

227205	7.5	危険	v-webmail	-	V-webmail の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3063	2012-12-20 18:52	2008-10-7	Show	GitHub Exploit DB Packet Storm

227206	7.5	危険	TYPO3 Association	-	TYPO3 用の DAM Frontend エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3039	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

227207	7.5	危険	TYPO3 Association	-	TYPO3 用の Address Directory エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3038	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

227208	4.3	警告	TYPO3 Association	-	TYPO3 用の Address Directory エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3037	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

227209	6.5	警告	xchangeboard	-	XchangeBoard の newThread.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3035	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

227210	7.5	危険	rss aggregator	-	RSS-aggregator における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3034	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210381	7.5	HIGH Network	varnish-cache varnish-software opensuse debian	varnish_cache leap backports_sle debian_linux	An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3.x before 6.3.2. It occurs when communication with a TLS termination proxy uses PROXY version 2. There …	CWE-617 Reachable Assertion	CVE-2020-11653	2024-11-21 13:58	2020-04-9	Show	GitHub Exploit DB Packet Storm

210382	7.5	HIGH Network	ixsystems	freenas_firmware truenas_firmware	An issue was discovered in iXsystems FreeNAS (and TrueNAS) 11.2 before 11.2-u8 and 11.3 before 11.3-U1. It allows a denial of service. The login authentication component has no limits on the length o…	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-11650	2024-11-21 13:58	2020-04-9	Show	GitHub Exploit DB Packet Storm

210383	3.1	LOW Network	istio envoyproxy	istio envoy	Istio through 1.5.1 and Envoy through 1.14.1 have a data-leak issue. If there is a TCP connection (negotiated with SNI over HTTPS) to *.example.com, a request for a domain concurrently configured exp…	NVD-CWE-noinfo	CVE-2020-11767	2024-11-21 13:58	2020-04-15	Show	GitHub Exploit DB Packet Storm

210384	5.5	MEDIUM Local	xen fedoraproject	xen fedora	An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service because of a bad error path in GNTTABOP_map_grant. Grant table operations are expected to return 0 …	CWE-755 Improper Handling of Exceptional Conditions	CVE-2020-11743	2024-11-21 13:58	2020-04-14	Show	GitHub Exploit DB Packet Storm

210385	5.5	MEDIUM Local	xen fedoraproject	xen fedora	An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service because of bad continuation handling in GNTTABOP_copy. Grant table operations are expected to retur…	NVD-CWE-Other	CVE-2020-11742	2024-11-21 13:58	2020-04-14	Show	GitHub Exploit DB Packet Storm

210386	8.8	HIGH Local	xen fedoraproject debian opensuse	xen fedora debian_linux leap	An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (with active profiling) to obtain sensitive information about other guests, cause a denial of service, or possibly g…	CWE-909 Missing Initialization of Resource	CVE-2020-11741	2024-11-21 13:58	2020-04-14	Show	GitHub Exploit DB Packet Storm

210387	7.8	HIGH Local	xen fedoraproject debian opensuse	xen fedora debian_linux leap	An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service or possibly gain privileges because of missing memory barriers in read-write unlock paths. The read…	CWE-362 Race Condition	CVE-2020-11739	2024-11-21 13:58	2020-04-14	Show	GitHub Exploit DB Packet Storm

210388	7.8	HIGH Local	linux	linux_kernel	snd_ctl_elem_add in sound/core/control.c in the Linux kernel through 5.6.3 has a count=info->owner line, which later affects a private_size*count multiplication for unspecified "interesting side effe…	NVD-CWE-noinfo	CVE-2020-11725	2024-11-21 13:58	2020-04-13	Show	GitHub Exploit DB Packet Storm

210389	9.8	CRITICAL Network	konghq	docker-kong	An issue was discovered in docker-kong (for Kong) through 2.0.3. The admin API port may be accessible on interfaces other than 127.0.0.1. NOTE: The vendor argue that this CVE is not a vulnerability b…	NVD-CWE-Other	CVE-2020-11710	2024-11-21 13:58	2020-04-13	Show	GitHub Exploit DB Packet Storm

210390	5.3	MEDIUM Network	argoproj	argo_cd	Fixed in v1.5.1, Argo version v1.5.0 was vulnerable to a user-enumeration vulnerability which allowed attackers to determine the usernames of valid (non-SSO) accounts because /api/v1/session returned…	CWE-203 Information Exposure Through Discrepancy	CVE-2020-11576	2024-11-21 13:58	2020-04-9	Show	GitHub Exploit DB Packet Storm