Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227231	7.5	危険	Smarty	-	S9Y などの製品で使用される Smarty における任意の PHP 関数を呼び出される脆弱性	CWE-20 不適切な入力確認	CVE-2008-1066	2012-12-20 18:34	2008-02-28	Show	GitHub Exploit DB Packet Storm

227232	4.3	警告	WordPress.org	-	WordPress 用の Sniplets プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1061	2012-12-20 18:34	2008-02-28	Show	GitHub Exploit DB Packet Storm

227233	7.5	危険	WordPress.org	-	WordPress 用の Sniplets プラグインにおける任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-1060	2012-12-20 18:34	2008-02-28	Show	GitHub Exploit DB Packet Storm

227234	7.5	危険	WordPress.org	-	WordPress 用の Sniplets プラグインにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-1059	2012-12-20 18:34	2008-02-28	Show	GitHub Exploit DB Packet Storm

227235	6.9	警告	symark	-	Symark PowerBroker におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1056	2012-12-20 18:34	2008-02-28	Show	GitHub Exploit DB Packet Storm

227236	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Kose_Yazilari モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1053	2012-12-20 18:34	2008-02-27	Show	GitHub Exploit DB Packet Storm

227237	6.8	警告	phpprofiles	-	phpProfiles の include/body_comm.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-1051	2012-12-20 18:34	2008-02-27	Show	GitHub Exploit DB Packet Storm

227238	7.5	危険	softbiz	-	Softbiz Jokes & Funny Pics Script の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1050	2012-12-20 18:34	2008-02-27	Show	GitHub Exploit DB Packet Storm

227239	10	危険	positive software	-	Parallels H-Sphere で使用される Parallels SiteStudio における脆弱性	CWE-noinfo 情報不足	CVE-2008-1049	2012-12-20 18:34	2008-02-26	Show	GitHub Exploit DB Packet Storm

227240	4.3	警告	Plume CMS	-	Plume CMS の manager/xmedia.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1048	2012-12-20 18:34	2008-02-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200721	5.4	MEDIUM Network	jenkins	script_security	Jenkins Script Security Plugin 1.72 and earlier does not correctly escape pending or approved classpath entries on the In-process Script Approval page, resulting in a stored cross-site scripting vuln…	CWE-79 Cross-site Scripting	CVE-2020-2190	2024-11-21 14:24	2020-06-3	Show	GitHub Exploit DB Packet Storm

200722	8.8	HIGH Local	katacontainers	runtime	Kata Containers before 1.11.0 on Cloud Hypervisor persists guest filesystem changes to the underlying image file on the host. A malicious guest can overwrite the image file to gain control of all sub…	CWE-281 Improper Preservation of Permissions	CVE-2020-2025	2024-11-21 14:24	2020-05-20	Show	GitHub Exploit DB Packet Storm

200723	6.5	MEDIUM Local	katacontainers	runtime	An improper link resolution vulnerability affects Kata Containers versions prior to 1.11.0. Upon container teardown, a malicious guest can trick the kata-runtime into unmounting any mount point on th…	CWE-59 Link Following	CVE-2020-2024	2024-11-21 14:24	2020-05-20	Show	GitHub Exploit DB Packet Storm

200724	9.0	CRITICAL Network	paloaltonetworks	pan-os	An authentication bypass vulnerability in the Panorama context switching feature allows an attacker with network access to a Panorama's management interface to gain privileged access to managed firew…	CWE-287 Improper Authentication	CVE-2020-2018	2024-11-21 14:24	2020-05-14	Show	GitHub Exploit DB Packet Storm

200725	6.1	MEDIUM Network	paloaltonetworks	pan-os	A DOM-Based Cross Site Scripting Vulnerability exists in PAN-OS and Panorama Management Web Interfaces. A remote attacker able to convince an authenticated administrator to click on a crafted link to…	CWE-79 Cross-site Scripting	CVE-2020-2017	2024-11-21 14:24	2020-05-14	Show	GitHub Exploit DB Packet Storm

200726	7.0	HIGH Local	paloaltonetworks	pan-os	A race condition due to insecure creation of a file in a temporary directory vulnerability in PAN-OS allows for root privilege escalation from a limited linux user account. This allows an attacker wh…	CWE-362 Race Condition	CVE-2020-2016	2024-11-21 14:24	2020-05-14	Show	GitHub Exploit DB Packet Storm

200727	8.8	HIGH Network	paloaltonetworks	pan-os	A buffer overflow vulnerability in the PAN-OS management server allows authenticated users to crash system processes or potentially execute arbitrary code with root privileges. This issue affects: PA…	CWE-120 Classic Buffer Overflow	CVE-2020-2015	2024-11-21 14:24	2020-05-14	Show	GitHub Exploit DB Packet Storm

200728	8.8	HIGH Network	paloaltonetworks	pan-os	An OS Command Injection vulnerability in PAN-OS management server allows authenticated users to inject and execute arbitrary shell commands with root privileges. This issue affects: All versions of P…	CWE-78 OS Command	CVE-2020-2014	2024-11-21 14:24	2020-05-14	Show	GitHub Exploit DB Packet Storm

200729	7.5	HIGH Network	paloaltonetworks	pan-os	Improper restriction of XML external entity reference ('XXE') vulnerability in Palo Alto Networks Panorama management service allows remote unauthenticated attackers with network access to the Panora…	CWE-611 XXE	CVE-2020-2012	2024-11-21 14:24	2020-05-14	Show	GitHub Exploit DB Packet Storm

200730	7.2	HIGH Network	paloaltonetworks	pan-os	An OS command injection vulnerability in PAN-OS management interface allows an authenticated administrator to execute arbitrary OS commands with root privileges. This issue affects: All versions of P…	CWE-78 OS Command	CVE-2020-2010	2024-11-21 14:24	2020-05-14	Show	GitHub Exploit DB Packet Storm