Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227291 7.5 危険 yourplace - YourPlace における脆弱性 CWE-287
不適切な認証 		CVE-2008-6445 2012-12-20 19:10 2009-03-9 Show GitHub Exploit DB Packet Storm
227292 7.5 危険 phpkf - phpKF の forum_duzen.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6443 2012-12-20 19:10 2009-03-9 Show GitHub Exploit DB Packet Storm
227293 5.8 警告 sina - Sina Inc. DLoader Class ActiveX コントロールにおける任意のファイルを上書きされる脆弱性 CWE-Other
その他 		CVE-2008-6442 2012-12-20 19:10 2009-03-9 Show GitHub Exploit DB Packet Storm
227294 4.3 警告 phpsqlitecms - phpSQLiteCMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6435 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
227295 7.5 危険 psychostats - PsychoStats における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6422 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
227296 7.5 危険 socialsitegenerator - Social Site Generator の social_game_play.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6421 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
227297 5 警告 socialsitegenerator - Social Site Generator における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2008-6420 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
227298 7.5 危険 socialsitegenerator - Social Site Generator における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6419 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
227299 7.5 危険 torrenttrader - TorrentTrader の scrape.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6418 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
227300 10 危険 Youngzsoft - YoungZSoft CCProxy におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-6415 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201331 6.5 MEDIUM
Network 		atomix atomix A vulnerability in Atomix v3.1.5 allows attackers to cause a denial of service (DoS) via a Raft session flooding attack using Raft OpenSessionRequest messages. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-35210 2024-11-21 14:27 2021-12-17 Show GitHub Exploit DB Packet Storm
201332 6.1 MEDIUM
Network 		elkarbackup elkarbackup Cross Site Scripting (XSS) vulnerability in ElkarBackup 1.3.3, allows attackers to execute arbitrary code via the name parameter to the add client feature. CWE-79
Cross-site Scripting 		CVE-2020-35249 2024-11-21 14:27 2021-11-2 Show GitHub Exploit DB Packet Storm
201333 7.5 HIGH
Network 		expertpdf expertpdf A local file inclusion vulnerability in ExpertPDF 9.5.0 through 14.1.0 allows attackers to read the file contents from files that the running ExpertPDF process has access to read. CWE-552
 Files or Directories Accessible to External Parties 		CVE-2020-35340 2024-11-21 14:27 2021-09-15 Show GitHub Exploit DB Packet Storm
201334 8.8 HIGH
Network 		cgal
debian 		computational_geometry_algorithms_library
debian_linux 		A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1 in Nef_S2/SNC_io_parser.h SNC_io_parser::read_sface() store_sm_boundary_item() Sloop_of OOB r… - CVE-2020-35635 2024-11-21 14:27 2021-08-31 Show GitHub Exploit DB Packet Storm
201335 8.8 HIGH
Network 		cgal
debian 		computational_geometry_algorithms_library
debian_linux 		A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in Nef_S2/SNC_io_parser.h SNC_io_parser<EW>::read_sface() s… - CVE-2020-35634 2024-11-21 14:27 2021-08-31 Show GitHub Exploit DB Packet Storm
201336 8.8 HIGH
Network 		cgal
debian 		computational_geometry_algorithms_library
debian_linux 		A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in Nef_S2/SNC_io_parser.h SNC_io_parser<EW>::read_sface() s… - CVE-2020-35633 2024-11-21 14:27 2021-08-31 Show GitHub Exploit DB Packet Storm
201337 7.5 HIGH
Network 		hcc-embedded
siemens 		nichestack
7km9300-0ae02-0aa0_firmware 		An issue was discovered in HCC Nichestack 3.0. The code that parses ICMP packets relies on an unchecked value of the IP payload size (extracted from the IP header) to compute the ICMP checksum. When … CWE-125
Out-of-bounds Read 		CVE-2020-35683 2024-11-21 14:27 2021-08-19 Show GitHub Exploit DB Packet Storm
201338 9.1 CRITICAL
Network 		hcc-embedded
siemens 		nichestack
sentron_3wa_com190_firmware
sentron_3wl_com35_firmware 		An issue was discovered in HCC Nichestack 3.0. The code that generates Initial Sequence Numbers (ISNs) for TCP connections derives the ISN from an insufficiently random source. As a result, an attack… CWE-330
 Use of Insufficiently Random Values 		CVE-2020-35685 2024-11-21 14:27 2021-08-19 Show GitHub Exploit DB Packet Storm
201339 7.5 HIGH
Network 		hcc-embedded
siemens 		nichestack
sentron_3wl_com35_firmware
sentron_3wa_com190_firmware 		An issue was discovered in HCC Nichestack 3.0. The code that parses TCP packets relies on an unchecked value of the IP payload size (extracted from the IP header) to compute the length of the TCP pay… CWE-20
 Improper Input Validation  		CVE-2020-35684 2024-11-21 14:27 2021-08-19 Show GitHub Exploit DB Packet Storm
201340 9.8 CRITICAL
Network 		phpgurukul employee_record_management_system SQL injection vulnerability in PHPGurukul Employee Record Management System 1.1 allows remote attackers to execute arbitrary SQL commands and bypass authentication. CWE-89
SQL Injection 		CVE-2020-35427 2024-11-21 14:27 2021-07-20 Show GitHub Exploit DB Packet Storm