Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227381	7.5	危険	XOOPS	-	XOOPS の xhresim モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5665	2012-12-20 18:52	2008-12-18	Show	GitHub Exploit DB Packet Storm

227382	9.3	危険	Realtek Semiconductor Corp	-	Realtek Media Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5664	2012-12-20 18:52	2008-12-18	Show	GitHub Exploit DB Packet Storm

227383	7.5	危険	Quassel IRC	-	Quassel Core における CRLF インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2008-5657	2012-12-20 18:52	2008-10-27	Show	GitHub Exploit DB Packet Storm

227384	4.3	警告	TYPO3 Association	-	TYPO3 の felogin system エクステンション用の frontend プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5656	2012-12-20 18:52	2008-12-17	Show	GitHub Exploit DB Packet Storm

227385	5	警告	Edgewall Software	-	Trac の HTML サニタイズフィルタにおけるフィッシング攻撃を実行される脆弱性	CWE-noinfo 情報不足	CVE-2008-5647	2012-12-20 18:52	2008-12-17	Show	GitHub Exploit DB Packet Storm

227386	7.5	危険	Edgewall Software	-	Trac におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-5646	2012-12-20 18:52	2008-12-17	Show	GitHub Exploit DB Packet Storm

227387	4.3	警告	TYPO3 Association	-	TYPO3 用の file backend モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5644	2012-12-20 18:52	2008-12-17	Show	GitHub Exploit DB Packet Storm

227388	4.3	警告	txtblogcms	-	TxtBlog の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-5639	2012-12-20 18:52	2008-12-17	Show	GitHub Exploit DB Packet Storm

227389	6.8	警告	qualityunit	-	Post Affiliate Pro の merchants/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5630	2012-12-20 18:52	2008-12-17	Show	GitHub Exploit DB Packet Storm

227390	7.5	危険	turnkeyarcade	-	Turnkey Arcade Script の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5629	2012-12-20 18:52	2008-12-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196121	6.5	MEDIUM Local	huawei	taurus-an00b_firmware	Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have a use-after-free (UAF) vulnerability. An authenticated, local attacker may perform specific operations to exploit this vulnerability. S…	CWE-416 Use After Free	CVE-2020-9084	2024-11-21 14:39	2020-09-19	Show	GitHub Exploit DB Packet Storm

196122	6.5	MEDIUM Network	google debian fedoraproject canonical opensuse microsoft	brotli debian_linux fedora ubuntu_linux leap visual_studio_2019 .net .net_core powershell visual_studio_2022	A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happ…	CWE-120 Classic Buffer Overflow	CVE-2020-8927	2024-11-21 14:39	2020-09-15	Show	GitHub Exploit DB Packet Storm

196123	8.1	HIGH Network	dataiku	data_science_studio	Dataiku DSS before 6.0.5 allows attackers write access to the project to modify the "Created by" metadata.	NVD-CWE-noinfo	CVE-2020-8817	2024-11-21 14:39	2020-09-14	Show	GitHub Exploit DB Packet Storm

196124	9.8	CRITICAL Network	intel netapp	standard_manageability active_management_technology_firmware steelstore_cloud_integrated_storage	Improper buffer restrictions in network subsystem in provisioned Intel(R) AMT and Intel(R) ISM versions before 11.8.79, 11.12.79, 11.22.79, 12.0.68 and 14.0.39 may allow an unauthenticated user to po…	NVD-CWE-noinfo	CVE-2020-8758	2024-11-21 14:39	2020-09-11	Show	GitHub Exploit DB Packet Storm

196125	2.4	LOW Physics	huawei	mate_20_firmware	HUAWEI Mate 20 smart phones with Versions earlier than 10.1.0.163(C00E160R3P8) have a denial of service (DoS) vulnerability. The attacker can enter a large amount of text on the phone. Due to insuffi…	NVD-CWE-noinfo	CVE-2020-9083	2024-11-21 14:39	2020-09-4	Show	GitHub Exploit DB Packet Storm

196126	5.4	MEDIUM Network	netapp	clustered_data_ontap	Clustered Data ONTAP versions prior to 9.3P19, 9.5P14, 9.6P9 and 9.7 are susceptible to a vulnerability which when successfully exploited could lead to addition or modification of data or disclosure …	NVD-CWE-noinfo	CVE-2020-8576	2024-11-21 14:39	2020-09-3	Show	GitHub Exploit DB Packet Storm

196127	7.2	HIGH Network	trendmicro	deep_security_manager vulnerability_protection	A vulnerability in the management consoles of Trend Micro Deep Security 10.0-12.0 and Trend Micro Vulnerability Protection 2.0 SP2 may allow an authenticated attacker with full control privileges to …	NVD-CWE-noinfo	CVE-2020-8602	2024-11-21 14:39	2020-08-28	Show	GitHub Exploit DB Packet Storm

196128	7.6	HIGH Physics	ncr	aptra_xfs	NCR SelfServ ATMs running APTRA XFS 05.01.00 or earlier do not authenticate or protect the integrity of USB HID communications between the currency dispenser and the host computer, permitting an atta…	CWE-120 Classic Buffer Overflow	CVE-2020-9063	2024-11-21 14:39	2020-08-22	Show	GitHub Exploit DB Packet Storm

196129	5.3	MEDIUM Physics	dieboldnixdorf	probase	Diebold Nixdorf ProCash 2100xe USB ATMs running Wincor Probase version 1.1.30 do not encrypt, authenticate, or verify the integrity of messages between the CCDM and the host computer, allowing an att…	CWE-306 CWE-311 Missing Authentication for Critical Function Missing Encryption of Sensitive Data	CVE-2020-9062	2024-11-21 14:39	2020-08-22	Show	GitHub Exploit DB Packet Storm

196130	4.3	MEDIUM Network	isc debian canonical netapp fedoraproject opensuse	bind debian_linux ubuntu_linux steelstore_cloud_integrated_storage fedora leap	In BIND 9.9.12 -> 9.9.13, 9.10.7 -> 9.10.8, 9.11.3 -> 9.11.21, 9.12.1 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.9.12-S1 -> 9.9.13-S1, 9.11.3-S1 -> 9.11.21-S1 of the BIND 9 Supported Preview Edition…	CWE-269 Improper Privilege Management	CVE-2020-8624	2024-11-21 14:39	2020-08-22	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed