Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227631	3.6	注意	Matthias Wandel	-	Matthias Wandel jhead の jhead.c における任意のファイルを削除される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4640	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

227632	4.6	警告	Matthias Wandel	-	Matthias Wandel jhead の jhead.c における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4639	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

227633	7.5	危険	rgallery	-	WBB 用の rGallery プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4627	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

227634	6.8	警告	zirkon box	-	Fritz Berger yappa-ng の yappa-ng におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4626	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

227635	7.5	危険	shiftthis	-	WordPress 用の ShiftThis Newsletter プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4625	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

227636	5	警告	Wireshark	-	Wireshark の Bluetooth ACL 解析子におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-4683	2012-12-20 18:52	2007-04-4	Show	GitHub Exploit DB Packet Storm

227637	7.5	危険	phpfastnews	-	phpFastNews の fastnews-code.php における認証を迂回される脆弱性	CWE-287 不適切な認証	CVE-2008-4622	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

227638	7.5	危険	ZeeScripts.com	-	ZeeScripts Zeeproperty の bannerclick.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4621	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

227639	10	危険	サン・マイクロシステムズ	-	Sun Solaris の RPC サブシステムにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-4619	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

227640	7.5	危険	pyxicom	-	Joomla! 用の actualite モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4617	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209691	7.5	HIGH Network	dlink	dsl-2730u_firmware dir-600m_firmware	D-Link DSL 2730-U IN_1.10 and IN_1.11 and DIR-600M 3.04 devices have the domain.name string in the DNS resolver search path by default, which allows remote attackers to provide valid DNS responses (a…	NVD-CWE-noinfo	CVE-2020-13960	2024-11-21 14:02	2020-06-9	Show	GitHub Exploit DB Packet Storm

209692	7.8	HIGH Local	citrix	workspace_app	Citrix Workspace App before 1912 on Windows has Insecure Permissions which allows local users to gain privileges during the uninstallation of the application.	CWE-276 Incorrect Default Permissions	CVE-2020-13885	2024-11-21 14:02	2020-06-9	Show	GitHub Exploit DB Packet Storm

209693	7.8	HIGH Local	citrix	workspace_app	Citrix Workspace App before 1912 on Windows has Insecure Permissions and an Unquoted Path vulnerability which allows local users to gain privileges during the uninstallation of the application.	CWE-276 Incorrect Default Permissions	CVE-2020-13884	2024-11-21 14:02	2020-06-9	Show	GitHub Exploit DB Packet Storm

209694	7.8	HIGH Local	qbik	wingate	WinGate v9.4.1.5998 has insecure permissions for the installation directory, which allows local users to gain privileges by replacing an executable file with a Trojan horse.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-13866	2024-11-21 14:02	2020-06-9	Show	GitHub Exploit DB Packet Storm

209695	7.3	HIGH Local	solarwinds	advanced_monitoring_agent	SolarWinds Advanced Monitoring Agent before 10.8.9 allows local users to gain privileges via a Trojan horse .exe file, because everyone can write to a certain .exe file.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-13912	2024-11-21 14:02	2020-06-8	Show	GitHub Exploit DB Packet Storm

209696	9.1	CRITICAL Network	pengutronix	barebox	Pengutronix Barebox through v2020.05.0 has an out-of-bounds read in nfs_read_reply in net/nfs.c because a field of an incoming network packet is directly used as a length field without any bounds che…	CWE-125 Out-of-bounds Read	CVE-2020-13910	2024-11-21 14:02	2020-06-8	Show	GitHub Exploit DB Packet Storm

209697	9.8	CRITICAL Network	facade	ignition	The Ignition component before 2.0.5 for Laravel mishandles globals, _get, _post, _cookie, and _env. NOTE: in the 1.x series, versions 1.16.15 and later are unaffected as a consequence of the CVE-2021…	NVD-CWE-noinfo	CVE-2020-13909	2024-11-21 14:02	2020-06-8	Show	GitHub Exploit DB Packet Storm

209698	5.5	MEDIUM Local	ffmpeg canonical debian	ffmpeg ubuntu_linux debian_linux	FFmpeg 2.8 and 4.2.3 has a use-after-free via a crafted EXTINF duration in an m3u8 file because parse_playlist in libavformat/hls.c frees a pointer, and later that pointer is accessed in av_probe_inp…	CWE-416 Use After Free	CVE-2020-13904	2024-11-21 14:02	2020-06-8	Show	GitHub Exploit DB Packet Storm

209699	7.1	HIGH Local	imagemagick	imagemagick	ImageMagick 7.0.9-27 through 7.0.10-17 has a heap-based buffer over-read in BlobToStringInfo in MagickCore/string.c during TIFF image decoding.	CWE-125 Out-of-bounds Read	CVE-2020-13902	2024-11-21 14:02	2020-06-8	Show	GitHub Exploit DB Packet Storm

209700	6.1	MEDIUM Network	hesk	hesk	HESK before 3.1.10 allows reflected XSS.	CWE-79 Cross-site Scripting	CVE-2020-13897	2024-11-21 14:02	2020-06-7	Show	GitHub Exploit DB Packet Storm