Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227641 7.5 危険 pyxicom - Joomla! 用の actualite モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4617 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227642 5 警告 the spanner
WordPress.org		 - WordPress の SpamBam プラグインにおける制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4616 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227643 10 危険 portalapp - PortalApp の i_utils.asp における脆弱性 CWE-noinfo
情報不足 		CVE-2008-4615 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227644 7.5 危険 portalapp - PortalApp におけるトピックなどを作成および削除される脆弱性 CWE-287
不適切な認証 		CVE-2008-4614 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227645 7.5 危険 portalapp - PortalApp の forums.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4613 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227646 4.3 警告 portalapp - PortalApp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4612 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227647 6.5 警告 qualityunit - Post Affiliate Pro の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4602 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
227648 7.5 危険 steve dawson - PokerMax Poker League Tournament Script の configure.php における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4600 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
227649 10 危険 slaytanic scripts - Slaytanic Scripts Content Plus における脆弱性 CWE-noinfo
情報不足 		CVE-2008-4595 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
227650 10 危険 sportspanel - Sports Clubs Web Panel の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4592 2012-12-20 18:52 2008-10-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209581 7.8 HIGH
Local 		linux
redhat
debian 		linux_kernel
enterprise_linux
debian_linux 		A flaw was found in the Linux kernel. A use-after-free memory flaw was found in the perf subsystem allowing a local attacker with permission to monitor perf events to corrupt memory and possibly esca… - CVE-2020-14351 2024-11-21 14:03 2020-12-4 Show GitHub Exploit DB Packet Storm
209582 8.8 HIGH
Local 		redhat enterprise_linux
libvirt 		A flaw was found in libvirt, where it leaked a file descriptor for `/dev/mapper/control` into the QEMU process. This file descriptor allows for privileged operations to happen against the device-mapp… - CVE-2020-14339 2024-11-21 14:03 2020-12-4 Show GitHub Exploit DB Packet Storm
209583 6.3 MEDIUM
Network 		redhat cloudforms This release fixes a Cross Site Request Forgery vulnerability was found in Red Hat CloudForms which forces end users to execute unwanted actions on a web application in which the user is currently au… CWE-352
 Origin Validation Error 		CVE-2020-14369 2024-11-21 14:03 2020-12-3 Show GitHub Exploit DB Packet Storm
209584 6.5 MEDIUM
Network 		samba
redhat 		samba
enterprise_linux 		A flaw was found in samba's DNS server. An authenticated user could use this flaw to the RPC server to crash. This RPC server, which also serves protocols other than dnsserver, will be restarted afte… NVD-CWE-Other
CVE-2020-14383 2024-11-21 14:03 2020-12-2 Show GitHub Exploit DB Packet Storm
209585 8.1 HIGH
Network 		redhat keycloak It was found that Keycloak before version 12.0.0 would permit a user with only view-profile role to manage the resources in the new account console, allowing access and modification of data the user … CWE-916
 Use of Password Hash With Insufficient Computational Effort 		CVE-2020-14389 2024-11-21 14:03 2020-11-17 Show GitHub Exploit DB Packet Storm
209586 7.5 HIGH
Network 		redhat keycloak A vulnerability was found in keycloak, where path traversal using URL-encoded path segments in the request is possible because the resources endpoint applies a transformation of the url path to the f… CWE-22
Path Traversal 		CVE-2020-14366 2024-11-21 14:03 2020-11-10 Show GitHub Exploit DB Packet Storm
209587 7.8 HIGH
Local 		foxitsoftware foxit_reader Foxit Reader before 10.0 allows Remote Command Execution via the app.opencPDFWebPage JavsScript API. An attacker can execute local files and bypass the security dialog. NVD-CWE-noinfo
CVE-2020-14425 2024-11-21 14:03 2020-11-3 Show GitHub Exploit DB Packet Storm
209588 5.5 MEDIUM
Local 		samba
opensuse
fedoraproject
debian 		samba
leap
fedora
debian_linux 		A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing… CWE-476
 NULL Pointer Dereference 		CVE-2020-14323 2024-11-21 14:03 2020-10-30 Show GitHub Exploit DB Packet Storm
209589 3.1 LOW
Network 		oracle retail_customer_management_and_segmentation_foundation Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications (component: Segment). Supported versions that are affected are 18.0 and 19.0. … NVD-CWE-noinfo
CVE-2020-14731 2024-11-21 14:03 2020-10-22 Show GitHub Exploit DB Packet Storm
209590 4.9 MEDIUM
Network 		oracle
netapp
fedoraproject 		mysql
oncommand_workflow_automation
snapcenter_server
oncommand_insight
active_iq_unified_manager
fedora 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easi… NVD-CWE-noinfo
CVE-2020-14672 2024-11-21 14:03 2020-10-22 Show GitHub Exploit DB Packet Storm