Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227651	7.5	危険	scripts-for-sites	-	SFS Gaming Directory の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6781	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

227652	7.5	危険	scripts-for-sites	-	SFS SFS EZ Affiliate の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6780	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

227653	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Sarkilar モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6779	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

227654	7.5	危険	scripts-for-sites	-	SFS EZ Auction の viewfaqs.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6778	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

227655	7.5	危険	scripts-for-sites	-	SFS EZ Hot or Not の viewcomments.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6776	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

227656	6.8	警告	shopsystem-forum	-	K&S Shopsoftware の admin/editor/images.php における任意の PHP コードを実行される脆弱性	CWE-Other その他	CVE-2008-6768	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

227657	10	危険	WordPress.org	-	WordPress の wp-admin/upgrade.php におけるアプリケーションをアップグレードされる脆弱性	CWE-noinfo 情報不足	CVE-2008-6767	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

227658	5	警告	viart	-	ViArt Shop の cart_save.php におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-6766	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

227659	5	警告	viart	-	ViArt Shop における任意のショッピングカートの中身にアクセスされる脆弱性	CWE-noinfo 情報不足	CVE-2008-6765	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

227660	4.3	警告	WordPress.org	-	WordPress の wp-admin/upgrade.php におけるオープンリダイレクトの脆弱性	CWE-59 リンク解釈の問題	CVE-2008-6762	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214871	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists when Microsoft Cryptographic Services improperly handles files, aka 'Microsoft Cryptographic Services Elevation of Privilege Vulnerability'.	NVD-CWE-noinfo	CVE-2020-0620	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

214872	6.0	MEDIUM Local	microsoft	windows_10 windows_server_2016 windows_server_2019	A denial of service vulnerability exists when Microsoft Hyper-V Virtual PCI on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Hyper-V Denial o…	CWE-20 Improper Input Validation	CVE-2020-0617	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

214873	5.5	MEDIUM Local	microsoft	windows_server_2019 windows_10 windows_server_2016	A denial of service vulnerability exists when Windows improperly handles hard links, aka 'Microsoft Windows Denial of Service Vulnerability'.	CWE-59 Link Following	CVE-2020-0616	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

214874	5.5	MEDIUM Local	microsoft	windows_rt_8.1 windows_server_2008 windows_server_2012 windows_10 windows_server_2016 windows_8.1 windows_7 windows_server_2019	An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Infor…	CWE-125 Out-of-bounds Read	CVE-2020-0615	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

214875	7.8	HIGH Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is …	NVD-CWE-noinfo	CVE-2020-0614	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

214876	7.8	HIGH Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is …	NVD-CWE-noinfo	CVE-2020-0613	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

214877	7.5	HIGH Network	microsoft	windows_server_2016 windows_server_2019	A denial of service vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Rem…	NVD-CWE-noinfo	CVE-2020-0612	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

214878	7.5	HIGH Network	microsoft	windows_rt_8.1 windows_server_2008 windows_server_2012 windows_10 windows_server_2016 windows_8.1 windows_7 windows_server_2019	A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'.	NVD-CWE-noinfo	CVE-2020-0611	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

214879	9.8	CRITICAL Network	microsoft	windows_server_2012 windows_server_2016 windows_server_2019	A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted reques…	NVD-CWE-noinfo	CVE-2020-0610	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

214880	9.8	CRITICAL Network	microsoft	windows_server_2012 windows_server_2016 windows_server_2019	A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted reques…	NVD-CWE-noinfo	CVE-2020-0609	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed