Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227691	10	危険	The phpMyAdmin Project	-	phpMyAdmin の libraries/File.class.php における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7251	2012-12-20 19:10	2010-01-19	Show	GitHub Exploit DB Packet Storm

227692	9	危険	シマンテック	-	Symantec Brightmail Gateway Appliance の Control Center における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2009-0064	2012-12-20 19:10	2009-04-23	Show	GitHub Exploit DB Packet Storm

227693	4.3	警告	シマンテック	-	Symantec Brightmail Gateway Appliance の Control Center におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0063	2012-12-20 19:10	2009-04-23	Show	GitHub Exploit DB Packet Storm

227694	5	警告	zxid	-	ZXID における証明書チェーンの検証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-0051	2012-12-20 19:10	2009-01-7	Show	GitHub Exploit DB Packet Storm

227695	6.8	警告	PunBB	-	PunBB におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-7241	2012-12-20 19:10	2009-09-17	Show	GitHub Exploit DB Packet Storm

227696	10	危険	ourproject.org	-	White_Dune White_Dune におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2008-7228	2012-12-20 19:10	2009-09-14	Show	GitHub Exploit DB Packet Storm

227697	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Recipes モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-7226	2012-12-20 19:10	2009-09-14	Show	GitHub Exploit DB Packet Storm

227698	4.3	警告	runcms	-	RunCMS の system/admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-7222	2012-12-20 19:10	2009-09-14	Show	GitHub Exploit DB Packet Storm

227699	6.8	警告	runcms	-	RunCMS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-7221	2012-12-20 19:10	2009-09-14	Show	GitHub Exploit DB Packet Storm

227700	7.5	危険	prototypejs	-	Prototype JavaScript フレームワークにおける "クロスサイト ajax リクエスト" を実行される脆弱性	CWE-Other その他	CVE-2008-7220	2012-12-20 19:10	2009-09-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209171	5.5	MEDIUM Local	gnu netapp	binutils ontap_select_deploy_administration_utility	A double free vulnerability exists in the Binary File Descriptor (BFD) (aka libbrd) in GNU Binutils 2.35 in the process_symbol_table, as demonstrated in readelf, via a crafted file.	CWE-415 Double Free	CVE-2020-16590	2024-11-21 14:07	2020-12-10	Show	GitHub Exploit DB Packet Storm

209172	5.5	MEDIUM Local	openexr debian	openexr debian_linux	A head-based buffer overflow exists in Academy Software Foundation OpenEXR 2.3.0 in writeTileData in ImfTiledOutputFile.cpp that can cause a denial of service via a crafted EXR file.	CWE-787 Out-of-bounds Write	CVE-2020-16589	2024-11-21 14:07	2020-12-10	Show	GitHub Exploit DB Packet Storm

209173	5.5	MEDIUM Local	openexr debian	openexr debian_linux	A Null Pointer Deference issue exists in Academy Software Foundation OpenEXR 2.3.0 in generatePreview in makePreview.cpp that can cause a denial of service via a crafted EXR file.	CWE-476 NULL Pointer Dereference	CVE-2020-16588	2024-11-21 14:07	2020-12-10	Show	GitHub Exploit DB Packet Storm

209174	5.5	MEDIUM Local	openexr debian	openexr debian_linux	A heap-based buffer overflow vulnerability exists in Academy Software Foundation OpenEXR 2.3.0 in chunkOffsetReconstruction in ImfMultiPartInputFile.cpp that can cause a denial of service via a craft…	CWE-787 Out-of-bounds Write	CVE-2020-16587	2024-11-21 14:07	2020-12-10	Show	GitHub Exploit DB Packet Storm

209175	7.5	HIGH Network	mitsubishielectric	r00cpu_firmware r01cpu_firmware r02cpu_firmware r04cpu_firmware r08cpu_firmware r16cpu_firmware r32cpu_firmware r120cpu_firmware r08sfcpu_firmware r16sfcpu_firmware r32s…	Mitsubishi MELSEC iQ-R Series PLCs with firmware 49 allow an unauthenticated attacker to halt the industrial process by sending a crafted packet over the network. This denial of service attack expose…	CWE-20 CWE-400 Improper Input Validation Uncontrolled Resource Consumption	CVE-2020-16850	2024-11-21 14:07	2020-12-1	Show	GitHub Exploit DB Packet Storm

209176	7.5	HIGH Network	canon	mf237w_firmware mf113w_firmware mf212w_firmware mf216n_firmware mf217w_firmware mf226dn_firmware mf229dw_firmware mf231_firmware mf232w_firmware mf244dw_firmware mf247dw…	An issue was discovered on Canon MF237w 06.07 devices. An "Improper Handling of Length Parameter Inconsistency" issue in the IPv4/ICMPv4 component, when handling a packet sent by an unauthenticated n…	NVD-CWE-Other	CVE-2020-16849	2024-11-21 14:07	2020-12-1	Show	GitHub Exploit DB Packet Storm

209177	7.8	HIGH Local	arm	armv8-m_firmware	In Arm software implementing the Armv8-M processors (all versions), the stack selection mechanism could be influenced by a stack-underflow attack in v8-M TrustZone based processors. An attacker can c…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2020-16273	2024-11-21 14:07	2020-11-13	Show	GitHub Exploit DB Packet Storm

209178	5.5	MEDIUM Local	microsoft	windows_10	Windows Camera Codec Information Disclosure Vulnerability	CWE-125 Out-of-bounds Read	CVE-2020-17113	2024-11-21 14:07	2020-11-11	Show	GitHub Exploit DB Packet Storm

209179	7.8	HIGH Local	microsoft	hevc_video_extensions	HEVC Video Extensions Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2020-17110	2024-11-21 14:07	2020-11-11	Show	GitHub Exploit DB Packet Storm

209180	7.8	HIGH Local	microsoft	hevc_video_extensions	HEVC Video Extensions Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2020-17109	2024-11-21 14:07	2020-11-11	Show	GitHub Exploit DB Packet Storm