Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227771	6.8	警告	prozilla	-	Prozilla Hosting Index の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2083	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

227772	4.3	警告	siteman	-	Siteman の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2082	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

227773	9	危険	siteman	-	Siteman の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2081	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

227774	7.5	危険	robocode	-	Robocode における "Robocode ゲーム内部にアクセスされる" 脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2078	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

227775	10	危険	plain black	-	Plain Black WebGUI における脆弱性	CWE-noinfo 情報不足	CVE-2008-2077	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

227776	7.5	危険	successkid	-	Harris Yusuf Arifin Harris Wap Chat における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2074	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

227777	7.5	危険	virtual design studios	-	Virtual Design Studio vlbook の include/global.inc.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2073	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

227778	4.3	警告	virtual design studios	-	Virtual Design Studio vlbook の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2072	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

227779	4.3	警告	WordPress.org	-	WordPress におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2068	2012-12-20 18:52	2008-04-25	Show	GitHub Exploit DB Packet Storm

227780	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Jokes Site Script の jokes.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2065	2012-12-20 18:52	2008-05-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196371	9.8	CRITICAL Network	objectcomputing	micronaut	All versions of io.micronaut:micronaut-http-client before 1.2.11 and all versions from 1.3.0 before 1.3.2 are vulnerable to HTTP Request Header Injection due to not validating request headers passed …	CWE-444 HTTP Request Smuggling	CVE-2020-7611	2024-11-21 14:37	2020-03-31	Show	GitHub Exploit DB Packet Storm

196372	9.8	CRITICAL Network	mongodb	bson	All versions of bson before 1.1.4 are vulnerable to Deserialization of Untrusted Data. The package will ignore an unknown value for an object's _bsotype, leading to cases where an object is serialize…	CWE-502 Deserialization of Untrusted Data	CVE-2020-7610	2024-11-21 14:37	2020-03-31	Show	GitHub Exploit DB Packet Storm

196373	6.5	MEDIUM Adjacent	gradle	plugin_publishing	All versions of com.gradle.plugin-publish before 0.11.0 are vulnerable to Insertion of Sensitive Information into Log File. When a plugin author publishes a Gradle plugin while running Gradle with th…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2020-7599	2024-11-21 14:37	2020-03-31	Show	GitHub Exploit DB Packet Storm

196374	6.1	MEDIUM Network	schneider-electric	andover_continuum_9680_firmware andover_continuum_5740_firmware andover_continuum_5720_firmware andover_continuum_bcx4040_firmware andover_continuum_bcx9640_firmware andover_continuum_…	A CWE-79:Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists Andover Continuum (All versions), which could cause a Reflective Cross-site Scriptin…	CWE-79 Cross-site Scripting	CVE-2020-7482	2024-11-21 14:37	2020-03-24	Show	GitHub Exploit DB Packet Storm

196375	6.1	MEDIUM Network	schneider-electric	andover_continuum_9680_firmware andover_continuum_5740_firmware andover_continuum_5720_firmware andover_continuum_bcx4040_firmware andover_continuum_bcx9640_firmware andover_continuum_…	A CWE-79:Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists Andover Continuum (All versions), which could enable a successful Cross-site Scripti…	CWE-79 Cross-site Scripting	CVE-2020-7481	2024-11-21 14:37	2020-03-24	Show	GitHub Exploit DB Packet Storm

196376	9.8	CRITICAL Network	schneider-electric	andover_continuum_9680_firmware andover_continuum_5740_firmware andover_continuum_5720_firmware andover_continuum_bcx4040_firmware andover_continuum_bcx9640_firmware andover_continuum_…	A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists in Andover Continuum (All versions), which could cause files on the application server filesystem to be viewab…	CWE-94 Code Injection	CVE-2020-7480	2024-11-21 14:37	2020-03-24	Show	GitHub Exploit DB Packet Storm

196377	7.8	HIGH Local	schneider-electric	interactive_graphical_scada_system	A CWE-306: Missing Authentication for Critical Function vulnerability exists in IGSS (Versions 14 and prior using the service: IGSSupdate), which could allow a local user to execute processes that ot…	CWE-306 Missing Authentication for Critical Function	CVE-2020-7479	2024-11-21 14:37	2020-03-24	Show	GitHub Exploit DB Packet Storm

196378	7.5	HIGH Network	schneider-electric	interactive_graphical_scada_system	A CWE-22: Improper Limitation of a Pathname to a Restricted Directory exists in IGSS (Versions 14 and prior using the service: IGSSupdate), which could allow a remote unauthenticated attacker to read…	CWE-22 Path Traversal	CVE-2020-7478	2024-11-21 14:37	2020-03-24	Show	GitHub Exploit DB Packet Storm

196379	7.8	HIGH Local	schneider-electric	ulti_zigbee_installation_toolkit	A CWE-426: Untrusted Search Path vulnerability exists in ZigBee Installation Kit (Versions prior to 1.0.1), which could cause execution of malicious code when a malicious file is put in the search pa…	CWE-426 Untrusted Search Path	CVE-2020-7476	2024-11-21 14:37	2020-03-24	Show	GitHub Exploit DB Packet Storm

196380	7.5	HIGH Network	schneider-electric	140noe77101_firmware 140noe77111_firmware tsxh5744m_firmware tsxh5724m_firmware tsxp576634m_firmware tsxp57554m_firmware tsxp575634m_firmware tsxp57454m_firmware tsxp574634m_f…	A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 (Versions 7.0 and prior), Quantum processors with integrated Ethern…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2020-7477	2024-11-21 14:37	2020-03-24	Show	GitHub Exploit DB Packet Storm