Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227821	7.5	危険	tuned studios	-	Tuned Studios Subwoofer などの Web ページテンプレートにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0231	2012-12-20 18:34	2008-01-10	Show	GitHub Exploit DB Packet Storm

227822	6.4	警告	Xine	-	xine-lib の input/libreal/rmff.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0225	2012-12-20 18:34	2008-01-10	Show	GitHub Exploit DB Packet Storm

227823	7.5	危険	runcms	-	RunCMS の Newbb_plus モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0224	2012-12-20 18:34	2008-01-10	Show	GitHub Exploit DB Packet Storm

227824	7.5	危険	WordPress.org	-	WordPress 用の Wp-FileManager プラグインにおける任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-0222	2012-12-20 18:34	2008-01-10	Show	GitHub Exploit DB Packet Storm

227825	6.4	警告	uebimiau	-	Uebimiau Webmail における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-0210	2012-12-20 18:34	2008-01-9	Show	GitHub Exploit DB Packet Storm

227826	5.8	警告	snitz forums 2000	-	Snitz Forums 2000 の Forums/login.asp におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2008-0209	2012-12-20 18:34	2008-01-9	Show	GitHub Exploit DB Packet Storm

227827	4.3	警告	snitz forums 2000	-	Snitz Forums 2000 の login.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0208	2012-12-20 18:34	2008-01-9	Show	GitHub Exploit DB Packet Storm

227828	4.3	警告	pro search	-	PRO-Search におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0207	2012-12-20 18:34	2008-01-9	Show	GitHub Exploit DB Packet Storm

227829	4.3	警告	WordPress.org	-	WordPress 用の Captcha! プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0206	2012-12-20 18:34	2008-01-9	Show	GitHub Exploit DB Packet Storm

227830	4.3	警告	WordPress.org	-	WordPress 用の Math Comment Spam Protection プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0205	2012-12-20 18:34	2008-01-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209991	7.5	HIGH Network	broadcom	ca_api_developer_portal	CA API Developer Portal 4.3.1 and earlier handles requests insecurely, which allows remote attackers to exploit a Cross-Origin Resource Sharing flaw and access sensitive information.	NVD-CWE-noinfo	CVE-2020-11662	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

209992	8.1	HIGH Network	broadcom	ca_api_developer_portal	CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows privileged users to view and edit user data.	NVD-CWE-noinfo	CVE-2020-11661	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

209993	9.8	CRITICAL Network	z-cron	z-cron	Z-Cron 5.6 Build 04 allows an unprivileged attacker to elevate privileges by modifying a privileged user's task. This can also affect all users who are signed in on the system if a shell is placed in…	CWE-269 Improper Privilege Management	CVE-2020-11799	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

209994	7.5	HIGH Network	netgear	r8900_firmware r9000_firmware rax120_firmware xr700_firmware	NETGEAR R8900, R9000, RAX120, and XR700 devices before 2020-01-20 are affected by Transport Layer Security (TLS) certificate private key disclosure.	CWE-295 Improper Certificate Validation	CVE-2020-11792	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

209995	6.1	MEDIUM Network	netgear	jgs516pe_firmware	NETGEAR JGS516PE devices before 2.6.0.43 are affected by reflected XSS.	CWE-79 Cross-site Scripting	CVE-2020-11791	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

209996	9.8	CRITICAL Network	netgear	r7800_firmware	NETGEAR R7800 devices before 1.0.2.68 are affected by remote code execution by unauthenticated attackers.	NVD-CWE-noinfo	CVE-2020-11790	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

209997	9.8	CRITICAL Network	netgear	r6400_firmware r6700_firmware r6900_firmware r7900_firmware	Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects R6400v2 before 1.0.4.84, R6700 before 1.0.2.8, R6700v3 before 1.0.4.84, R6900 before 1.0.2.8, an…	CWE-77 Command Injection	CVE-2020-11789	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

209998	8.8	HIGH Adjacent	netgear	d6200_firmware d7000_firmware pr2000_firmware r6050_firmware jr6150_firmware r6120_firmware r6220_firmware r6230_firmware r6260_firmware r6700_firmware r6800_firmware	Certain NETGEAR devices are affected by authentication bypass. This affects D6200 before 1.1.00.34, D7000 before 1.0.1.68, PR2000 before 1.0.0.28, R6050 before 1.0.1.18, JR6150 before 1.0.1.18, R6120…	NVD-CWE-noinfo	CVE-2020-11788	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

209999	4.8	MEDIUM Network	netgear	d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware rbr20_firmware rbs20_firmware rbk20_firmware …	Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0…	CWE-79 Cross-site Scripting	CVE-2020-11787	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

210000	4.8	MEDIUM Network	netgear	d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware rbr50_firmware rbs50_firmware rbk50_firmware	Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0…	CWE-79 Cross-site Scripting	CVE-2020-11786	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm