Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227931 9.3 危険 webgui - WebGUI の lib/WebGUI/Asset.pm における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4798 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
227932 10 危険 tguzip - TUGzip におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4779 2012-12-20 18:52 2008-10-29 Show GitHub Exploit DB Packet Storm
227933 4.3 警告 Wojtek Kaniewski - libgadu におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2008-4776 2012-12-20 18:52 2008-10-24 Show GitHub Exploit DB Packet Storm
227934 2.6 注意 The phpMyAdmin Project - phpMyAdmin の pmd_pdf.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4775 2012-12-20 18:52 2008-10-28 Show GitHub Exploit DB Packet Storm
227935 4.3 警告 questwork - QuestCMS の main/main.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4774 2012-12-20 18:52 2008-10-28 Show GitHub Exploit DB Packet Storm
227936 5 警告 questwork - QuestCMS の main/main.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4773 2012-12-20 18:52 2008-10-28 Show GitHub Exploit DB Packet Storm
227937 7.5 危険 questwork - QuestCMS の main/main.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4772 2012-12-20 18:52 2008-10-28 Show GitHub Exploit DB Packet Storm
227938 9.3 危険 WordPress.org - WordPress の wp-includes/theme.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4769 2012-12-20 18:52 2008-04-2 Show GitHub Exploit DB Packet Storm
227939 7.5 危険 tlm cms - TLM CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4768 2012-12-20 18:52 2008-10-28 Show GitHub Exploit DB Packet Storm
227940 9 危険 PHPNUKE - PHP-Nuke の DownloadsPlus モジュールにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4767 2012-12-20 18:52 2008-10-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209261 6.1 MEDIUM
Network 		siemens polarion_subversion_webclient A vulnerability has been identified in Polarion Subversion Webclient (All versions). The Polarion subversion web application does not filter user input in a way that prevents Cross-Site Scripting. If… CWE-79
Cross-site Scripting 		CVE-2020-15788 2024-11-21 14:06 2020-09-10 Show GitHub Exploit DB Packet Storm
209262 9.8 CRITICAL
Network 		siemens simatic_hmi_basic_panels_2nd_generation_firmware
simatic_hmi_comfort_panels_firmware
simatic_hmi_mobile_panels_firmware
simatic_hmi_united_comfort_panels_firmware 		A vulnerability has been identified in SIMATIC HMI Basic Panels 2nd Generation (incl. SIPLUS variants) (All versions < V16), SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions <= V16), … - CVE-2020-15786 2024-11-21 14:06 2020-09-10 Show GitHub Exploit DB Packet Storm
209263 5.5 MEDIUM
Local 		canonical add-apt-repository Versions of add-apt-repository before 0.98.9.2, 0.96.24.32.14, 0.96.20.10, and 0.92.37.8ubuntu0.1~esm1, printed a PPA (personal package archive) description to the terminal as-is, which allowed PPA o… NVD-CWE-noinfo
CVE-2020-15709 2024-11-21 14:06 2020-09-5 Show GitHub Exploit DB Packet Storm
209264 6.5 MEDIUM
Network 		squid-cache
canonical
debian
fedoraproject
opensuse 		squid
ubuntu_linux
debian_linux
fedora
leap 		An issue was discovered in Squid before 4.13 and 5.x before 5.0.4. Due to incorrect data validation, HTTP Request Splitting attacks may succeed against HTTP and HTTPS traffic. This leads to cache poi… CWE-697
 Incorrect Comparison 		CVE-2020-15811 2024-11-21 14:06 2020-09-3 Show GitHub Exploit DB Packet Storm
209265 6.5 MEDIUM
Network 		squid-cache
canonical
debian
fedoraproject
opensuse 		squid
ubuntu_linux
debian_linux
fedora
leap 		An issue was discovered in Squid before 4.13 and 5.x before 5.0.4. Due to incorrect data validation, HTTP Request Smuggling attacks may succeed against HTTP and HTTPS traffic. This leads to cache poi… CWE-444
HTTP Request Smuggling 		CVE-2020-15810 2024-11-21 14:06 2020-09-3 Show GitHub Exploit DB Packet Storm
209266 5.5 MEDIUM
Local 		arm
fedoraproject
debian 		mbed_tls
fedora
debian_linux 		A Lucky 13 timing side channel in mbedtls_ssl_decrypt_buf in library/ssl_msg.c in Trusted Firmware Mbed TLS through 2.23.0 allows an attacker to recover secret key information. This affects CBC mode … CWE-203
 Information Exposure Through Discrepancy 		CVE-2020-16150 2024-11-21 14:06 2020-09-3 Show GitHub Exploit DB Packet Storm
209267 9.0 CRITICAL
Network 		redlion n-tron_702-w_firmware
n-tron_702m12-w_firmware 		The affected product is vulnerable to reflected cross-site scripting, which may allow an attacker to remotely execute arbitrary code and perform actions in the context of an attacked user on the N-Tr… - CVE-2020-16210 2024-11-21 14:06 2020-09-2 Show GitHub Exploit DB Packet Storm
209268 8.8 HIGH
Network 		redlion n-tron_702-w_firmware
n-tron_702m12-w_firmware 		The affected product is vulnerable to cross-site request forgery, which may allow an attacker to modify different configurations of a device by luring an authenticated user to click on a crafted link… - CVE-2020-16208 2024-11-21 14:06 2020-09-2 Show GitHub Exploit DB Packet Storm
209269 9.0 CRITICAL
Network 		redlion n-tron_702-w_firmware
n-tron_702m12-w_firmware 		The affected product is vulnerable to stored cross-site scripting, which may allow an attacker to remotely execute arbitrary code to gain access to sensitive data on the N-Tron 702-W / 702M12-W (all … - CVE-2020-16206 2024-11-21 14:06 2020-09-2 Show GitHub Exploit DB Packet Storm
209270 9.8 CRITICAL
Network 		redlion n-tron_702-w_firmware
n-tron_702m12-w_firmware 		The affected product is vulnerable due to an undocumented interface found on the device, which may allow an attacker to execute commands as root on the device on the N-Tron 702-W / 702M12-W (all vers… - CVE-2020-16204 2024-11-21 14:06 2020-09-2 Show GitHub Exploit DB Packet Storm