Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227961	9.3	危険	quiksoft	-	QuikSoft EasyMail MailStore ActiveX コントロールの emmailstore.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-6447	2012-12-20 19:10	2009-03-9	Show	GitHub Exploit DB Packet Storm

227962	7.5	危険	yourplace	-	YourPlace における脆弱性	CWE-287 不適切な認証	CVE-2008-6445	2012-12-20 19:10	2009-03-9	Show	GitHub Exploit DB Packet Storm

227963	7.5	危険	phpkf	-	phpKF の forum_duzen.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6443	2012-12-20 19:10	2009-03-9	Show	GitHub Exploit DB Packet Storm

227964	5.8	警告	sina	-	Sina Inc. DLoader Class ActiveX コントロールにおける任意のファイルを上書きされる脆弱性	CWE-Other その他	CVE-2008-6442	2012-12-20 19:10	2009-03-9	Show	GitHub Exploit DB Packet Storm

227965	4.3	警告	phpsqlitecms	-	phpSQLiteCMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6435	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

227966	7.5	危険	psychostats	-	PsychoStats における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6422	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

227967	7.5	危険	socialsitegenerator	-	Social Site Generator の social_game_play.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6421	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

227968	5	警告	socialsitegenerator	-	Social Site Generator における任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2008-6420	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

227969	7.5	危険	socialsitegenerator	-	Social Site Generator における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6419	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

227970	7.5	危険	torrenttrader	-	TorrentTrader の scrape.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6418	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208991	7.5	HIGH Network	apache	traffic_server	ATS negative cache option is vulnerable to a cache poisoning attack. If you have this option enabled, please upgrade or disable this feature. Apache Traffic Server versions 7.0.0 to 7.1.11 and 8.0.0 …	CWE-444 HTTP Request Smuggling	CVE-2020-17509	2024-11-21 14:08	2021-01-11	Show	GitHub Exploit DB Packet Storm

208992	7.5	HIGH Network	apache	traffic_server	The ATS ESI plugin has a memory disclosure vulnerability. If you are running the plugin please upgrade. Apache Traffic Server versions 7.0.0 to 7.1.11 and 8.0.0 to 8.1.0 are affected.	NVD-CWE-noinfo	CVE-2020-17508	2024-11-21 14:08	2021-01-11	Show	GitHub Exploit DB Packet Storm

208993	7.2	HIGH Network	barco	transform_n	The NDN-210 has a web administration panel which is made available over https. There is a command injection issue that will allow authenticated users to the administration panel to perform authentica…	CWE-77 Command Injection	CVE-2020-17504	2024-11-21 14:08	2021-01-9	Show	GitHub Exploit DB Packet Storm

208994	7.2	HIGH Network	barco	transform_n	The NDN-210 has a web administration panel which is made available over https. There is a command injection issue that will allow authenticated users to the administration panel to perform authentica…	CWE-77 Command Injection	CVE-2020-17503	2024-11-21 14:08	2021-01-9	Show	GitHub Exploit DB Packet Storm

208995	7.2	HIGH Network	barco	transform_n	Barco TransForm N before 3.8 allows Command Injection (issue 2 of 4). The NDN-210 has a web administration panel which is made available over https. There is a command injection issue that will allow…	CWE-77 Command Injection	CVE-2020-17502	2024-11-21 14:08	2021-01-9	Show	GitHub Exploit DB Packet Storm

208996	9.8	CRITICAL Network	barco	transform_n	Barco TransForm NDN-210 Lite, NDN-210 Pro, NDN-211 Lite, and NDN-211 Pro before 3.8 allows Command Injection (issue 1 of 4). The NDN-210 has a web administration panel which is made available over ht…	CWE-77 Command Injection	CVE-2020-17500	2024-11-21 14:08	2021-01-8	Show	GitHub Exploit DB Packet Storm

208997	7.5	HIGH Network	apache	flink	A change introduced in Apache Flink 1.11.0 (and released in 1.11.1 and 1.11.2 as well) allows attackers to read any file on the local filesystem of the JobManager through the REST interface of the Jo…	CWE-552 Files or Directories Accessible to External Parties	CVE-2020-17519	2024-11-21 14:08	2021-01-5	Show	GitHub Exploit DB Packet Storm

208998	7.5	HIGH Network	apache	flink	Apache Flink 1.5.1 introduced a REST handler that allows you to write an uploaded file to an arbitrary location on the local file system, through a maliciously modified HTTP HEADER. The files can be …	CWE-22 Path Traversal	CVE-2020-17518	2024-11-21 14:08	2021-01-5	Show	GitHub Exploit DB Packet Storm

208999	8.1	HIGH Network	apache	accumulo	Apache Accumulo versions 1.5.0 through 1.10.0 and version 2.0.0 do not properly check the return value of some policy enforcement functions before permitting an authenticated user to perform certain …	-	CVE-2020-17533	2024-11-21 14:08	2020-12-29	Show	GitHub Exploit DB Packet Storm

209000	7.7	HIGH Network	apache	airflow	Incorrect Session Validation in Apache Airflow Webserver versions prior to 1.10.14 with default config allows a malicious airflow user on site A where they log in normally, to access unauthorized Air…	NVD-CWE-noinfo	CVE-2020-17526	2024-11-21 14:08	2020-12-22	Show	GitHub Exploit DB Packet Storm