Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227981 6.8 警告 Xine - xine-lib の xineplug_dmx_asf.so プラグイン におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1110 2012-12-20 18:34 2008-02-29 Show GitHub Exploit DB Packet Storm
227982 6.8 警告 quantum game library - Quantum Game Library における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1069 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
227983 6.8 警告 portail web php - Portail Web Php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1068 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
227984 6.8 警告 phpqladmin - phpQLAdmin における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1067 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
227985 7.5 危険 Smarty - S9Y などの製品で使用される Smarty における任意の PHP 関数を呼び出される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-1066 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
227986 4.3 警告 WordPress.org - WordPress 用の Sniplets プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1061 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
227987 7.5 危険 WordPress.org - WordPress 用の Sniplets プラグインにおける任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1060 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
227988 7.5 危険 WordPress.org - WordPress 用の Sniplets プラグインにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1059 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
227989 6.9 警告 symark - Symark PowerBroker におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1056 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
227990 7.5 危険 PHPNUKE - PHP-Nuke 用の Kose_Yazilari モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1053 2012-12-20 18:34 2008-02-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209711 3.3 LOW
Local 		apache cordova We have resolved a security issue in the camera plugin that could have affected certain Cordova (Android) applications. An attacker who could install (or lead the victim to install) a specially craft… NVD-CWE-noinfo
CVE-2020-11990 2024-11-21 13:59 2020-12-2 Show GitHub Exploit DB Packet Storm
209712 5.4 MEDIUM
Network 		intelbras tip200_firmware
tip200lite_firmware
tip300_firmware 		Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and TIP300 65.61.75.15 devices allow /cgi-bin/cgiServer.exx?page= XSS. CWE-79
Cross-site Scripting 		CVE-2020-12262 2024-11-21 13:59 2020-11-27 Show GitHub Exploit DB Packet Storm
209713 6.5 MEDIUM
Adjacent 		linux linux_kernel Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access. CWE-909
 Missing Initialization of Resource 		CVE-2020-12352 2024-11-21 13:59 2020-11-24 Show GitHub Exploit DB Packet Storm
209714 8.8 HIGH
Adjacent 		linux linux_kernel Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. CWE-20
 Improper Input Validation  		CVE-2020-12351 2024-11-21 13:59 2020-11-24 Show GitHub Exploit DB Packet Storm
209715 7.3 HIGH
Local 		beckhoff twincat_extended_automation_runtime The default installation path of the TwinCAT XAR 3.1 software in all versions is underneath C:\TwinCAT. If the directory does not exist it and further subdirectories are created with permissions whic… CWE-276
Incorrect Default Permissions  		CVE-2020-12510 2024-11-21 13:59 2020-11-20 Show GitHub Exploit DB Packet Storm
209716 6.5 MEDIUM
Network 		endress rsg35_firmware
rsg45_firmware
orsg35_firmware
orsg45_firmware 		Endress+Hauser Ecograph T (Neutral/Private Label) (RSG35, ORSG35) and Memograph M (Neutral/Private Label) (RSG45, ORSG45) with Firmware version V2.0.0 and above is prone to exposure of sensitive info… CWE-200
Information Exposure 		CVE-2020-12496 2024-11-21 13:59 2020-11-20 Show GitHub Exploit DB Packet Storm
209717 8.8 HIGH
Network 		endress rsg35_firmware
rsg45_firmware
orsg35_firmware
orsg45_firmware 		Endress+Hauser Ecograph T (Neutral/Private Label) (RSG35, ORSG35) with Firmware version prior to V2.0.0 is prone to improper privilege management. The affected device has a web-based user interface w… CWE-269
 Improper Privilege Management 		CVE-2020-12495 2024-11-21 13:59 2020-11-20 Show GitHub Exploit DB Packet Storm
209718 7.5 HIGH
Network 		symantec endpoint_detection_and_response Symantec Endpoint Detection & Response, prior to 4.5, may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data. NVD-CWE-noinfo
CVE-2020-12593 2024-11-21 13:59 2020-11-19 Show GitHub Exploit DB Packet Storm
209719 9.8 CRITICAL
Network 		intel open_webrtc_toolkit Insufficient control flow management in the Open WebRTC Toolkit before version 4.3.1 may allow an unauthenticated user to potentially enable escalation of privilege via network access. NVD-CWE-Other
CVE-2020-12338 2024-11-21 13:59 2020-11-14 Show GitHub Exploit DB Packet Storm
209720 8.8 HIGH
Adjacent 		intel proset\/wireless_wifi Insufficient control flow management in some Intel(R) PROSet/Wireless WiFi products before version 21.110 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent … NVD-CWE-noinfo
CVE-2020-12313 2024-11-21 13:59 2020-11-14 Show GitHub Exploit DB Packet Storm