Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228011 5 警告 xyssl - XySSL におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-7129 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
228012 7.5 危険 xyssl - XySSL の ssl_parse_client_key_exchange 関数における鍵を回復される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7128 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
228013 7.5 危険 zkup - zKup CMS における管理者権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-7124 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
228014 6.8 警告 zkup - zKup CMS の admin/configuration/modifier.php における任意の PHP コード挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-7123 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
228015 7.5 危険 WeBid Support - WeBid auction script の item.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7119 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228016 5 警告 WeBid Support - WeBid auction script における SQL クエリログを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7118 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228017 5 警告 WeBid Support - WeBid auction script の eledicss.php における任意のカスケードスタイルシートファイル (CSS) を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7117 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228018 7.5 危険 WeBid Support - WeBid auction script の admin panel における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7116 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228019 4.3 警告 phpcart - Carmosa phpCart におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7108 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228020 5 警告 ソフォス - Microsoft Exchange 用の Sophos PureMessage におけるスキャン保護のリモート回避をされる脆弱性 CWE-Other
その他 		CVE-2008-7106 2012-12-20 19:10 2009-08-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208911 6.5 MEDIUM
Network 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks (a variant of cross-site request f… CWE-352
 Origin Validation Error 		CVE-2020-1103 2024-11-21 14:09 2020-05-22 Show GitHub Exploit DB Packet Storm
208912 8.8 HIGH
Network 		microsoft sharepoint_enterprise_server
sharepoint_server 		A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vuln… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-1102 2024-11-21 14:09 2020-05-22 Show GitHub Exploit DB Packet Storm
208913 7.5 HIGH
Network 		microsoft edge A remote code execution vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory, aka 'Microsoft Edge PDF Remote Code Execution Vulnerability'. NVD-CWE-noinfo
CVE-2020-1096 2024-11-21 14:09 2020-05-22 Show GitHub Exploit DB Packet Storm
208914 7.5 HIGH
Network 		microsoft internet_explorer A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-103… CWE-787
 Out-of-bounds Write 		CVE-2020-1093 2024-11-21 14:09 2020-05-22 Show GitHub Exploit DB Packet Storm
208915 7.5 HIGH
Network 		microsoft internet_explorer A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020… CWE-787
 Out-of-bounds Write 		CVE-2020-1092 2024-11-21 14:09 2020-05-22 Show GitHub Exploit DB Packet Storm
208916 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CV… NVD-CWE-noinfo
CVE-2020-1090 2024-11-21 14:09 2020-05-22 Show GitHub Exploit DB Packet Storm
208917 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'. This CVE ID is… NVD-CWE-noinfo
CVE-2020-1088 2024-11-21 14:09 2020-05-22 Show GitHub Exploit DB Packet Storm
208918 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-… NVD-CWE-noinfo
CVE-2020-1087 2024-11-21 14:09 2020-05-22 Show GitHub Exploit DB Packet Storm
208919 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CV… NVD-CWE-noinfo
CVE-2020-1086 2024-11-21 14:09 2020-05-22 Show GitHub Exploit DB Packet Storm
208920 5.5 MEDIUM
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		A Denial Of Service vulnerability exists when Connected User Experiences and Telemetry Service fails to validate certain function values.An attacker who successfully exploited this vulnerability coul… CWE-20
 Improper Input Validation  		CVE-2020-1084 2024-11-21 14:09 2020-05-22 Show GitHub Exploit DB Packet Storm