Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228071 7.5 危険 turnkeyforms - TurnkeyForms Web Hosting Directory における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6939 2012-12-20 19:10 2009-08-12 Show GitHub Exploit DB Packet Storm
228072 7.5 危険 sansuart - Sanus|artificium Free simple guestbook PHP における messages.txt へ任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6934 2012-12-20 19:10 2009-08-11 Show GitHub Exploit DB Packet Storm
228073 6.5 警告 phpstore - PHPStore Job Search における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6931 2012-12-20 19:10 2009-08-11 Show GitHub Exploit DB Packet Storm
228074 6.5 警告 phpstore - PHPStore Real Estate における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6930 2012-12-20 19:10 2009-08-11 Show GitHub Exploit DB Packet Storm
228075 6.5 警告 phpstore - PHPStore Auto Classifieds における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6929 2012-12-20 19:10 2009-08-11 Show GitHub Exploit DB Packet Storm
228076 6.5 警告 phpstore - PHPStore Complete Classifieds における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6928 2012-12-20 19:10 2009-08-11 Show GitHub Exploit DB Packet Storm
228077 4.3 警告 Zenphoto - Zenphoto の function.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6925 2012-12-20 19:10 2009-08-10 Show GitHub Exploit DB Packet Storm
228078 9.3 危険 Youngzsoft - CMailServer の CMailCOM.dll におけるスタックベースのバッファーオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-6922 2012-12-20 19:10 2009-08-10 Show GitHub Exploit DB Packet Storm
228079 7.5 危険 w2b - phpAdBoard の index.php における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6921 2012-12-20 19:10 2009-08-10 Show GitHub Exploit DB Packet Storm
228080 7.5 危険 w2b - phpEmployment の auth.php における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6920 2012-12-20 19:10 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208981 5.4 MEDIUM
Network 		webport web_port Cross Site Scripting (XSS) vulnerabililty in WebPort <=1.19.1 via the description parameter to script/listcalls. CWE-79
Cross-site Scripting 		CVE-2020-18668 2024-11-21 14:08 2021-06-25 Show GitHub Exploit DB Packet Storm
208982 9.8 CRITICAL
Network 		webport webport SQL Injection vulnerability in WebPort <=1.19.1 via the new connection, parameter name in type-conn. CWE-89
SQL Injection 		CVE-2020-18667 2024-11-21 14:08 2021-06-25 Show GitHub Exploit DB Packet Storm
208983 5.3 MEDIUM
Network 		webport web_port Directory Traversal vulnerability in WebPort <=1.19.1 in tags of system settings. CWE-22
Path Traversal 		CVE-2020-18665 2024-11-21 14:08 2021-06-25 Show GitHub Exploit DB Packet Storm
208984 5.4 MEDIUM
Network 		webport web_port Cross Site Scripting (XSS) vulnerability in WebPort <=1.19.1via the connection name parameter in type-conn. CWE-79
Cross-site Scripting 		CVE-2020-18664 2024-11-21 14:08 2021-06-25 Show GitHub Exploit DB Packet Storm
208985 6.1 MEDIUM
Network 		sir gnuboard Cross Site Scripting (XSS) vulnerability in gnuboard5 <=v5.3.2.8 via the act parameter in bbs/move_update.php. CWE-79
Cross-site Scripting 		CVE-2020-18663 2024-11-21 14:08 2021-06-25 Show GitHub Exploit DB Packet Storm
208986 9.8 CRITICAL
Network 		sir gnuboard SQL Injection vulnerability in gnuboard5 <=v5.3.2.8 via the table_prefix parameter in install_db.php. CWE-89
SQL Injection 		CVE-2020-18662 2024-11-21 14:08 2021-06-25 Show GitHub Exploit DB Packet Storm
208987 6.1 MEDIUM
Network 		sir gnuboard Cross Site Scripting (XSS) vulnerability in gnuboard5 <=v5.3.2.8 via the url parameter to bbs/login.php. CWE-79
Cross-site Scripting 		CVE-2020-18661 2024-11-21 14:08 2021-06-25 Show GitHub Exploit DB Packet Storm
208988 6.1 MEDIUM
Network 		get-simple getsimplecms GetSimpleCMS <=3.3.15 has an open redirect in admin/changedata.php via the redirect function to the url parameter. CWE-601
Open Redirect 		CVE-2020-18660 2024-11-21 14:08 2021-06-24 Show GitHub Exploit DB Packet Storm
208989 6.1 MEDIUM
Network 		get-simple getsimplecms Cross Site Scripting vulnerability in GetSimpleCMS <=3.3.15 via the (1) sitename, (2) username, and (3) email parameters to /admin/setup.php CWE-79
Cross-site Scripting 		CVE-2020-18659 2024-11-21 14:08 2021-06-24 Show GitHub Exploit DB Packet Storm
208990 6.1 MEDIUM
Network 		get-simple getsimplecms Cross Site Scriptiong (XSS) vulnerability in GetSimpleCMS <=3.3.15 via the timezone parameter to settings.php. CWE-79
Cross-site Scripting 		CVE-2020-18658 2024-11-21 14:08 2021-06-24 Show GitHub Exploit DB Packet Storm