Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228241	9	危険	phpwebgallery	-	PhpWebGallery の plugins/event_tracer/event_list.php における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-4645	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

228242	10	危険	Matthias Wandel	-	Matthias Wandel jhead の jhead.c における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4641	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

228243	3.6	注意	Matthias Wandel	-	Matthias Wandel jhead の jhead.c における任意のファイルを削除される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4640	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

228244	4.6	警告	Matthias Wandel	-	Matthias Wandel jhead の jhead.c における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4639	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

228245	7.5	危険	rgallery	-	WBB 用の rGallery プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4627	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

228246	6.8	警告	zirkon box	-	Fritz Berger yappa-ng の yappa-ng におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4626	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

228247	7.5	危険	shiftthis	-	WordPress 用の ShiftThis Newsletter プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4625	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

228248	5	警告	Wireshark	-	Wireshark の Bluetooth ACL 解析子におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-4683	2012-12-20 18:52	2007-04-4	Show	GitHub Exploit DB Packet Storm

228249	7.5	危険	phpfastnews	-	phpFastNews の fastnews-code.php における認証を迂回される脆弱性	CWE-287 不適切な認証	CVE-2008-4622	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

228250	7.5	危険	ZeeScripts.com	-	ZeeScripts Zeeproperty の bannerclick.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4621	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201591	5.3	MEDIUM Network	atlassian	data_center jira jira_server jira_data_center	The membersOf JQL search function in Jira Server and Data Center before version 8.5.13, from version 8.6.0 before version 8.13.5, and from version 8.14.0 before version 8.15.1 allows remote anonymous…	NVD-CWE-noinfo	CVE-2020-36286	2024-11-21 14:29	2021-04-1	Show	GitHub Exploit DB Packet Storm

201592	5.3	MEDIUM Network	atlassian	data_center jira jira_server jira_data_center	The /rest/api/1.0/render resource in Jira Server and Data Center before version 8.5.13, from version 8.6.0 before version 8.13.5, and from version 8.14.0 before version 8.15.1 allows remote anonymous…	CWE-862 Missing Authorization	CVE-2020-36238	2024-11-21 14:29	2021-04-1	Show	GitHub Exploit DB Packet Storm

201593	8.8	HIGH Network	hidglobal	omnikey_5427_firmware omnikey_5127_firmware	HID OMNIKEY 5427 and OMNIKEY 5127 readers are vulnerable to CSRF when using the EEM driver (Ethernet Emulation Mode). By persuading an authenticated user to visit a malicious Web site, a remote attac…	CWE-352 Origin Validation Error	CVE-2020-36283	2024-11-21 14:29	2021-03-25	Show	GitHub Exploit DB Packet Storm

201594	9.8	CRITICAL Network	rabbitmq	jms_client	JMS Client for RabbitMQ 1.x before 1.15.2 and 2.x before 2.2.0 is vulnerable to unsafe deserialization that can result in code execution via crafted StreamMessage data.	CWE-502 Deserialization of Untrusted Data	CVE-2020-36282	2024-11-21 14:29	2021-03-12	Show	GitHub Exploit DB Packet Storm

201595	7.5	HIGH Network	leptonica debian fedoraproject	leptonica debian_linux fedora	Leptonica before 1.80.0 allows a heap-based buffer over-read in pixFewColorsOctcubeQuantMixed in colorquant1.c.	CWE-125 Out-of-bounds Read	CVE-2020-36281	2024-11-21 14:29	2021-03-12	Show	GitHub Exploit DB Packet Storm

201596	7.5	HIGH Network	leptonica fedoraproject	leptonica fedora	Leptonica before 1.80.0 allows a heap-based buffer over-read in pixReadFromTiffStream, related to tiffio.c.	CWE-125 Out-of-bounds Read	CVE-2020-36280	2024-11-21 14:29	2021-03-12	Show	GitHub Exploit DB Packet Storm

201597	7.5	HIGH Network	leptonica fedoraproject debian	leptonica fedora debian_linux	Leptonica before 1.80.0 allows a heap-based buffer over-read in rasteropGeneralLow, related to adaptmap_reg.c and adaptmap.c.	CWE-125 Out-of-bounds Read	CVE-2020-36279	2024-11-21 14:29	2021-03-12	Show	GitHub Exploit DB Packet Storm

201598	7.5	HIGH Network	leptonica fedoraproject debian	leptonica fedora debian_linux	Leptonica before 1.80.0 allows a heap-based buffer over-read in findNextBorderPixel in ccbord.c.	CWE-125 Out-of-bounds Read	CVE-2020-36278	2024-11-21 14:29	2021-03-12	Show	GitHub Exploit DB Packet Storm

201599	7.5	HIGH Network	leptonica fedoraproject debian	leptonica fedora debian_linux	Leptonica before 1.80.0 allows a denial of service (application crash) via an incorrect left shift in pixConvert2To8 in pixconv.c.	CWE-670 Always-Incorrect Control Flow Implementation	CVE-2020-36277	2024-11-21 14:29	2021-03-12	Show	GitHub Exploit DB Packet Storm

201600	7.5	HIGH Network	identitymodel_project	identitymodel	An issue was discovered in IdentityModel (aka ScottBrady.IdentityModel) before 1.3.0. The Branca implementation allows an attacker to modify and forge authentication tokens.	NVD-CWE-noinfo	CVE-2020-36255	2024-11-21 14:29	2021-03-5	Show	GitHub Exploit DB Packet Storm