Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 12:10 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228321 4.3 警告 s0nic - s0nic Paranews の news.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4349 2012-12-20 18:52 2008-09-30 Show GitHub Exploit DB Packet Storm
228322 7.5 危険 Powie - Powie pNews の newskom.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4347 2012-12-20 18:52 2008-09-30 Show GitHub Exploit DB Packet Storm
228323 7.5 危険 talkback - TalkBack におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4346 2012-12-20 18:52 2008-09-30 Show GitHub Exploit DB Packet Storm
228324 7.5 危険 webportal - WebPortal CMS の download.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4345 2012-12-20 18:52 2008-09-30 Show GitHub Exploit DB Packet Storm
228325 6 警告 vacilanda - Drupal 用の Brilliant Gallery モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4338 2012-12-20 18:52 2008-09-30 Show GitHub Exploit DB Packet Storm
228326 7.5 危険 phpocs - phpOCS の library/pagefunctions.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4331 2012-12-20 18:52 2008-09-30 Show GitHub Exploit DB Packet Storm
228327 5.8 警告 ViewVC - ViewVC の lib/viewvc.py におけるブラウザにコンテンツを誤って解釈させる脆弱性 CWE-noinfo
情報不足 		CVE-2008-4325 2012-12-20 18:52 2008-06-4 Show GitHub Exploit DB Packet Storm
228328 10 危険 project-observer - Observer における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4318 2012-12-20 18:52 2008-09-29 Show GitHub Exploit DB Packet Storm
228329 9 危険 phpCollab - phpCollab の installation/setup.php における include/settings.php に任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4305 2012-12-20 18:52 2008-12-23 Show GitHub Exploit DB Packet Storm
228330 10 危険 phpCollab - phpCollab の general/login.php における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2008-4304 2012-12-20 18:52 2008-12-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201471 8.1 HIGH
Network 		model_project model An issue was discovered in the model crate through 2020-11-10 for Rust. The Shared data structure has an implementation of the Send and Sync traits without regard for the inner type. CWE-843
Type Confusion 		CVE-2020-36460 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
201472 8.1 HIGH
Network 		dces_project dces An issue was discovered in the dces crate through 2020-12-09 for Rust. The World type is marked as Send but lacks bounds on its EntityStore and ComponentStore. CWE-77
Command Injection 		CVE-2020-36459 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
201473 8.1 HIGH
Network 		lexer_project lexer An issue was discovered in the lexer crate through 2020-11-10 for Rust. For ReaderResult<T, E>, there is an implementation of Sync with a trait bound of T: Send, E: Send. CWE-362
Race Condition 		CVE-2020-36458 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
201474 8.1 HIGH
Network 		lever_project lever An issue was discovered in the lever crate before 0.1.1 for Rust. AtomicBox<T> implements the Send and Sync traits for all types T. CWE-77
Command Injection 		CVE-2020-36457 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
201475 8.1 HIGH
Network 		toolshed_project toolshed An issue was discovered in the toolshed crate through 2020-11-15 for Rust. In CopyCell<T>, the Send trait lacks bounds on the contained type. CWE-77
Command Injection 		CVE-2020-36456 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
201476 8.1 HIGH
Network 		brokenlamp slock An issue was discovered in the slock crate through 2020-11-17 for Rust. Slock<T> unconditionally implements Send and Sync. CWE-77
Command Injection 		CVE-2020-36455 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
201477 8.1 HIGH
Network 		parc_project parc An issue was discovered in the parc crate through 2020-11-14 for Rust. LockWeak<T> has an unconditional implementation of Send without trait bounds on T. CWE-362
Race Condition 		CVE-2020-36454 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
201478 8.1 HIGH
Network 		scottqueue_project scottqueue An issue was discovered in the scottqueue crate through 2020-11-15 for Rust. There are unconditional implementations of Send and Sync for Queue<T>. NVD-CWE-noinfo
CVE-2020-36453 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
201479 9.8 CRITICAL
Network 		array-tools_project array-tools An issue was discovered in the array-tools crate before 0.3.2 for Rust. FixedCapacityDequeLike::clone() has a drop of uninitialized memory. CWE-908
 Use of Uninitialized Resource 		CVE-2020-36452 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
201480 8.1 HIGH
Network 		rcu_cell_project rcu_cell An issue was discovered in the rcu_cell crate through 2020-11-14 for Rust. There are unconditional implementations of Send and Sync for RcuCell<T>. CWE-77
Command Injection 		CVE-2020-36451 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm