Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228591 6.8 警告 phpBB - phpBB におけるセッションをハイジャックされる脆弱性 CWE-200
情報漏えい 		CVE-2008-7143 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
228592 4.3 警告 redgalaxy - Chris LaPointe RedGalaxy Download Center のデフォルト URI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7134 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
228593 5 警告 xyssl - XySSL におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-7129 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
228594 7.5 危険 xyssl - XySSL の ssl_parse_client_key_exchange 関数における鍵を回復される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7128 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
228595 7.5 危険 zkup - zKup CMS における管理者権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-7124 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
228596 6.8 警告 zkup - zKup CMS の admin/configuration/modifier.php における任意の PHP コード挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-7123 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
228597 7.5 危険 WeBid Support - WeBid auction script の item.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7119 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228598 5 警告 WeBid Support - WeBid auction script における SQL クエリログを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7118 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228599 5 警告 WeBid Support - WeBid auction script の eledicss.php における任意のカスケードスタイルシートファイル (CSS) を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7117 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228600 7.5 危険 WeBid Support - WeBid auction script の admin panel における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7116 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208561 5.5 MEDIUM
Local 		huawei oxfords-an00a_firmware Huawei smartphone OxfordS-AN00A with versions earlier than 10.0.1.152D(C735E152R3P3),versions earlier than 10.0.1.160(C00E160R4P1) have an improper authentication vulnerability. Authentication to tar… CWE-287
Improper Authentication 		CVE-2020-1878 2024-11-21 14:11 2020-03-21 Show GitHub Exploit DB Packet Storm
208562 3.9 LOW
Physics 		huawei hege-560_firmware
hege-570_firmware
osca-550_firmware
osca-550a_firmware
osca-550ax_firmware
osca-550x_firmware 		There is an improper integrity checking vulnerability on some huawei products. The software of the affected product has an improper integrity check which may allow an attacker with high privilege to … CWE-354
 Improper Validation of Integrity Check Value 		CVE-2020-1879 2024-11-21 14:11 2020-03-21 Show GitHub Exploit DB Packet Storm
208563 8.1 HIGH
Network 		huawei secospace_antiddos8000_firmware Some Huawei products have a security vulnerability due to improper authentication. A remote attacker needs to obtain some information and forge the peer device to send specific packets to the affecte… CWE-287
Improper Authentication 		CVE-2020-1864 2024-11-21 14:11 2020-03-21 Show GitHub Exploit DB Packet Storm
208564 3.3 LOW
Local 		huawei campusinsight
manageone 		There is a double free vulnerability in some Huawei products. A local attacker with low privilege may perform some operations to exploit the vulnerability. Due to doubly freeing memory, successful ex… CWE-415
 Double Free 		CVE-2020-1862 2024-11-21 14:11 2020-03-21 Show GitHub Exploit DB Packet Storm
208565 6.6 MEDIUM
Physics 		huawei mate_20_firmware
mate_30_pro_firmware 		There is an improper authorization vulnerability in several smartphones. The software incorrectly performs an authorization to certain user, successful exploit could allow a low privilege user to do … CWE-863
 Incorrect Authorization 		CVE-2020-1796 2024-11-21 14:11 2020-03-21 Show GitHub Exploit DB Packet Storm
208566 2.4 LOW
Physics 		huawei mate_20_firmware
mate_30_pro_firmware 		There is a logic error vulnerability in several smartphones. The software does not properly restrict certain operation when the Digital Balance function is on. Successful exploit could allow the atta… NVD-CWE-Other
CVE-2020-1795 2024-11-21 14:11 2020-03-21 Show GitHub Exploit DB Packet Storm
208567 4.6 MEDIUM
Physics 		huawei mate_20_firmware
mate_30_pro_firmware 		There is an improper authentication vulnerability in several smartphones. The applock does not perform a sufficient authentication in certain scenarios, successful exploit could allow the attacker to… CWE-287
Improper Authentication 		CVE-2020-1794 2024-11-21 14:11 2020-03-21 Show GitHub Exploit DB Packet Storm
208568 4.6 MEDIUM
Physics 		huawei mate_20_firmware
mate_30_pro_firmware 		There is an improper authentication vulnerability in several smartphones. The applock does not perform a sufficient authentication in certain scenarios, successful exploit could allow the attacker to… CWE-287
Improper Authentication 		CVE-2020-1793 2024-11-21 14:11 2020-03-21 Show GitHub Exploit DB Packet Storm
208569 7.8 HIGH
Local 		redhat openshift A vulnerability was found in all openshift/mediawiki 4.x.x versions prior to 4.3.0, where an insecure modification vulnerability in the /etc/passwd file was found in the openshift/mediawiki. An attac… - CVE-2020-1709 2024-11-21 14:11 2020-03-21 Show GitHub Exploit DB Packet Storm
208570 7.0 HIGH
Local 		redhat openshift A vulnerability was found in all openshift/postgresql-apb 4.x.x versions prior to 4.3.0, where an insecure modification vulnerability in the /etc/passwd file was found in the container openshift/post… - CVE-2020-1707 2024-11-21 14:11 2020-03-21 Show GitHub Exploit DB Packet Storm