Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228591	7.5	危険	TYPO3 Association	-	TYPO3 用の News Calendar エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3044	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

228592	7.5	危険	Web-Empowered Church Team	-	TYPO3 用の WEC Discussion Forum エクステンションにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3043	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

228593	10	危険	TYPO3 Association	-	TYPO3 用の DAM Frontend エクステンションにおける脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3042	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

228594	7.5	危険	TYPO3 Association	-	TYPO3 用の DAM Frontend エクステンションにおける脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3041	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

228595	5	警告	TYPO3 Association	-	TYPO3 用の DAM Frontend エクステンションにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3040	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

228596	4.3	警告	Vtiger	-	vtiger CRM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3101	2012-12-20 18:52	2008-09-3	Show	GitHub Exploit DB Packet Storm

228597	6.5	警告	phplizardo	-	ImperialBB における任意の PHP コードをアップロードされる脆弱性	CWE-94 コード・インジェクション	CVE-2008-3093	2012-12-20 18:52	2008-07-9	Show	GitHub Exploit DB Packet Storm

228598	7.5	危険	xpoze	-	Xpoze Pro の user.html における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3089	2012-12-20 18:52	2008-07-9	Show	GitHub Exploit DB Packet Storm

228599	7.5	危険	Simple Machines	-	SMF における脆弱性	CWE-noinfo 情報不足	CVE-2008-3073	2012-12-20 18:52	2008-04-30	Show	GitHub Exploit DB Packet Storm

228600	7.5	危険	Simple Machines	-	Simple Machines Forum における脆弱性	CWE-189 数値処理の問題	CVE-2008-3072	2012-12-20 18:52	2008-04-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208931	9.8	CRITICAL Network	dlink	dsr-250_firmware dsr-1000n_firmware	The D-Link DSR-250 (3.14) DSR-1000N (2.11B201) UPnP service contains a command injection vulnerability, which can cause remote command execution.	CWE-78 OS Command	CVE-2020-18568	2024-11-21 14:08	2021-02-2	Show	GitHub Exploit DB Packet Storm

208932	5.8	MEDIUM Network	apache	traffic_control	When ORT (now via atstccfg) generates ip_allow.config files in Apache Traffic Control 3.0.0 to 3.1.0 and 4.0.0 to 4.1.0, those files include permissions that allow bad actors to push arbitrary conten…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-17522	2024-11-21 14:08	2021-01-27	Show	GitHub Exploit DB Packet Storm

208933	8.8	HIGH Network	apache	java_chassis	When handler-router component is enabled in servicecomb-java-chassis, authenticated user may inject some data and cause arbitrary code execution. The problem happens in versions between 2.0.0 ~ 2.1.3…	CWE-502 Deserialization of Untrusted Data	CVE-2020-17532	2024-11-21 14:08	2021-01-25	Show	GitHub Exploit DB Packet Storm

208934	7.0	HIGH Local	apache	html\/java_api	There exists a race condition between the deletion of the temporary file and the creation of the temporary directory in `webkit` subproject of HTML/Java API version 1.7. A similar vulnerability has r…	CWE-362 Race Condition	CVE-2020-17534	2024-11-21 14:08	2021-01-12	Show	GitHub Exploit DB Packet Storm

208935	7.5	HIGH Network	apache	traffic_server	ATS negative cache option is vulnerable to a cache poisoning attack. If you have this option enabled, please upgrade or disable this feature. Apache Traffic Server versions 7.0.0 to 7.1.11 and 8.0.0 …	CWE-444 HTTP Request Smuggling	CVE-2020-17509	2024-11-21 14:08	2021-01-11	Show	GitHub Exploit DB Packet Storm

208936	7.5	HIGH Network	apache	traffic_server	The ATS ESI plugin has a memory disclosure vulnerability. If you are running the plugin please upgrade. Apache Traffic Server versions 7.0.0 to 7.1.11 and 8.0.0 to 8.1.0 are affected.	NVD-CWE-noinfo	CVE-2020-17508	2024-11-21 14:08	2021-01-11	Show	GitHub Exploit DB Packet Storm

208937	7.2	HIGH Network	barco	transform_n	The NDN-210 has a web administration panel which is made available over https. There is a command injection issue that will allow authenticated users to the administration panel to perform authentica…	CWE-77 Command Injection	CVE-2020-17504	2024-11-21 14:08	2021-01-9	Show	GitHub Exploit DB Packet Storm

208938	7.2	HIGH Network	barco	transform_n	The NDN-210 has a web administration panel which is made available over https. There is a command injection issue that will allow authenticated users to the administration panel to perform authentica…	CWE-77 Command Injection	CVE-2020-17503	2024-11-21 14:08	2021-01-9	Show	GitHub Exploit DB Packet Storm

208939	7.2	HIGH Network	barco	transform_n	Barco TransForm N before 3.8 allows Command Injection (issue 2 of 4). The NDN-210 has a web administration panel which is made available over https. There is a command injection issue that will allow…	CWE-77 Command Injection	CVE-2020-17502	2024-11-21 14:08	2021-01-9	Show	GitHub Exploit DB Packet Storm

208940	9.8	CRITICAL Network	barco	transform_n	Barco TransForm NDN-210 Lite, NDN-210 Pro, NDN-211 Lite, and NDN-211 Pro before 3.8 allows Command Injection (issue 1 of 4). The NDN-210 has a web administration panel which is made available over ht…	CWE-77 Command Injection	CVE-2020-17500	2024-11-21 14:08	2021-01-8	Show	GitHub Exploit DB Packet Storm