Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228591	7.5	危険	TYPO3 Association	-	TYPO3 用の News Calendar エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3044	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

228592	7.5	危険	Web-Empowered Church Team	-	TYPO3 用の WEC Discussion Forum エクステンションにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3043	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

228593	10	危険	TYPO3 Association	-	TYPO3 用の DAM Frontend エクステンションにおける脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3042	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

228594	7.5	危険	TYPO3 Association	-	TYPO3 用の DAM Frontend エクステンションにおける脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3041	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

228595	5	警告	TYPO3 Association	-	TYPO3 用の DAM Frontend エクステンションにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3040	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

228596	4.3	警告	Vtiger	-	vtiger CRM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3101	2012-12-20 18:52	2008-09-3	Show	GitHub Exploit DB Packet Storm

228597	6.5	警告	phplizardo	-	ImperialBB における任意の PHP コードをアップロードされる脆弱性	CWE-94 コード・インジェクション	CVE-2008-3093	2012-12-20 18:52	2008-07-9	Show	GitHub Exploit DB Packet Storm

228598	7.5	危険	xpoze	-	Xpoze Pro の user.html における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3089	2012-12-20 18:52	2008-07-9	Show	GitHub Exploit DB Packet Storm

228599	7.5	危険	Simple Machines	-	SMF における脆弱性	CWE-noinfo 情報不足	CVE-2008-3073	2012-12-20 18:52	2008-04-30	Show	GitHub Exploit DB Packet Storm

228600	7.5	危険	Simple Machines	-	Simple Machines Forum における脆弱性	CWE-189 数値処理の問題	CVE-2008-3072	2012-12-20 18:52	2008-04-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208961	8.3	HIGH Network	openstack	nova	An issue was discovered in Guest.migrate in virt/libvirt/guest.py in OpenStack Nova before 19.3.1, 20.x before 20.3.1, and 21.0.0. By performing a soft reboot of an instance that has previously under…	CWE-611 XXE	CVE-2020-17376	2024-11-21 14:07	2020-08-27	Show	GitHub Exploit DB Packet Storm

208962	8.2	HIGH Network	hashicorp	vault	HashiCorp Vault and Vault Enterprise versions 0.8.3 and newer, when configured with the GCP GCE auth method, may be vulnerable to authentication bypass. Fixed in 1.2.5, 1.3.8, 1.4.4, and 1.5.1.	CWE-287 Improper Authentication	CVE-2020-16251	2024-11-21 14:07	2020-08-27	Show	GitHub Exploit DB Packet Storm

208963	8.2	HIGH Network	hashicorp	vault	HashiCorp Vault and Vault Enterprise versions 0.7.1 and newer, when configured with the AWS IAM auth method, may be vulnerable to authentication bypass. Fixed in 1.2.5, 1.3.8, 1.4.4, and 1.5.1..	CWE-345 CWE-290 Insufficient Verification of Data Authenticity Authentication Bypass by Spoofing	CVE-2020-16250	2024-11-21 14:07	2020-08-27	Show	GitHub Exploit DB Packet Storm

208964	9.8	CRITICAL Network	advantech	iview	Advantech iView, Versions 5.7 and prior. The affected product is vulnerable to path traversal vulnerabilities that could allow an attacker to create/download arbitrary files, limit system availabilit…	CWE-22 Path Traversal	CVE-2020-16245	2024-11-21 14:07	2020-08-26	Show	GitHub Exploit DB Packet Storm

208965	6.5	MEDIUM Local	parallels	parallels_desktop	This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.3-47255. An attacker must first obtain the ability to execute low-privileged code…	-	CVE-2020-17391	2024-11-21 14:07	2020-08-26	Show	GitHub Exploit DB Packet Storm

208966	8.8	HIGH Local	parallels	parallels_desktop	This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute low-privileged code …	CWE-125 Out-of-bounds Read	CVE-2020-17390	2024-11-21 14:07	2020-08-26	Show	GitHub Exploit DB Packet Storm

208967	8.8	HIGH Network	marvell	qconvergeconsole	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Marvell QConvergeConsole 5.5.0.64. Although authentication is required to exploit this vulnerability,…	-	CVE-2020-17389	2024-11-21 14:07	2020-08-26	Show	GitHub Exploit DB Packet Storm

208968	8.8	HIGH Network	marvell	qconvergeconsole	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Marvell QConvergeConsole 5.5.0.64. Although authentication is required to exploit this vulnerability,…	-	CVE-2020-17388	2024-11-21 14:07	2020-08-26	Show	GitHub Exploit DB Packet Storm

208969	8.8	HIGH Network	marvell	qconvergeconsole	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Marvell QConvergeConsole 5.5.0.64. Although authentication is required to exploit this vulnerability,…	-	CVE-2020-17387	2024-11-21 14:07	2020-08-26	Show	GitHub Exploit DB Packet Storm

208970	6.5	MEDIUM Network	cellopoint	cellos	Cellopoint Cellos v4.1.10 Build 20190922 does not validate URL inputted properly. With cookie of an authenticated user, attackers can temper with the URL parameter and access arbitrary file on system.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-17386	2024-11-21 14:07	2020-08-25	Show	GitHub Exploit DB Packet Storm