Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228651	6.8	警告	siteatschool	-	Site@School の starnet/addons/slideshow_full.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0129	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228652	4.3	警告	php-stats	-	Michael Wagner phpstats の phpstats.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0125	2012-12-20 18:34	2008-03-24	Show	GitHub Exploit DB Packet Storm

228653	4.3	警告	s9y	-	S9Y におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0124	2012-12-20 18:34	2008-02-25	Show	GitHub Exploit DB Packet Storm

228654	7.5	危険	ourproject.org	-	White_Dune の DuneApp.cpp におけるフォーマットストリングの脆弱性	CWE-20 不適切な入力確認	CVE-2008-0101	2012-12-20 18:34	2008-01-7	Show	GitHub Exploit DB Packet Storm

228655	7.5	危険	ourproject.org	-	White_Dune の Scene.cpp におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0100	2012-12-20 18:34	2008-01-7	Show	GitHub Exploit DB Packet Storm

228656	10	危険	リアルネットワークス	-	RealPlayer におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0098	2012-12-20 18:34	2008-01-7	Show	GitHub Exploit DB Packet Storm

228657	4.3	警告	phpWebSite	-	Appalachian State University phpWebSite の search モジュールの index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0092	2012-12-20 18:34	2008-01-3	Show	GitHub Exploit DB Packet Storm

228658	6.8	警告	Xine	-	xine-lib の input/libreal/sdpplin.c における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2008-0073	2012-12-20 18:34	2008-03-24	Show	GitHub Exploit DB Packet Storm

228659	6.8	警告	pierreegougelet	-	XnView におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0069	2012-12-20 18:34	2008-04-2	Show	GitHub Exploit DB Packet Storm

228660	10	危険	Winamp	-	Winamp の in_mp3.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0065	2012-12-20 18:34	2008-01-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196041	7.2	HIGH Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	A code injection vulnerability exists in Pulse Connect Secure <9.1R8 that allows an attacker to crafted a URI to perform an arbitrary code execution via the admin web interface.	CWE-94 Code Injection	CVE-2020-8218	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

196042	5.4	MEDIUM Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	A cross site scripting (XSS) vulnerability in Pulse Connect Secure <9.1R8 allowed attackers to exploit in the URL used for Citrix ICA.	CWE-79 Cross-site Scripting	CVE-2020-8217	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

196043	4.3	MEDIUM Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	An information disclosure vulnerability in meeting of Pulse Connect Secure <9.1R8 allowed an authenticated end-users to find meeting details, if they know the Meeting ID.	NVD-CWE-noinfo	CVE-2020-8216	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

196044	5.3	MEDIUM Network	ui	unifi_protect	An information exposure vulnerability exists in UniFi Protect before v1.13.4-beta.5 that allowed unauthenticated attackers access to valid usernames for the UniFi Protect web application via HTTP res…	CWE-209 Information Exposure Through an Error Message	CVE-2020-8213	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

196045	8.1	HIGH Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	An improper authentication vulnerability exists in Pulse Connect Secure <9.1RB that allows an attacker with a users primary credentials to bypass the Google TOTP.	CWE-287 Improper Authentication	CVE-2020-8206	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

196046	6.1	MEDIUM Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	A cross site scripting (XSS) vulnerability exists in Pulse Connect Secure <9.1R5 on the PSAL Page.	CWE-79 Cross-site Scripting	CVE-2020-8204	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

196047	5.3	MEDIUM Network	nextcloud	preferred_providers	Improper check of inputs in Nextcloud Preferred Providers app v1.6.0 allowed to perform a denial of service attack when using a very long password.	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-8202	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

196048	6.5	MEDIUM Network	fastify	fastify	A denial of service vulnerability exists in Fastify v2.14.1 and v3.0.0-rc.4 that allows a malicious user to trigger resource exhaustion (when the allErrors option is used) with specially crafted sche…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-8192	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

196049	8.8	HIGH Network	citrix	workspace	Improper access control in Citrix Workspace app for Windows 1912 CU1 and 2006.1 causes privilege escalation and code execution when the automatic updater service is running.	CWE-287 Improper Authentication	CVE-2020-8207	2024-11-21 14:38	2020-07-25	Show	GitHub Exploit DB Packet Storm

196050	5.5	MEDIUM Local	jpeg-js_project	jpeg-js	Uncontrolled resource consumption in `jpeg-js` before 0.4.0 may allow attacker to launch denial of service attacks using specially a crafted JPEG image.	CWE-400 Uncontrolled Resource Consumption	CVE-2020-8175	2024-11-21 14:38	2020-07-25	Show	GitHub Exploit DB Packet Storm