Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229121 4.3 警告 phpcart - Carmosa phpCart におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7108 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
229122 5 警告 ソフォス - Microsoft Exchange 用の Sophos PureMessage におけるスキャン保護のリモート回避をされる脆弱性 CWE-Other
その他 		CVE-2008-7106 2012-12-20 19:10 2009-08-27 Show GitHub Exploit DB Packet Storm
229123 5 警告 ソフォス - Microsoft Exchange 用の Sophos PureMessage におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2008-7105 2012-12-20 19:10 2009-08-27 Show GitHub Exploit DB Packet Storm
229124 5 警告 ソフォス - Microsoft Exchange 用の PureMessage におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2008-7104 2012-12-20 19:10 2009-08-27 Show GitHub Exploit DB Packet Storm
229125 6.8 警告 qsoft-inc - Qsoft K-Rate Premium の Manage Templates 機能における任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2008-7099 2012-12-20 19:10 2009-08-27 Show GitHub Exploit DB Packet Storm
229126 4.3 警告 qsoft-inc - Qsoft K-Rate Premium におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7098 2012-12-20 19:10 2009-08-27 Show GitHub Exploit DB Packet Storm
229127 7.5 危険 qsoft-inc - Qsoft K-Rate Premium における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7097 2012-12-20 19:10 2009-08-27 Show GitHub Exploit DB Packet Storm
229128 5 警告 unica - Unica Affinium Campaign のリスナーサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-7094 2012-12-20 19:10 2009-08-26 Show GitHub Exploit DB Packet Storm
229129 6.8 警告 unica - Unica Affinium Campaign におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-7093 2012-12-20 19:10 2009-08-26 Show GitHub Exploit DB Packet Storm
229130 4.3 警告 unica - Unica Affinium Campaign におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7092 2012-12-20 19:10 2009-08-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208501 6.1 MEDIUM
Network 		cpanel cpanel cPanel before 88.0.13 allows self XSS via DNS Zone Manager DNSSEC interfaces (SEC-564). CWE-79
Cross-site Scripting 		CVE-2020-26110 2024-11-21 14:19 2020-09-25 Show GitHub Exploit DB Packet Storm
208502 7.5 HIGH
Network 		cpanel cpanel cPanel before 88.0.13 allows bypass of a protection mechanism that attempted to restrict package modification (SEC-557). NVD-CWE-Other
CVE-2020-26109 2024-11-21 14:19 2020-09-25 Show GitHub Exploit DB Packet Storm
208503 9.8 CRITICAL
Network 		cpanel cpanel cPanel before 88.0.13 mishandles file-extension dispatching, leading to code execution (SEC-488). NVD-CWE-Other
CVE-2020-26108 2024-11-21 14:19 2020-09-25 Show GitHub Exploit DB Packet Storm
208504 7.5 HIGH
Network 		cpanel cpanel cPanel before 88.0.3, upon an upgrade, establishes predictable PowerDNS API keys (SEC-561). CWE-330
 Use of Insufficiently Random Values 		CVE-2020-26107 2024-11-21 14:19 2020-09-25 Show GitHub Exploit DB Packet Storm
208505 7.5 HIGH
Network 		cpanel cpanel cPanel before 88.0.3 has weak permissions (world readable) for the proxy subdomains log file (SEC-558). CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-26106 2024-11-21 14:19 2020-09-25 Show GitHub Exploit DB Packet Storm
208506 9.8 CRITICAL
Network 		cpanel cpanel In cPanel before 88.0.3, insecure chkservd test credentials are used on a templated VM (SEC-554). CWE-287
Improper Authentication 		CVE-2020-26105 2024-11-21 14:19 2020-09-25 Show GitHub Exploit DB Packet Storm
208507 7.5 HIGH
Network 		cpanel cpanel In cPanel before 88.0.3, an insecure SRS secret is used on a templated VM (SEC-552). CWE-922
 Insecure Storage of Sensitive Information 		CVE-2020-26104 2024-11-21 14:19 2020-09-25 Show GitHub Exploit DB Packet Storm
208508 7.5 HIGH
Network 		cpanel cpanel In cPanel before 88.0.3, an insecure site password is used for Mailman on a templated VM (SEC-551). CWE-521
Weak Password Requirements  		CVE-2020-26103 2024-11-21 14:19 2020-09-25 Show GitHub Exploit DB Packet Storm
208509 7.5 HIGH
Network 		cpanel cpanel In cPanel before 88.0.3, an insecure auth policy API key is used by Dovecot on a templated VM (SEC-550). NVD-CWE-noinfo
CVE-2020-26102 2024-11-21 14:19 2020-09-25 Show GitHub Exploit DB Packet Storm
208510 9.8 CRITICAL
Network 		cpanel cpanel In cPanel before 88.0.3, insecure RNDC credentials are used for BIND on a templated VM (SEC-549). CWE-287
Improper Authentication 		CVE-2020-26101 2024-11-21 14:19 2020-09-25 Show GitHub Exploit DB Packet Storm