Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229231 4.3 警告 WordPress.org - WordPress 用の WP-ContactForm プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-0198 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
229232 4.3 警告 WordPress.org - WordPress 用の WP-ContactForm プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0197 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
229233 5 警告 WordPress.org - WordPress におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0196 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
229234 5 警告 WordPress.org - WordPress における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-0195 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
229235 7.5 危険 WordPress.org - WordPress の wp-db-backup.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0194 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
229236 4.3 警告 WordPress.org - WordPress の wp-db-backup.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0193 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
229237 4.3 警告 WordPress.org - WordPress におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0192 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
229238 5 警告 WordPress.org - WordPress における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-0191 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
229239 7.5 危険 spacial audio solutions - SAM Broadcaster samPHPweb の songinfo.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0187 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
229240 4.3 警告 phprisk - NetRisk の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0186 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209321 5.5 MEDIUM
Local 		microsoft windows_server_2008
windows_10
windows_8.1
windows_server_2016
windows_rt_8.1
windows_server_2012
windows_server_2019
windows_7 		<p>An information disclosure vulnerability exists when the Windows KernelStream improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain informatio… NVD-CWE-noinfo
CVE-2020-16889 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209322 7.8 HIGH
Local 		microsoft windows_server_2008
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2012
windows_server_2019 		<p>An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory. An attacker who successfully exploited the vulnerability could exe… NVD-CWE-noinfo
CVE-2020-16887 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209323 6.1 MEDIUM
Network 		olimpoks olimpok OLIMPOKS under 3.3.39 allows Auth/Admin ErrorMessage XSS. Remote Attacker can use discovered vulnerability to inject malicious JavaScript payload to victim’s browsers in context of vulnerable applica… CWE-79
Cross-site Scripting 		CVE-2020-16270 2024-11-21 14:07 2020-10-16 Show GitHub Exploit DB Packet Storm
209324 5.3 MEDIUM
Local 		microsoft powershellget <p>A security feature bypass vulnerability exists in the PowerShellGet V2 module. An attacker who successfully exploited this vulnerability could bypass WDAC (Windows Defender Application Control) po… NVD-CWE-noinfo
CVE-2020-16886 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209325 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		<p>An elevation of privilege vulnerability exists when the Windows Storage VSP Driver improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated… NVD-CWE-noinfo
CVE-2020-16885 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209326 7.1 HIGH
Local 		microsoft windows_server_2016
windows_10 		<p>An elevation of privilege vulnerability exists when Microsoft Windows improperly handles reparse points. An attacker who successfully exploited this vulnerability could overwrite or delete a targe… NVD-CWE-noinfo
CVE-2020-16877 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209327 7.1 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		<p>An elevation of privilege vulnerability exists when the Windows Application Compatibility Client Library improperly handles registry operations. An attacker who successfully exploited this vulnera… NVD-CWE-noinfo
CVE-2020-16876 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209328 7.5 HIGH
Network 		microsoft windows_server_2008
windows_7 		<p>A denial of service vulnerability exists in Windows Remote Desktop Service when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who successful… NVD-CWE-noinfo
CVE-2020-16863 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209329 8.8 HIGH
Network 		zohocorp manageengine_applications_manager Zoho ManageEngine Applications Manager version 14740 and prior allows an authenticated SQL Injection via a crafted jsp request in the RCA module. CWE-89
SQL Injection 		CVE-2020-16267 2024-11-21 14:07 2020-10-7 Show GitHub Exploit DB Packet Storm
209330 7.8 HIGH
Local 		msi ambientlink_mslo64_firmware The MSI AmbientLink MsIo64 driver 1.0.0.8 has a Buffer Overflow (0x80102040, 0x80102044, 0x80102050,and 0x80102054). CWE-787
 Out-of-bounds Write 		CVE-2020-17382 2024-11-21 14:07 2020-10-2 Show GitHub Exploit DB Packet Storm