Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229301 6.8 警告 sitexs cms - SiteXS CMS の adm/visual/upload.php における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6617 2012-12-20 19:10 2009-04-6 Show GitHub Exploit DB Packet Storm
229302 4.3 警告 Zen Cart - Zen Software Zen Cart の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6616 2012-12-20 19:10 2009-04-6 Show GitHub Exploit DB Packet Storm
229303 7.5 危険 Zen Cart - Zen Software Zen Cart の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6615 2012-12-20 19:10 2009-04-6 Show GitHub Exploit DB Packet Storm
229304 10 危険 picoflat - PicoFlat CMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6604 2012-12-20 19:10 2009-04-4 Show GitHub Exploit DB Packet Storm
229305 10 危険 stadtaus - Download Center Lite における脆弱性 CWE-noinfo
情報不足 		CVE-2008-6602 2012-12-20 19:10 2009-04-3 Show GitHub Exploit DB Packet Storm
229306 4.3 警告 xmlportal - XMLPortal の検索機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6600 2012-12-20 19:10 2009-04-3 Show GitHub Exploit DB Packet Storm
229307 10 危険 Sangoma - WANPIPE における脆弱性 CWE-362
競合状態 		CVE-2008-6598 2012-12-20 19:10 2009-04-3 Show GitHub Exploit DB Packet Storm
229308 4.3 警告 phpcredo - PHCDownload の upload/install/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6597 2012-12-20 19:10 2009-04-3 Show GitHub Exploit DB Packet Storm
229309 5.5 警告 Simple Machines - SMF の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6659 2012-12-20 19:10 2008-11-7 Show GitHub Exploit DB Packet Storm
229310 4 警告 Simple Machines - SMF の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6658 2012-12-20 19:10 2008-11-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208531 5.3 MEDIUM
Network 		freebsd freebsd In FreeBSD 12.2-STABLE before r369346, 11.4-STABLE before r369345, 12.2-RELEASE before p4 and 11.4-RELEASE before p8 a regression in the login.access(5) rule processor has the effect of causing rules… CWE-697
 Incorrect Comparison 		CVE-2020-25580 2024-11-21 14:18 2021-03-27 Show GitHub Exploit DB Packet Storm
208532 5.3 MEDIUM
Network 		freebsd freebsd In FreeBSD 12.2-STABLE before r368969, 11.4-STABLE before r369047, 12.2-RELEASE before p3, 12.1-RELEASE before p13 and 11.4-RELEASE before p7 msdosfs(5) was failing to zero-fill a pair of padding fie… CWE-909
 Missing Initialization of Resource 		CVE-2020-25579 2024-11-21 14:18 2021-03-27 Show GitHub Exploit DB Packet Storm
208533 5.3 MEDIUM
Network 		freebsd freebsd In FreeBSD 12.2-STABLE before r368969, 11.4-STABLE before r369047, 12.2-RELEASE before p3, 12.1-RELEASE before p13 and 11.4-RELEASE before p7 several file systems were not properly initializing the d… CWE-665
 Improper Initialization 		CVE-2020-25578 2024-11-21 14:18 2021-03-27 Show GitHub Exploit DB Packet Storm
208534 6.1 MEDIUM
Network 		microfocus access_manager Cross-Site scripting vulnerability in Micro Focus Access Manager product, affects all version prior to version 5.0. The vulnerability could cause configuration destruction. CWE-79
Cross-site Scripting 		CVE-2020-25840 2024-11-21 14:18 2021-03-26 Show GitHub Exploit DB Packet Storm
208535 4.4 MEDIUM
Local 		linux
fedoraproject
redhat 		linux_kernel
fedora
enterprise_linux
messaging_realtime_grid
openshift_container_platform 		A NULL pointer dereference flaw was found in the Linux kernel's GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user calls ioctl DRM_IOCTL_NOUVEAU_CHANNEL_ALLOC. This fl… - CVE-2020-25639 2024-11-21 14:18 2021-03-5 Show GitHub Exploit DB Packet Storm
208536 7.6 HIGH
Physics 		gnu
redhat
fedoraproject
netapp 		grub2
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_tus
enterprise_linux_server_eus
fedora
ontap_select_deploy_administration_… 		A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If pr… CWE-787
 Out-of-bounds Write 		CVE-2020-25647 2024-11-21 14:18 2021-03-4 Show GitHub Exploit DB Packet Storm
208537 8.2 HIGH
Local 		gnu
redhat
fedoraproject
netapp 		grub2
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_tus
enterprise_linux_server_eus
fedora
ontap_select_deploy_administration_… 		A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded lead… CWE-416
 Use After Free 		CVE-2020-25632 2024-11-21 14:18 2021-03-4 Show GitHub Exploit DB Packet Storm
208538 6.1 MEDIUM
Network 		blackboard collaborate_ultra Blackboard Collaborate Ultra 20.02 is affected by a cross-site scripting (XSS) vulnerability. The XSS payload will execute on the class room, which leads to stealing cookies from users who join the c… CWE-79
Cross-site Scripting 		CVE-2020-25902 2024-11-21 14:18 2021-03-2 Show GitHub Exploit DB Packet Storm
208539 8.8 HIGH
Network 		fontforge fontforge An out-of-bounds write flaw was found in FontForge in versions before 20200314 while parsing SFD files containing certain LayerCount tokens. This flaw allows an attacker to manipulate the memory allo… - CVE-2020-25690 2024-11-21 14:18 2021-02-23 Show GitHub Exploit DB Packet Storm
208540 5.9 MEDIUM
Network 		agora video_software_development_kit Cleartext transmission of sensitive information in Agora Video SDK prior to 3.1 allows a remote attacker to obtain access to audio and video of any ongoing Agora video call through observation of cle… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-25605 2024-11-21 14:18 2021-02-18 Show GitHub Exploit DB Packet Storm