Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229301 7.5 危険 TYPO3 Association - TYPO3 用の Simple survey エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4655 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229302 9.3 危険 VideoLAN - VLC Media Player の Ty demux プラグインにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4654 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229303 7.5 危険 XOOPS - XOOPS 用の Makale モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4653 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229304 7.5 危険 sweetcms - sweetCMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4647 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229305 2.1 注意 ウェブセンス - Websense Enterprise の Websense Reporter Module におけるデータベースへの権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-4646 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229306 9 危険 phpwebgallery - PhpWebGallery の plugins/event_tracer/event_list.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4645 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229307 10 危険 Matthias Wandel - Matthias Wandel jhead の jhead.c における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4641 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229308 3.6 注意 Matthias Wandel - Matthias Wandel jhead の jhead.c における任意のファイルを削除される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4640 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229309 4.6 警告 Matthias Wandel - Matthias Wandel jhead の jhead.c における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-4639 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229310 7.5 危険 rgallery - WBB 用の rGallery プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4627 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208871 5.5 MEDIUM
Local 		microsoft windows_10
windows_7
windows_server_2012
windows_server_2016
windows_rt_8.1
windows_server_2008
windows_8.1
windows_server_2019 		An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique … CWE-909
 Missing Initialization of Resource 		CVE-2020-1419 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
208872 7.8 HIGH
Local 		microsoft windows_10
windows_server_2019
windows_server_2016 		An elevation of privilege vulnerability exists when the Windows Diagnostics Execution Service fails to properly sanitize input, leading to an unsecure library-loading behavior, aka 'Windows Diagnosti… NVD-CWE-noinfo
CVE-2020-1418 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
208873 8.8 HIGH
Network 		microsoft visual_studio_2017
typescript
azure_storage_explorer
visual_studio_code
visual_studio_2019 		An elevation of privilege vulnerability exists in Visual Studio and Visual Studio Code when they load software dependencies, aka 'Visual Studio and Visual Studio Code Elevation of Privilege Vulnerabi… CWE-269
 Improper Privilege Management 		CVE-2020-1416 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
208874 7.8 HIGH
Local 		microsoft windows_10
windows_server_2019
windows_server_2016 		An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CV… NVD-CWE-noinfo
CVE-2020-1415 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
208875 7.8 HIGH
Local 		microsoft windows_10
windows_server_2019
windows_server_2016 		An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CV… NVD-CWE-noinfo
CVE-2020-1414 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
208876 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CV… NVD-CWE-noinfo
CVE-2020-1413 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
208877 8.8 HIGH
Network 		microsoft windows_10
windows_7
windows_server_2012
windows_server_2016
windows_rt_8.1
windows_server_2008
windows_8.1
windows_server_2019 		A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Remote Code Execution Vulnerability'. CWE-269
 Improper Privilege Management 		CVE-2020-1412 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
208878 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique fro… NVD-CWE-noinfo
CVE-2020-1411 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
208879 7.8 HIGH
Local 		microsoft windows_10
windows_7
windows_server_2012
windows_server_2016
windows_rt_8.1
windows_server_2008
windows_8.1
windows_server_2019 		A remote code execution vulnerability exists when Windows Address Book (WAB) improperly processes vcard files.To exploit the vulnerability, an attacker could send a malicious vcard that a victim open… NVD-CWE-noinfo
CVE-2020-1410 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
208880 7.8 HIGH
Local 		microsoft windows_10
windows_7
windows_server_2012
windows_server_2016
windows_rt_8.1
windows_server_2008
windows_8.1
windows_server_2019 		A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. NVD-CWE-noinfo
CVE-2020-1409 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm