Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229341	9	危険	Rhino Software	-	Serv-U の FTP サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4501	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

229342	4.3	警告	Plone Foundation	-	Plone の LiveSearch モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4571	2012-12-20 18:52	2007-10-7	Show	GitHub Exploit DB Packet Storm

229343	4	警告	Rhino Software	-	Serv-U におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-4500	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

229344	7.5	危険	phpautos	-	PHP Autos の searchresults.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4498	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

229345	7.5	危険	select development solutions	-	PHP Realtor の view_cat.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4496	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

229346	7.5	危険	select development solutions	-	PHP Auto Dealer の view_cat.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4495	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

229347	7.5	危険	torrenttrader	-	TorrentTrader Classic の completed-advance.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4494	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

229348	7.5	危険	yourownbux	-	YourOwnBux の referrals.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4492	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

229349	10	危険	yerba	-	Yerba で使用される SACphp の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4486	2012-12-20 18:52	2008-10-7	Show	GitHub Exploit DB Packet Storm

229350	6.9	警告	Sympa	-	sympa の sympa.pl における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4476	2012-12-20 18:52	2008-10-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209191	8.1	HIGH Network	dbhcms_project	dbhcms	DBHcms v1.2.0 has no CSRF protection mechanism,as demonstrated by CSRF for an /index.php?dbhcms_pid=-80&deletemenu=9 can delete any menu.	CWE-352 Origin Validation Error	CVE-2020-19886	2024-11-21 14:09	2020-08-25	Show	GitHub Exploit DB Packet Storm

209192	4.8	MEDIUM Network	dbhcms_project	dbhcms	DBHcms v1.2.0 has a stored xss vulnerability as there is no htmlspecialchars function for '$_POST['pageparam_insert_name']' variable in dbhcms\mod\mod.page.edit.php line 227, A remote authenticated w…	CWE-79 Cross-site Scripting	CVE-2020-19885	2024-11-21 14:09	2020-08-25	Show	GitHub Exploit DB Packet Storm

209193	4.8	MEDIUM Network	dbhcms_project	dbhcms	DBHcms v1.2.0 has a stored xss vulnerability as there is no htmlspecialchars function in dbhcms\mod\mod.domain.edit.php line 119.	CWE-79 Cross-site Scripting	CVE-2020-19884	2024-11-21 14:09	2020-08-25	Show	GitHub Exploit DB Packet Storm

209194	4.8	MEDIUM Network	dbhcms_project	dbhcms	DBHcms v1.2.0 has a stored xss vulnerability as there is no security filter in dbhcms\mod\mod.users.view.php line 57 for user_login, A remote authenticated with admin user can exploit this vulnerabil…	CWE-79 Cross-site Scripting	CVE-2020-19883	2024-11-21 14:09	2020-08-25	Show	GitHub Exploit DB Packet Storm

209195	4.8	MEDIUM Network	dbhcms_project	dbhcms	DBHcms v1.2.0 has a stored xss vulnerability as there is no htmlspecialchars function for 'menu_description' variable in dbhcms\mod\mod.menus.edit.php line 83 and in dbhcms\mod\mod.menus.view.php lin…	CWE-79 Cross-site Scripting	CVE-2020-19882	2024-11-21 14:09	2020-08-25	Show	GitHub Exploit DB Packet Storm

209196	4.8	MEDIUM Network	dbhcms_project	dbhcms	DBHcms v1.2.0 has a reflected xss vulnerability as there is no security filter in dbhcms\mod\mod.selector.php line 108 for $_GET['return_name'] parameter, A remote authenticated with admin user can e…	CWE-79 Cross-site Scripting	CVE-2020-19881	2024-11-21 14:09	2020-08-25	Show	GitHub Exploit DB Packet Storm

209197	6.1	MEDIUM Network	dbhcms_project	dbhcms	DBHcms v1.2.0 has a stored xss vulnerability as there is no htmlspecialchars function form 'Name' in dbhcms\types.php, A remote unauthenticated attacker can exploit this vulnerability to hijack other…	CWE-79 Cross-site Scripting	CVE-2020-19880	2024-11-21 14:09	2020-08-25	Show	GitHub Exploit DB Packet Storm

209198	6.1	MEDIUM Network	dbhcms_project	dbhcms	DBHcms v1.2.0 has a stored xss vulnerability as there is no security filter of $_GET['dbhcms_pid'] variable in dbhcms\page.php line 107,	CWE-79 Cross-site Scripting	CVE-2020-19879	2024-11-21 14:09	2020-08-25	Show	GitHub Exploit DB Packet Storm

209199	7.5	HIGH Network	dbhcms_project	dbhcms	DBHcms v1.2.0 has a sensitive information leaks vulnerability as there is no security access control in /dbhcms/ext/news/ext.news.be.php, A remote unauthenticated attacker can exploit this vulnerabil…	NVD-CWE-noinfo	CVE-2020-19878	2024-11-21 14:09	2020-08-25	Show	GitHub Exploit DB Packet Storm

209200	5.3	MEDIUM Network	dbhcms_project	dbhcms	DBHcms v1.2.0 has a directory traversal vulnerability as there is no directory control function in directory /dbhcms/. A remote unauthenticated attacker can exploit this vulnerability to obtain serve…	CWE-22 Path Traversal	CVE-2020-19877	2024-11-21 14:09	2020-08-24	Show	GitHub Exploit DB Packet Storm