Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229341 9 危険 Rhino Software - Serv-U の FTP サーバにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4501 2012-12-20 18:52 2008-10-8 Show GitHub Exploit DB Packet Storm
229342 4.3 警告 Plone Foundation - Plone の LiveSearch モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4571 2012-12-20 18:52 2007-10-7 Show GitHub Exploit DB Packet Storm
229343 4 警告 Rhino Software - Serv-U におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4500 2012-12-20 18:52 2008-10-8 Show GitHub Exploit DB Packet Storm
229344 7.5 危険 phpautos - PHP Autos の searchresults.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4498 2012-12-20 18:52 2008-10-8 Show GitHub Exploit DB Packet Storm
229345 7.5 危険 select development solutions - PHP Realtor の view_cat.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4496 2012-12-20 18:52 2008-10-8 Show GitHub Exploit DB Packet Storm
229346 7.5 危険 select development solutions - PHP Auto Dealer の view_cat.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4495 2012-12-20 18:52 2008-10-8 Show GitHub Exploit DB Packet Storm
229347 7.5 危険 torrenttrader - TorrentTrader Classic の completed-advance.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4494 2012-12-20 18:52 2008-10-8 Show GitHub Exploit DB Packet Storm
229348 7.5 危険 yourownbux - YourOwnBux の referrals.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4492 2012-12-20 18:52 2008-10-8 Show GitHub Exploit DB Packet Storm
229349 10 危険 yerba - Yerba で使用される SACphp の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4486 2012-12-20 18:52 2008-10-7 Show GitHub Exploit DB Packet Storm
229350 6.9 警告 Sympa - sympa の sympa.pl における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-4476 2012-12-20 18:52 2008-10-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214811 7.8 HIGH
Local 		siemens license_management_utility A vulnerability has been identified in License Management Utility (LMU) (All versions < V2.4). The lmgrd service of the affected application is executed with local SYSTEM privileges on the server whi… - CVE-2020-10056 2024-11-21 13:54 2020-09-10 Show GitHub Exploit DB Packet Storm
214812 7.8 HIGH
Local 		siemens simatic_rtls_locating_manager A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). Multiple services of the affected application are executed with SYSTEM privileges while the call path is… CWE-428
 Unquoted Search Path or Element 		CVE-2020-10051 2024-11-21 13:54 2020-09-10 Show GitHub Exploit DB Packet Storm
214813 7.8 HIGH
Local 		siemens simatic_rtls_locating_manager A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). The directory of service executables of the affected application could allow a local attacker to include… CWE-276
Incorrect Default Permissions  		CVE-2020-10050 2024-11-21 13:54 2020-09-10 Show GitHub Exploit DB Packet Storm
214814 7.3 HIGH
Local 		siemens simatic_rtls_locating_manager A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). The start-stop scripts for the services of the affected application could allow a local attacker to incl… CWE-276
Incorrect Default Permissions  		CVE-2020-10049 2024-11-21 13:54 2020-09-10 Show GitHub Exploit DB Packet Storm
214815 7.6 HIGH
Physics 		ncr aptra_xfs NCR SelfServ ATMs running APTRA XFS 05.01.00 do not properly validate softare updates for the bunch note acceptor (BNA), enabling an attacker with physical access to internal ATM components to restar… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-10126 2024-11-21 13:54 2020-08-22 Show GitHub Exploit DB Packet Storm
214816 7.6 HIGH
Physics 		ncr aptra_xfs NCR SelfServ ATMs running APTRA XFS 04.02.01 and 05.01.00 implement 512-bit RSA certificates to validate bunch note acceptor (BNA) software updates, which can be broken by an attacker with physical a… CWE-326
Inadequate Encryption Strength 		CVE-2020-10125 2024-11-21 13:54 2020-08-22 Show GitHub Exploit DB Packet Storm
214817 7.1 HIGH
Physics 		ncr aptra_xfs NCR SelfServ ATMs running APTRA XFS 05.01.00 do not encrypt, authenticate, or verify the integrity of messages between the BNA and the host computer, which could allow an attacker with physical acces… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-10124 2024-11-21 13:54 2020-08-22 Show GitHub Exploit DB Packet Storm
214818 5.3 MEDIUM
Physics 		ncr aptra_xfs The currency dispenser of NCR SelfSev ATMs running APTRA XFS 05.01.00 or earlier does not adequately authenticate session key generation requests from the host computer, allowing an attacker with phy… CWE-287
Improper Authentication 		CVE-2020-10123 2024-11-21 13:54 2020-08-22 Show GitHub Exploit DB Packet Storm
214819 9.8 CRITICAL
Network 		siemens desigo_consumption_control_compact
desigo_consumption_control 		A vulnerability has been identified in Desigo CC (V4.x), Desigo CC (V3.x), Desigo CC Compact (V4.x), Desigo CC Compact (V3.x). Affected applications are delivered with a 3rd party component (BIRT) th… CWE-94
Code Injection 		CVE-2020-10055 2024-11-21 13:54 2020-08-15 Show GitHub Exploit DB Packet Storm
214820 8.8 HIGH
Network 		siemens sicam_mmu_firmware
sicam_sgu_firmware
sicam_t_firmware 		A vulnerability has been identified in SICAM MMU (All versions < V2.05), SICAM SGU (All versions), SICAM T (All versions < V2.18). An error in the challenge-response procedure could allow an attacker… CWE-294
Authentication Bypass by Capture-replay  		CVE-2020-10045 2024-11-21 13:54 2020-07-14 Show GitHub Exploit DB Packet Storm