Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229461 6.5 警告 Xerox - Xerox CWW における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3122 2012-12-20 18:52 2008-07-9 Show GitHub Exploit DB Packet Storm
229462 4.3 警告 Xerox - Xerox CWW におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3121 2012-12-20 18:52 2008-07-9 Show GitHub Exploit DB Packet Storm
229463 7.5 危険 phpmotion - PHPmotion の play.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3118 2012-12-20 18:52 2008-07-10 Show GitHub Exploit DB Packet Storm
229464 6.5 警告 phpmotion - PHPmotion の update_profile.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-3117 2012-12-20 18:52 2008-07-10 Show GitHub Exploit DB Packet Storm
229465 4.3 警告 v-webmail - V-webmail の redirect.php におけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2008-3061 2012-12-20 18:52 2008-10-7 Show GitHub Exploit DB Packet Storm
229466 5 警告 v-webmail - V-webmail における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-3060 2012-12-20 18:52 2008-10-7 Show GitHub Exploit DB Packet Storm
229467 7.5 危険 TYPO3 Association - TYPO3 用の Codeon Petition エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3056 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
229468 7.5 危険 TYPO3 Association - TYPO3 用の Support view エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3055 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
229469 7.5 危険 TYPO3 Association - TYPO3 用の Branchenbuch エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3054 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
229470 7.5 危険 TYPO3 Association - TYPO3 用の SQL Frontend エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3053 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209201 9.1 CRITICAL
Network 		chinamobileltd gpn2.4p21-c-cn_firmware An issue was discovered in the default configuration of ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running the firmware version W2000EN-01(hardware platform Gpn2.4P21-C_WIFI-V0.05), allows … CWE-22
Path Traversal 		CVE-2020-18330 2024-11-21 14:08 2023-01-27 Show GitHub Exploit DB Packet Storm
209202 7.5 HIGH
Network 		carel pcoweb_card_web
pcoweb_card_boot
pcoweb_card_bios 		An issue was discovered in Rehau devices that use a pCOWeb card BIOS v6.27, BOOT v5.00, web version v2.2, allows attackers to gain full unauthenticated access to the configuration and service interfa… CWE-281
 Improper Preservation of Permissions 		CVE-2020-18329 2024-11-21 14:08 2023-01-27 Show GitHub Exploit DB Packet Storm
209203 6.1 MEDIUM
Network 		alfresco alfresco Cross Site Scripting (XSS) vulnerability exists in Alfresco Alfresco Community Edition v5.2.0 via the action parameter in the alfresco/s/admin/admin-nodebrowser API. Fixed in v6.2 CWE-79
Cross-site Scripting 		CVE-2020-18327 2024-11-21 14:08 2022-03-5 Show GitHub Exploit DB Packet Storm
209204 8.8 HIGH
Network 		intelliants subrion_cms Cross Site Request Forgery (CSRF) vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user send an author… CWE-352
 Origin Validation Error 		CVE-2020-18326 2024-11-21 14:08 2022-03-5 Show GitHub Exploit DB Packet Storm
209205 6.1 MEDIUM
Network 		intelliants subrion_cms Multilple Cross Site Scripting (XSS) vulnerability exists in Intelliants Subrion CMS v4.2.1 in the Configuration panel. CWE-79
Cross-site Scripting 		CVE-2020-18325 2024-11-21 14:08 2022-03-5 Show GitHub Exploit DB Packet Storm
209206 6.1 MEDIUM
Network 		intelliants subrion_cms Cross Site Scripting (XSS) vulnerability exists in Subrion CMS 4.2.1 via the q parameter in the Kickstart template. CWE-79
Cross-site Scripting 		CVE-2020-18324 2024-11-21 14:08 2022-03-5 Show GitHub Exploit DB Packet Storm
209207 7.5 HIGH
Network 		sem-cms semcms The checkuser function of SEMCMS 3.8 was discovered to contain a vulnerability which allows attackers to obtain the password in plaintext through a SQL query. CWE-89
SQL Injection 		CVE-2020-18081 2024-11-21 14:08 2021-12-18 Show GitHub Exploit DB Packet Storm
209208 9.8 CRITICAL
Network 		sem-cms semcms A vulnerability in /include/web_check.php of SEMCMS v3.8 allows attackers to reset the Administrator account's password. NVD-CWE-noinfo
CVE-2020-18078 2024-11-21 14:08 2021-12-18 Show GitHub Exploit DB Packet Storm
209209 7.5 HIGH
Network 		ftpshell ftpshell_server A buffer overflow vulnerability in the Virtual Path Mapping component of FTPShell v6.83 allows attackers to cause a denial of service (DoS). CWE-120
Classic Buffer Overflow 		CVE-2020-18077 2024-11-21 14:08 2021-12-18 Show GitHub Exploit DB Packet Storm
209210 6.1 MEDIUM
Network 		synacor zimbra_collaboration_suite An issue in /domain/service/.ewell-known/caldav of Zimbra Collaboration 8.8.12 allows attackers to redirect users to any arbitrary website of their choosing. CWE-601
Open Redirect 		CVE-2020-18985 2024-11-21 14:08 2021-12-16 Show GitHub Exploit DB Packet Storm