Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229471	6.8	警告	turnkey web tools	-	Turnkey PHP Live Helper の libsecure.php における db config ファイルに関連する任意の変数を上書きされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-3763	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229472	7.5	危険	turnkey web tools	-	Turnkey PHP Live Helper の onlinestatus_html.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3762	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229473	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Forced Matrix Script の tr1.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3757	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229474	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Viral Marketing Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3756	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229475	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Classifieds Script の view.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3755	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229476	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Stylish Text Ads Script の trl.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3754	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229477	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Programs Rating Script の details.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3753	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229478	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Ad-Exchange Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3752	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229479	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Short Url & Url Tracker Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3751	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229480	7.5	危険	YourFreeWorld.com	-	YourFreeWorld URL Rotator Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3750	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208941	5.5	MEDIUM Local	microsoft	windows_server_2019 windows_10 windows_server_2016	An information disclosure vulnerability exists when Windows Mobile Device Management (MDM) Diagnostics improperly handles junctions, aka 'Windows Mobile Device Management Diagnostics Information Disc…	NVD-CWE-noinfo	CVE-2020-1330	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

208942	5.4	MEDIUM Network	microsoft	azure_devops_server	A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site Scripting Vulnerability'.	CWE-79 Cross-site Scripting	CVE-2020-1326	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

208943	4.9	MEDIUM Network	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	This security update corrects a denial of service in the Local Security Authority Subsystem Service (LSASS) caused when an authenticated attacker sends a specially crafted authentication request, aka…	NVD-CWE-noinfo	CVE-2020-1267	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

208944	7.8	HIGH Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CV…	NVD-CWE-noinfo	CVE-2020-1249	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

208945	8.8	HIGH Network	microsoft	365_apps	A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.	NVD-CWE-noinfo	CVE-2020-1240	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

208946	7.8	HIGH Local	microsoft	windows_10 windows_server_2019 windows_server_2016	An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files.To exploit this vulnerability,…	CWE-269 Improper Privilege Management	CVE-2020-1431	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

208947	6.5	MEDIUM Network	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'.	NVD-CWE-noinfo	CVE-2020-1348	2024-11-21 14:10	2020-06-10	Show	GitHub Exploit DB Packet Storm

208948	5.9	MEDIUM Network	microsoft	visual_studio_live_share	An information disclosure vulnerability exists in Visual Studio Code Live Share Extension when it exposes tokens in plain text, aka 'Visual Studio Code Live Share Information Disclosure Vulnerability…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-1343	2024-11-21 14:10	2020-06-10	Show	GitHub Exploit DB Packet Storm

208949	5.4	MEDIUM Network	microsoft	nugetgallery	A spoofing vulnerability exists when the NuGetGallery does not properly sanitize input on package metadata values, aka 'NuGetGallery Spoofing Vulnerability'.	CWE-79 Cross-site Scripting	CVE-2020-1340	2024-11-21 14:10	2020-06-10	Show	GitHub Exploit DB Packet Storm

208950	7.8	HIGH Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CV…	NVD-CWE-noinfo	CVE-2020-1334	2024-11-21 14:10	2020-06-10	Show	GitHub Exploit DB Packet Storm