Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229481 7.5 危険 TYPO3 Association - TYPO3 用の Econda エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4657 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229482 7.5 危険 TYPO3 Association - TYPO3 用の Frontend Users View エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4656 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229483 7.5 危険 TYPO3 Association - TYPO3 用の Simple survey エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4655 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229484 9.3 危険 VideoLAN - VLC Media Player の Ty demux プラグインにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4654 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229485 7.5 危険 XOOPS - XOOPS 用の Makale モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4653 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229486 7.5 危険 sweetcms - sweetCMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4647 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229487 2.1 注意 ウェブセンス - Websense Enterprise の Websense Reporter Module におけるデータベースへの権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-4646 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229488 9 危険 phpwebgallery - PhpWebGallery の plugins/event_tracer/event_list.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4645 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229489 10 危険 Matthias Wandel - Matthias Wandel jhead の jhead.c における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4641 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229490 3.6 注意 Matthias Wandel - Matthias Wandel jhead の jhead.c における任意のファイルを削除される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4640 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208771 6.1 MEDIUM
Network 		fusionpbx fusionpbx Cross Site Scripting (XSS) vulnerability in FusionPBX 4.5.7 allows remote malicious users to inject arbitrary web script or HTML via an unsanitized "f" variable in app\vars\vars_textarea.php. CWE-79
Cross-site Scripting 		CVE-2020-21054 2024-11-21 14:12 2021-05-21 Show GitHub Exploit DB Packet Storm
208772 6.1 MEDIUM
Network 		fusionpbx fusionpbx Cross Site Scriptiong (XSS) vulnerability exists in FusionPBX 4.5.7 allows remote malicious users to inject arbitrary web script or HTML via an unsanitized "query_string" variable in app\devices\devi… CWE-79
Cross-site Scripting 		CVE-2020-21053 2024-11-21 14:12 2021-05-21 Show GitHub Exploit DB Packet Storm
208773 9.8 CRITICAL
Network 		pluck-cms pluck In Pluck-4.7.10-dev2 admin background, a remote command execution vulnerability exists when uploading files. CWE-77
Command Injection 		CVE-2020-20951 2024-11-21 14:12 2021-05-19 Show GitHub Exploit DB Packet Storm
208774 8.8 HIGH
Network 		gnu libredwg GNU LibreDWG 0.10 is affected by: memcpy-param-overlap. The impact is: execute arbitrary code (remote). The component is: read_2004_section_header ../../src/decode.c:2580. NVD-CWE-Other
CVE-2020-21844 2024-11-21 14:12 2021-05-18 Show GitHub Exploit DB Packet Storm
208775 8.8 HIGH
Network 		gnu libredwg A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_read_RC ../../src/bits.c:318. CWE-787
 Out-of-bounds Write 		CVE-2020-21843 2024-11-21 14:12 2021-05-18 Show GitHub Exploit DB Packet Storm
208776 8.8 HIGH
Network 		gnu libredwg A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_section_revhistory ../../src/decode.c:3051. CWE-787
 Out-of-bounds Write 		CVE-2020-21842 2024-11-21 14:12 2021-05-18 Show GitHub Exploit DB Packet Storm
208777 8.8 HIGH
Network 		gnu libredwg A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_section_handles ../../src/decode.c:2637. CWE-787
 Out-of-bounds Write 		CVE-2020-21831 2024-11-21 14:12 2021-05-18 Show GitHub Exploit DB Packet Storm
208778 8.8 HIGH
Network 		gnu libredwg A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_read_B ../../src/bits.c:135. CWE-787
 Out-of-bounds Write 		CVE-2020-21841 2024-11-21 14:12 2021-05-18 Show GitHub Exploit DB Packet Storm
208779 8.8 HIGH
Network 		gnu libredwg A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_search_sentinel ../../src/bits.c:1985. CWE-787
 Out-of-bounds Write 		CVE-2020-21840 2024-11-21 14:12 2021-05-18 Show GitHub Exploit DB Packet Storm
208780 6.5 MEDIUM
Network 		gnu libredwg An issue was discovered in GNU LibreDWG 0.10. Crafted input will lead to an memory leak in dwg_decode_eed ../../src/decode.c:3638. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2020-21839 2024-11-21 14:12 2021-05-18 Show GitHub Exploit DB Packet Storm