Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229511 4.3 警告 torrenttrader - TorrentTrader Classic の TorrentTrader Classic におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1173 2012-12-20 18:34 2008-03-5 Show GitHub Exploit DB Packet Storm
229512 4.3 警告 torrenttrader - TorrentTrader Classic の account-inbox.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-1172 2012-12-20 18:34 2008-03-5 Show GitHub Exploit DB Packet Storm
229513 7.8 危険 simm-comm - SCI Photo Chat Server の組み込まれた HTTP サーバにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1169 2012-12-20 18:34 2008-03-5 Show GitHub Exploit DB Packet Storm
229514 4.3 警告 sarg - Sarg におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1168 2012-12-20 18:34 2008-03-5 Show GitHub Exploit DB Packet Storm
229515 10 危険 sarg - Sarg の useragent.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1167 2012-12-20 18:34 2008-03-5 Show GitHub Exploit DB Packet Storm
229516 7.5 危険 phpComasy - phpComasy の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1164 2012-12-20 18:34 2008-03-5 Show GitHub Exploit DB Packet Storm
229517 7.5 危険 phparcadescript - phpArcadeScript の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1163 2012-12-20 18:34 2008-03-5 Show GitHub Exploit DB Packet Storm
229518 7.5 危険 ZyXEL - ZyXEL ZyWALL における権限を取得される脆弱性 CWE-DesignError
CVE-2008-1160 2012-12-20 18:34 2008-03-24 Show GitHub Exploit DB Packet Storm
229519 5.1 警告 The phpMyAdmin Project - phpMyAdmin における SQL インジェクションおよびクロスサイトリクエストフォージェリ攻撃を実行される脆弱性 CWE-352
CWE-89
CVE-2008-1149 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
229520 9.3 危険 synce - SynCE-dccm の vdccm の src/utils.cpp における任意のコマンドを実行される脆弱性 CWE-20
CWE-94
CVE-2008-1136 2012-12-20 18:34 2008-03-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209571 3.8 LOW
Local 		canonical ubuntu_linux The aptdaemon DBus interface disclosed file existence disclosure by setting Terminal/DebconfSocket properties, aka GHSL-2020-192 and GHSL-2020-196. This affected versions prior to 1.1.1+bzr982-0ubunt… CWE-209
Information Exposure Through an Error Message 		CVE-2020-16128 2024-11-21 14:06 2020-12-9 Show GitHub Exploit DB Packet Storm
209572 4.7 MEDIUM
Local 		canonical ubuntu_linux An Ubuntu-specific patch in PulseAudio created a race condition where the snap policy module would fail to identify a client connection from a snap as coming from a snap if SCM_CREDENTIALS were missi… CWE-362
Race Condition 		CVE-2020-16123 2024-11-21 14:06 2020-12-4 Show GitHub Exploit DB Packet Storm
209573 9.8 CRITICAL
Network 		ortussolutions testbox In Ortus TestBox 2.4.0 through 4.1.0, unvalidated query string parameters passed to system/runners/HTMLRunner.cfm allow an attacker to write an arbitrary CFM file (within the application's context) c… CWE-22
Path Traversal 		CVE-2020-15929 2024-11-21 14:06 2020-11-24 Show GitHub Exploit DB Packet Storm
209574 5.3 MEDIUM
Network 		ortussolutions testbox In Ortus TestBox 2.4.0 through 4.1.0, unvalidated query string parameters to test-browser/index.cfm allow directory traversal. CWE-22
Path Traversal 		CVE-2020-15928 2024-11-21 14:06 2020-11-24 Show GitHub Exploit DB Packet Storm
209575 6.1 MEDIUM
Local 		pulseaudio_project pulseaudio Potential double free in Bluez 5 module of PulseAudio could allow a local attacker to leak memory or crash the program. The modargs variable may be freed twice in the fail condition in src/modules/bl… CWE-415
 Double Free 		CVE-2020-15710 2024-11-21 14:06 2020-11-19 Show GitHub Exploit DB Packet Storm
209576 7.5 HIGH
Network 		siemens sinumerik_840d_sl_firmware
simatic_s7-300_cpu_312_firmware
simatic_s7-300_cpu_314_firmware
simatic_s7-300_cpu_315-2_dp_firmware
simatic_s7-300_cpu_315-2_pn_firmware
simatic_s7-300_cpu_… 		A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions), SIMATIC TDC CPU555 (All versions), SINUMERIK 840D sl (All versions). Se… - CVE-2020-15783 2024-11-21 14:06 2020-11-13 Show GitHub Exploit DB Packet Storm
209577 5.5 MEDIUM
Local 		freedesktop accountsservice An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, would perform unbounded read operations on user-controlled ~/.pam_environment f… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-16127 2024-11-21 14:06 2020-11-11 Show GitHub Exploit DB Packet Storm
209578 3.3 LOW
Local 		freedesktop accountsservice An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, improperly dropped the ruid, allowing untrusted users to send signals to Accoun… NVD-CWE-noinfo
CVE-2020-16126 2024-11-21 14:06 2020-11-11 Show GitHub Exploit DB Packet Storm
209579 6.8 MEDIUM
Physics 		gnome gnome_display_manager gdm3 versions before 3.36.2 or 3.38.2 would start gnome-initial-setup if gdm3 can't contact the accountservice service via dbus in a timely manner; on Ubuntu (and potentially derivatives) this could … CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2020-16125 2024-11-21 14:06 2020-11-10 Show GitHub Exploit DB Packet Storm
209580 7.8 HIGH
Local 		packagekit_project
canonical 		packagekit
ubuntu_linux 		PackageKit's apt backend mistakenly treated all local debs as trusted. The apt security model is based on repository trust and not on the contents of individual files. On sites with configured Policy… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2020-16122 2024-11-21 14:06 2020-11-7 Show GitHub Exploit DB Packet Storm