Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229541	4.3	警告	screwturn	-	ScrewTurn Wiki におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3483	2012-12-20 18:52	2008-08-5	Show	GitHub Exploit DB Packet Storm

229542	2.6	注意	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3457	2012-12-20 18:52	2008-07-28	Show	GitHub Exploit DB Packet Storm

229543	6.4	警告	The phpMyAdmin Project	-	phpMyAdmin におけるなりすましされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-3456	2012-12-20 18:52	2008-07-28	Show	GitHub Exploit DB Packet Storm

229544	4	警告	phpwebgallery	-	PhpWebGallery における他のユーザの電子メールアドレスを取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3451	2012-12-20 18:52	2008-08-4	Show	GitHub Exploit DB Packet Storm

229545	7.5	危険	phpmyrealty	-	PMR の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3445	2012-12-20 18:52	2008-08-4	Show	GitHub Exploit DB Packet Storm

229546	7.5	危険	winzip	-	WinZip における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3442	2012-12-20 18:52	2008-08-1	Show	GitHub Exploit DB Packet Storm

229547	7.5	危険	サン・マイクロシステムズ	-	Sun Java における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3440	2012-12-20 18:52	2008-08-1	Show	GitHub Exploit DB Packet Storm

229548	7.5	危険	speedbit	-	SpeedBit Video Acceleration における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3439	2012-12-20 18:52	2008-08-1	Show	GitHub Exploit DB Packet Storm

229549	7.5	危険	speedbit	-	SpeedBit DAP における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3433	2012-12-20 18:52	2008-08-1	Show	GitHub Exploit DB Packet Storm

229550	5	警告	Vtiger	-	Vtiger CRM におけるメールマージテンプレートを読まれる脆弱性	CWE-200 情報漏えい	CVE-2008-3458	2012-12-20 18:52	2006-09-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209071	6.5	MEDIUM Network	gnu netapp	ncurses active_iq_unified_manager	Buffer Overflow vulnerability in one_one_mapping function in progs/dump_entry.c:1373 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.	CWE-787 Out-of-bounds Write	CVE-2020-19185	2024-11-21 14:09	2023-08-23	Show	GitHub Exploit DB Packet Storm

209072	6.1	MEDIUM Network	jbt	live_\(github-flavored\)_markdown_editor	Cross Site Scripting (XSS) vulnerability in Rendering Engine in jbt Markdown Editor thru commit 2252418c27dffbb35147acd8ed324822b8919477, allows remote attackers to execute arbirary code via crafted …	CWE-79 Cross-site Scripting	CVE-2020-19952	2024-11-21 14:09	2023-08-11	Show	GitHub Exploit DB Packet Storm

209073	9.8	CRITICAL Network	wcms	wcms	Directory Traversal vulnerability found in Cryptoprof WCMS v.0.3.2 allows a remote attacker to execute arbitrary code via the wex/cssjs.php parameter.	CWE-22 Path Traversal	CVE-2020-19902	2024-11-21 14:09	2023-06-28	Show	GitHub Exploit DB Packet Storm

209074	6.1	MEDIUM Network	ipandao	editor.md	Cross Site Scripting (XSS) pandao editor.md 1.5.0 allows attackers to execute arbitrary code via crafted linked url values.	CWE-79 Cross-site Scripting	CVE-2020-19660	2024-11-21 14:09	2023-05-8	Show	GitHub Exploit DB Packet Storm

209075	8.8	HIGH Network	doyocms_project	doyocms	Cross Site Request Forgery vulnerability found in Milken DoyoCMS v.2.3 allows a remote attacker to execute arbitrary code via the background system settings.	CWE-352 Origin Validation Error	CVE-2020-19803	2024-11-21 14:09	2023-04-12	Show	GitHub Exploit DB Packet Storm

209076	9.8	CRITICAL Network	doyocms_project	doyocms	File Upload vulnerability found in Milken DoyoCMS v.2.3 allows a remote attacker to execute arbitrary code via the upload file type parameter.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-19802	2024-11-21 14:09	2023-04-12	Show	GitHub Exploit DB Packet Storm

209077	6.5	MEDIUM Network	monospace	directus	An issue found in Directus API v.2.2.0 allows a remote attacker to cause a denial of service via a great amount of HTTP requests.	CWE-400 Uncontrolled Resource Consumption	CVE-2020-19850	2024-11-21 14:09	2023-04-5	Show	GitHub Exploit DB Packet Storm

209078	6.1	MEDIUM Network	kiftd_project	kiftd	Cross Site Scripting vulnerability found in KOHGYLW Kiftd v.1.0.18 allows a remote attacker to execute arbitrary code via the <ifram> tag in the upload file page.	CWE-79 Cross-site Scripting	CVE-2020-19699	2024-11-21 14:09	2023-04-5	Show	GitHub Exploit DB Packet Storm

209079	6.1	MEDIUM Network	ipandao	editor.md	Cross Site Scripting vulnerability found in Pandao Editor.md v.1.5.0 allows a remote attacker to execute arbitrary code via a crafted script to the editor parameter.	CWE-79 Cross-site Scripting	CVE-2020-19698	2024-11-21 14:09	2023-04-5	Show	GitHub Exploit DB Packet Storm

209080	9.8	CRITICAL Network	nginx	njs	Buffer Overflow found in Nginx NJS allows a remote attacker to execute arbitrary code via the njs_object_property parameter of the njs/njs_vm.c function.	CWE-120 Classic Buffer Overflow	CVE-2020-19695	2024-11-21 14:09	2023-04-5	Show	GitHub Exploit DB Packet Storm