Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229631	10	危険	トレンドマイクロ	-	Trend Micro OfficeScan のサーバにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-3862	2012-12-20 18:52	2008-10-22	Show	GitHub Exploit DB Packet Storm

229632	7.5	危険	phpmyrealty	-	phpMyRealty PMR における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3861	2012-12-20 18:52	2008-08-29	Show	GitHub Exploit DB Packet Storm

229633	5	警告	Pluck CMS	-	Windows 上で稼動する Pluck CMS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3851	2012-12-20 18:52	2008-08-27	Show	GitHub Exploit DB Packet Storm

229634	4.9	警告	レッドハット	-	Fedora 上で稼動している Linux カーネルの utrace サブシステム用の特定の Fedora パッチにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-3832	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

229635	5	警告	swfdec	-	Swfdec におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3796	2012-12-20 18:52	2008-08-27	Show	GitHub Exploit DB Packet Storm

229636	6.8	警告	VideoLAN	-	VLC Media Player の modules/access/mms/mmstu.c 関数における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2008-3794	2012-12-20 18:52	2008-08-26	Show	GitHub Exploit DB Packet Storm

229637	6.8	警告	PicturesPro	-	PICTURESPRO Photo Cart における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3788	2012-12-20 18:52	2008-08-26	Show	GitHub Exploit DB Packet Storm

229638	4.3	警告	PicturesPro	-	PICTURESPRO Photo Cart の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3786	2012-12-20 18:52	2008-08-26	Show	GitHub Exploit DB Packet Storm

229639	7.5	危険	review-script	-	Five Star Review Script の recommend.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3780	2012-12-20 18:52	2008-08-26	Show	GitHub Exploit DB Packet Storm

229640	4.3	警告	review-script	-	Five Star Review Script の search/index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3779	2012-12-20 18:52	2008-08-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209011	7.8	HIGH Local	microsoft	windows_10 windows_server_2016 visual_studio windows_server_2019 visual_studio_2019 visual_studio_2017	An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly handles file operations, aka 'Diagnostics Hub Standard Collector Elevation of Privilege V…	NVD-CWE-noinfo	CVE-2020-1257	2024-11-21 14:10	2020-06-10	Show	GitHub Exploit DB Packet Storm

209012	8.8	HIGH Network	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) IIS module improperly handles uploaded content, aka 'Windows Background Intelligent Tran…	NVD-CWE-noinfo	CVE-2020-1255	2024-11-21 14:10	2020-06-10	Show	GitHub Exploit DB Packet Storm

209013	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists when Windows Modules Installer Service improperly handles class object members.A locally authenticated attacker could run arbitrary code with elevated s…	NVD-CWE-noinfo	CVE-2020-1254	2024-11-21 14:10	2020-06-10	Show	GitHub Exploit DB Packet Storm

209014	6.7	MEDIUM Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE I…	NVD-CWE-noinfo	CVE-2020-1253	2024-11-21 14:10	2020-06-10	Show	GitHub Exploit DB Packet Storm

209015	6.7	MEDIUM Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE I…	NVD-CWE-noinfo	CVE-2020-1251	2024-11-21 14:10	2020-06-10	Show	GitHub Exploit DB Packet Storm

209016	8.8	HIGH Network	microsoft	windows_server_2016 windows_10	A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.	NVD-CWE-noinfo	CVE-2020-1248	2024-11-21 14:10	2020-06-10	Show	GitHub Exploit DB Packet Storm

209017	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE I…	NVD-CWE-noinfo	CVE-2020-1247	2024-11-21 14:10	2020-06-10	Show	GitHub Exploit DB Packet Storm

209018	7.1	HIGH Local	microsoft	windows_server_2019 windows_10 windows_server_2016	A denial of service vulnerability exists when Connected User Experiences and Telemetry Service improperly handles file operations, aka 'Connected User Experiences and Telemetry Service Denial of Serv…	NVD-CWE-noinfo	CVE-2020-1244	2024-11-21 14:10	2020-06-10	Show	GitHub Exploit DB Packet Storm

209019	5.3	MEDIUM Network	microsoft	edge	An information disclosure vulnerability exists in the way that Microsoft Edge handles cross-origin requests, aka 'Microsoft Edge Information Disclosure Vulnerability'.	NVD-CWE-noinfo	CVE-2020-1242	2024-11-21 14:10	2020-06-10	Show	GitHub Exploit DB Packet Storm

209020	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique fro…	NVD-CWE-noinfo	CVE-2020-1246	2024-11-21 14:10	2020-06-10	Show	GitHub Exploit DB Packet Storm