Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229671 7.5 危険 xigla - Absolute Banner Manager .NET における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6858 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
229672 7.5 危険 xigla - Absolute Podcast .NET における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6857 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
229673 7.5 危険 xigla - Xigla Software Absolute News Manager.NET における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6856 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
229674 7.5 危険 xigla - Xigla Software Absolute News Feed における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6855 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
229675 7.5 危険 xigla - Xigla Software Absolute FAQ Manager.NET における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6854 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
229676 4.3 警告 PHP-Fusion - PHP-Fusion の messages.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6850 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
229677 6.8 警告 w2b - phpGreetCards の index.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6849 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
229678 4.3 警告 w2b - phpGreetCards の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6848 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
229679 4.3 警告 PreProject.com - Pre ASP Job Board の Employee/emp_login.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6847 2012-12-20 19:10 2009-07-2 Show GitHub Exploit DB Packet Storm
229680 6.8 警告 Pluck CMS - Pluck の data/modules/blog/module_pages_site.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6842 2012-12-20 19:10 2009-07-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208461 7.8 HIGH
Local 		uclouvain
fedoraproject
debian 		openjpeg
fedora
debian_linux 		A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to co… CWE-787
CWE-120
 Out-of-bounds Write
Classic Buffer Overflow 		CVE-2020-27823 2024-11-21 14:21 2021-05-14 Show GitHub Exploit DB Packet Storm
208462 5.5 MEDIUM
Local 		uclouvain
redhat
fedoraproject
debian 		openjpeg
enterprise_linux
fedora
debian_linux 		A flaw was found in OpenJPEG’s encoder in the opj_dwt_calc_explicit_stepsizes() function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow.… CWE-125
Out-of-bounds Read 		CVE-2020-27824 2024-11-21 14:21 2021-05-13 Show GitHub Exploit DB Packet Storm
208463 7.5 HIGH
Network 		samba
debian
fedoraproject 		samba
debian_linux
fedora 		A flaw was found in samba. Spaces used in a string around a domain name (DN), while supposed to be ignored, can cause invalid DN strings with spaces to instead write a zero-byte into out-of-bounds me… - CVE-2020-27840 2024-11-21 14:21 2021-05-13 Show GitHub Exploit DB Packet Storm
208464 7.8 HIGH
Local 		windscribe windscribe All versions of Windscribe VPN for Mac and Windows <= v2.02.10 contain a local privilege escalation vulnerability in the WindscribeService component. A low privilege user could leverage several openv… CWE-269
 Improper Privilege Management 		CVE-2020-27518 2024-11-21 14:21 2021-05-4 Show GitHub Exploit DB Packet Storm
208465 7.8 HIGH
Local 		pritunl pritunl-client-electron Pritunl Client v1.2.2550.20 contains a local privilege escalation vulnerability in the pritunl-service component. The attack vector is: malicious openvpn config. A local attacker could leverage the l… CWE-269
 Improper Privilege Management 		CVE-2020-27519 2024-11-21 14:21 2021-04-30 Show GitHub Exploit DB Packet Storm
208466 7.5 HIGH
Network 		aviatrix openvpn Arbitrary File Write exists in Aviatrix VPN Client 2.8.2 and earlier. The VPN service writes logs to a location that is world writable and can be leveraged to gain write access to any file on the sys… CWE-276
Incorrect Default Permissions  		CVE-2020-27569 2024-11-21 14:21 2021-04-22 Show GitHub Exploit DB Packet Storm
208467 7.5 HIGH
Network 		aviatrix controller Insecure File Permissions exist in Aviatrix Controller 5.3.1516. Several world writable files and directories were found in the controller resource. Note: All Aviatrix appliances are fully encrypted.… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-27568 2024-11-21 14:21 2021-04-22 Show GitHub Exploit DB Packet Storm
208468 7.4 HIGH
Network 		siemens simotics_connect_400_firmware
nucleus_net
nucleus_source_code
nucleus_readystart_v3
nucleus_readystart_v4 		A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2020-27738 2024-11-21 14:21 2021-04-23 Show GitHub Exploit DB Packet Storm
208469 6.5 MEDIUM
Network 		siemens simotics_connect_400_firmware
nucleus_net
nucleus_source_code
nucleus_readystart_v3
nucleus_readystart_v4 		A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5… CWE-125
Out-of-bounds Read 		CVE-2020-27737 2024-11-21 14:21 2021-04-23 Show GitHub Exploit DB Packet Storm
208470 6.5 MEDIUM
Network 		siemens nucleus_net
nucleus_source_code
nucleus_readystart_v3
nucleus_readystart_v4
simotics_connect_400_firmware 		A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5… CWE-125
Out-of-bounds Read 		CVE-2020-27736 2024-11-21 14:21 2021-04-23 Show GitHub Exploit DB Packet Storm