Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229671 6.5 警告 xchangeboard - XchangeBoard の newThread.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3035 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
229672 7.5 危険 rss aggregator - RSS-aggregator における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3034 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
229673 9.3 危険 rss aggregator - RSS-aggregator における admin 関数へアクセスされ脆弱性 CWE-287
不適切な認証 		CVE-2008-3033 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
229674 4.3 警告 The phpMyAdmin Project - TYPO3 用の phpMyAdmin エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3032 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
229675 7.5 危険 Thomas Abeel - Simple PHP Agenda の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3031 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
229676 4.3 警告 Web-Empowered Church Team - TYPO3 用の WEC Discussion Forum エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3029 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
229677 4.3 警告 TYPO3 Association - TYPO3 用の Send-A-Card エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3028 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
229678 7.5 危険 vangogh web cms - VanGogh Web CMS の get_article.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3027 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
229679 7.5 危険 plx web studio - plx Ad Trader の ad.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3025 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
229680 6.9 警告 QNX Software Systems - QNX Momentics の phgrafx におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3024 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209241 9.8 CRITICAL
Network 		niushop niushop Niushop B2B2C Multi-business basic version V1.11, can bypass the administrator to obtain the background upload interface, through parameter upload, bypass the getimagesize function, upload php file, … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-19672 2024-11-21 14:09 2020-10-1 Show GitHub Exploit DB Packet Storm
209242 4.9 MEDIUM
Network 		niushop niushop In Niushop B2B2C Multi-Business Basic Edition V1.11, authentication can be bypassed, causing administrators to reset any passwords. CWE-306
Missing Authentication for Critical Function 		CVE-2020-19670 2024-11-21 14:09 2020-10-1 Show GitHub Exploit DB Packet Storm
209243 7.5 HIGH
Network 		jdownloads jdownloads SQL injection exists in the jdownloads 3.2.63 component for Joomla! via components/com_jdownloads/helpers/categories.php, order function via the filter_order parameter. CWE-89
SQL Injection 		CVE-2020-19455 2024-11-21 14:09 2020-09-26 Show GitHub Exploit DB Packet Storm
209244 7.5 HIGH
Network 		jdownloads jdownloads SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, updateLog function via the X-forwarded-for Header parameter. CWE-89
SQL Injection 		CVE-2020-19451 2024-11-21 14:09 2020-09-26 Show GitHub Exploit DB Packet Storm
209245 7.5 HIGH
Network 		jdownloads jdownloads SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, getUserLimits function in the list parameter. CWE-89
SQL Injection 		CVE-2020-19450 2024-11-21 14:09 2020-09-26 Show GitHub Exploit DB Packet Storm
209246 7.5 HIGH
Network 		jdownloads jdownloads SQL injection exists in the jdownloads 3.2.63 component for Joomla! com_jdownloads/models/send.php via the f_marked_files_id parameter. CWE-89
SQL Injection 		CVE-2020-19447 2024-11-21 14:09 2020-09-25 Show GitHub Exploit DB Packet Storm
209247 6.6 MEDIUM
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		<p>An elevation of privilege vulnerability exists when the Microsoft Store Runtime improperly handles memory.</p> <p>To exploit this vulnerability, an attacker would first have to gain execution on t… NVD-CWE-noinfo
CVE-2020-1146 2024-11-21 14:09 2020-09-12 Show GitHub Exploit DB Packet Storm
209248 9.9 CRITICAL
Network 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulner… CWE-494
 Download of Code Without Integrity Check 		CVE-2020-1210 2024-11-21 14:09 2020-09-12 Show GitHub Exploit DB Packet Storm
209249 4.6 MEDIUM
Network 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		<p>A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploi… NVD-CWE-noinfo
CVE-2020-1205 2024-11-21 14:09 2020-09-12 Show GitHub Exploit DB Packet Storm
209250 8.6 HIGH
Network 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulner… CWE-494
 Download of Code Without Integrity Check 		CVE-2020-1200 2024-11-21 14:09 2020-09-12 Show GitHub Exploit DB Packet Storm