Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229691 7.5 危険 toursmanager - ToursManager の tourview.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6303 2012-12-20 19:10 2009-02-26 Show GitHub Exploit DB Packet Storm
229692 7.5 危険 turnkeyforms - TurnkeyForms Local Classifieds における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6302 2012-12-20 19:10 2009-02-26 Show GitHub Exploit DB Packet Storm
229693 7.5 危険 prezmo - phpBB 用の Small ShoutBox モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6301 2012-12-20 19:10 2009-02-26 Show GitHub Exploit DB Packet Storm
229694 7.5 危険 toursmanager - Tours Manager の cityview.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6289 2012-12-20 19:10 2009-02-26 Show GitHub Exploit DB Packet Storm
229695 4.3 警告 subtextproject - Subtext におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6283 2012-12-20 19:10 2009-02-25 Show GitHub Exploit DB Packet Storm
229696 7.8 危険 rakhisoftware - RakhiSoftware Price Comparison Script における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-6279 2012-12-20 19:10 2009-02-25 Show GitHub Exploit DB Packet Storm
229697 4.3 警告 rakhisoftware - RakhiSoftware Price Comparison Script の product.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6278 2012-12-20 19:10 2009-02-25 Show GitHub Exploit DB Packet Storm
229698 7.5 危険 rakhisoftware - RakhiSoftware Price Comparison Script の product.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6277 2012-12-20 19:10 2009-02-25 Show GitHub Exploit DB Packet Storm
229699 6.8 警告 tbmnet - TBmnetCMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6271 2012-12-20 19:10 2009-02-25 Show GitHub Exploit DB Packet Storm
229700 7.5 危険 sadi samami - WEBBDOMAIN Multi Languages WebShop Online の detail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6268 2012-12-20 19:10 2009-02-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
202201 9.8 CRITICAL
Network 		infomark iml500_firmware
iml520_firmware 		An issue was discovered on KT Slim egg IML500 (R7283, R8112, R8424) and IML520 (R8112, R8368, R8411) wifi device. This issue is a command injection allowing attackers to execute arbitrary OS commands. CWE-78
OS Command  		CVE-2020-7805 2024-11-21 14:37 2020-05-8 Show GitHub Exploit DB Packet Storm
202202 8.8 HIGH
Network 		imgtech zoneplayer IMGTech Co,Ltd ZInsX.ocx ActiveX Control in Zoneplayer 2.0.1.3, version 2.0.1.4 and prior versions on Windows. File Donwload vulnerability in ZInsX.ocx of IMGTech Co,Ltd Zoneplayer allows attacker to… NVD-CWE-noinfo
CVE-2020-7803 2024-11-21 14:37 2020-05-8 Show GitHub Exploit DB Packet Storm
202203 9.8 CRITICAL
Network 		curlrequest_project curlrequest curlrequest through 1.0.1 allows reading any file by populating the file parameter with user input. CWE-78
OS Command  		CVE-2020-7646 2024-11-21 14:37 2020-05-8 Show GitHub Exploit DB Packet Storm
202204 7.5 HIGH
Network 		citrix sharefile_storagezones_controller In certain situations, all versions of Citrix ShareFile StorageZones (aka storage zones) Controller, including the most recent 5.10.x releases as of May 2020, allow unauthenticated attackers to acces… CWE-22
Path Traversal 		CVE-2020-7473 2024-11-21 14:37 2020-05-7 Show GitHub Exploit DB Packet Storm
202205 9.8 CRITICAL
Network 		tobesoft xplatform Tobesoft Xplatform 9.2.2.250 and earlier version have an arbitrary code execution vulnerability by using method supported by Xplatform ActiveX Control. It allows attacker to cause remote code executi… CWE-494
 Download of Code Without Integrity Check 		CVE-2020-7806 2024-11-21 14:37 2020-05-6 Show GitHub Exploit DB Packet Storm
202206 9.8 CRITICAL
Network 		google chrome-launcher All versions of chrome-launcher allow execution of arbitrary commands, by controlling the $HOME environment variable in Linux operating systems. CWE-78
OS Command  		CVE-2020-7645 2024-11-21 14:37 2020-05-3 Show GitHub Exploit DB Packet Storm
202207 8.8 HIGH
Network 		netfortris trixbox An OS Command Injection vulnerability in the endpoint_devicemap.php component of Fonality Trixbox Community Edition allows an attacker to execute commands on the underlying operating system as the "a… CWE-78
OS Command  		CVE-2020-7351 2024-11-21 14:37 2020-05-2 Show GitHub Exploit DB Packet Storm
202208 7.2 HIGH
Network 		handysoft groupware ActiveX Control(HShell.dll) in Handy Groupware 1.7.3.1 for Windows 7, 8, and 10 allows an attacker to execute arbitrary command via the ShellExec method. CWE-78
OS Command  		CVE-2020-7804 2024-11-21 14:37 2020-04-30 Show GitHub Exploit DB Packet Storm
202209 6.0 MEDIUM
Local 		freebsd freebsd In FreeBSD 12.1-STABLE before r359021, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before r359020, and 11.3-RELEASE before 11.3-RELEASE-p7, a missing null termination check in the jail_set confi… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2020-7453 2024-11-21 14:37 2020-04-29 Show GitHub Exploit DB Packet Storm
202210 9.1 CRITICAL
Network 		freebsd freebsd In FreeBSD 12.1-STABLE before r357490, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before r357489, and 11.3-RELEASE before 11.3-RELEASE-p7, incorrect use of a user-controlled pointer in the epai… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2020-7452 2024-11-21 14:37 2020-04-29 Show GitHub Exploit DB Packet Storm