Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229731	7.5	危険	phpraider	-	Simple Machines phpRaider の authentication/smf/smf.functions.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2769	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

229732	3.5	注意	xigla	-	Xigla Poll Manager XE の admin/search.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2768	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

229733	6.5	警告	xigla	-	Xigla Poll Manager XE の search.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2767	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

229734	4.3	警告	xigla	-	Xigla Absolute Image Gallery XE におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2766	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

229735	7.5	危険	xigla	-	Xigla Absolute Image Gallery XE の gallery.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2765	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

229736	3.5	注意	xigla	-	Xigla Absolute Live Support XE の admin/search.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2764	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

229737	6.5	警告	xigla	-	Xigla Absolute Live Support XE の search.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2763	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

229738	6.5	警告	xigla	-	Xigla Absolute Form Processor XE の search.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2762	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

229739	3.5	注意	xigla	-	Xigla Absolute Banner Manager XE におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2761	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

229740	6.5	警告	xigla	-	Xigla Absolute Banner Manager XE の searchbanners.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2760	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201211	4.3	MEDIUM Network	ibm	urbancode_deploy	IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 7.0.3.0, and 7.0.4.0 could disclose sensitive information to an authenticated user that could be used in further attacks against the system. IBM X-Force I…	NVD-CWE-noinfo	CVE-2020-4484	2024-11-21 14:32	2020-11-6	Show	GitHub Exploit DB Packet Storm

201212	4.3	MEDIUM Network	ibm	urbancode_deploy	IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 7.0.3.0, and 7.0.4.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. Thi…	CWE-209 Information Exposure Through an Error Message	CVE-2020-4483	2024-11-21 14:32	2020-11-6	Show	GitHub Exploit DB Packet Storm

201213	6.5	MEDIUM Network	ibm	urbancode_deploy	IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 7.0.3.0, and 7.0.4.0 could allow an authenticated user to bypass security. A user with access to a snapshot could apply unauthorized additional statuses v…	NVD-CWE-noinfo	CVE-2020-4482	2024-11-21 14:32	2020-11-6	Show	GitHub Exploit DB Packet Storm

201214	6.8	MEDIUM Physics	hcltech	notes	In HCL Notes version 9 previous to release 9.0.1 FixPack 10 Interim Fix 8, version 10 previous to release 10.0.1 FixPack 6 and version 11 previous to 11.0.1 FixPack 1, a vulnerability in the input pa…	CWE-120 Classic Buffer Overflow	CVE-2020-4097	2024-11-21 14:32	2020-11-6	Show	GitHub Exploit DB Packet Storm

201215	7.8	HIGH Local	ibm	i2_ibase	IBM i2 iBase 8.9.13 could allow an attacker to upload arbitrary executable files which, when executed by an unsuspecting victim could result in code execution. IBM X-Force ID: 184579.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-4588	2024-11-21 14:32	2020-10-30	Show	GitHub Exploit DB Packet Storm

201216	7.5	HIGH Network	ibm	i2_ibase	IBM i2 iBase 8.9.13 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks…	CWE-209 Information Exposure Through an Error Message	CVE-2020-4584	2024-11-21 14:32	2020-10-30	Show	GitHub Exploit DB Packet Storm

201217	6.5	MEDIUM Network	vmware	horizon_client	VMware Horizon Client for Windows (5.x prior to 5.5.0) contains an information disclosure vulnerability. A malicious attacker with local privileges on the machine where Horizon Client for Windows is …	NVD-CWE-noinfo	CVE-2020-3998	2024-11-21 14:32	2020-10-23	Show	GitHub Exploit DB Packet Storm

201218	5.4	MEDIUM Network	vmware	horizon	VMware Horizon Server (7.x prior to 7.10.3 or 7.13.0) contains a Cross Site Scripting (XSS) vulnerability. Successful exploitation of this issue may allow an attacker to inject malicious script which…	CWE-79 Cross-site Scripting	CVE-2020-3997	2024-11-21 14:32	2020-10-23	Show	GitHub Exploit DB Packet Storm

201219	5.5	MEDIUM Local	vmware	velero	Velero (prior to 1.4.3 and 1.5.2) in some instances doesn’t properly manage volume identifiers which may result in information leakage to unauthorized users.	NVD-CWE-noinfo	CVE-2020-3996	2024-11-21 14:32	2020-10-23	Show	GitHub Exploit DB Packet Storm

201220	5.3	MEDIUM Network	vmware	esxi workstation cloud_foundation fusion	In VMware ESXi (6.7 before ESXi670-201908101-SG, 6.5 before ESXi650-202007101-SG), Workstation (15.x before 15.1.0), Fusion (11.x before 11.1.0), the VMCI host drivers used by VMware hypervisors cont…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2020-3995	2024-11-21 14:32	2020-10-21	Show	GitHub Exploit DB Packet Storm