Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229781 7.5 危険 prozilla - Prozilla Entertainers の directory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1788 2012-12-20 18:52 2008-04-15 Show GitHub Exploit DB Packet Storm
229782 4.3 警告 poplar gedcom viewer - Poplar Gedcom Viewer の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1787 2012-12-20 18:52 2008-04-15 Show GitHub Exploit DB Packet Storm
229783 5.5 警告 prozilla - Prozilla Top 100 の delete.php における統計情報を削除される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-1785 2012-12-20 18:52 2008-04-15 Show GitHub Exploit DB Packet Storm
229784 7.5 危険 prozilla - Prozilla Topsites における管理操作を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1784 2012-12-20 18:52 2008-04-15 Show GitHub Exploit DB Packet Storm
229785 6.4 警告 prozilla - Prozilla Reviews における任意のユーザを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1783 2012-12-20 18:52 2008-04-15 Show GitHub Exploit DB Packet Storm
229786 6.8 警告 phpblock - PhpBlock の modules/basicfog/basicfogfactory.class.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1776 2012-12-20 18:52 2008-04-14 Show GitHub Exploit DB Packet Storm
229787 7.5 危険 Pligg - Pligg の editlink.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1774 2012-12-20 18:52 2008-04-14 Show GitHub Exploit DB Packet Storm
229788 6.8 警告 VideoLAN - VLC におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-1769 2012-12-20 18:52 2008-04-13 Show GitHub Exploit DB Packet Storm
229789 6.8 警告 VideoLAN - VLC における整数オーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1768 2012-12-20 18:52 2008-04-13 Show GitHub Exploit DB Packet Storm
229790 10 危険 phpBB - phpBB における脆弱性 CWE-noinfo
情報不足 		CVE-2008-1766 2012-12-20 18:52 2008-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209411 6.1 MEDIUM
Network 		synacor zimbra_collaboration_suite A reflected cross-site scripting (XSS) vulnerability in the zimbraAdmin/public/secureRequest.jsp component of Zimbra Collaboration 8.8.12 allows unauthenticated attackers to execute arbitrary web scr… CWE-79
Cross-site Scripting 		CVE-2020-18984 2024-11-21 14:08 2021-12-16 Show GitHub Exploit DB Packet Storm
209412 6.1 MEDIUM
Network 		zzcms zzcms Cross Site Scripting (XSS) vulnerability exists in zzcms 2019 XSS via a modify action in user/adv.php. CWE-79
Cross-site Scripting 		CVE-2020-19042 2024-11-21 14:08 2021-12-14 Show GitHub Exploit DB Packet Storm
209413 7.5 HIGH
Network 		php-cms_project php-cms PHP-CMS v1.0 was discovered to contain a SQL injection vulnerability in the component search.php via the search parameter. This vulnerability allows attackers to access sensitive database information. CWE-89
SQL Injection 		CVE-2020-18263 2024-11-21 14:08 2021-11-4 Show GitHub Exploit DB Packet Storm
209414 9.8 CRITICAL
Network 		ed01-cms_project ed01-cms ED01-CMS v1.0 was discovered to contain a SQL injection in the component cposts.php via the cid parameter. CWE-89
SQL Injection 		CVE-2020-18262 2024-11-21 14:08 2021-11-4 Show GitHub Exploit DB Packet Storm
209415 9.8 CRITICAL
Network 		ed01-cms_project ed01-cms An arbitrary file upload vulnerability in the image upload function of ED01-CMS v1.0 allows attackers to execute arbitrary commands. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-18261 2024-11-21 14:08 2021-11-4 Show GitHub Exploit DB Packet Storm
209416 6.1 MEDIUM
Network 		ed01-cms_project ed01-cms ED01-CMS v1.0 was discovered to contain a reflective cross-site scripting (XSS) vulnerability in the component sposts.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML… CWE-79
Cross-site Scripting 		CVE-2020-18259 2024-11-21 14:08 2021-11-4 Show GitHub Exploit DB Packet Storm
209417 9.8 CRITICAL
Network 		phpok phpok Buffer overflow vulnerability in framework/init.php in qinggan phpok 5.1, allows attackers to execute arbitrary code. CWE-120
Classic Buffer Overflow 		CVE-2020-18440 2024-11-21 14:08 2021-11-3 Show GitHub Exploit DB Packet Storm
209418 9.1 CRITICAL
Network 		phpok phpok An issue was discoverered in in function edit_save_f in framework/admin/tpl_control.php in qinggan phpok 5.1, allows attackers to write arbitrary files or get a shell. NVD-CWE-noinfo
CVE-2020-18439 2024-11-21 14:08 2021-11-3 Show GitHub Exploit DB Packet Storm
209419 7.5 HIGH
Network 		phpok phpok Directory traversal vulnerability in qinggan phpok 5.1, allows attackers to disclose sensitive information, via the title parameter to admin.php. CWE-22
Path Traversal 		CVE-2020-18438 2024-11-21 14:08 2021-11-3 Show GitHub Exploit DB Packet Storm
209420 5.3 MEDIUM
Network 		liftoffsoftware gate_one An issue in Gate One 1.2.0 allows attackers to bypass to the verification check done by the origins list and connect to Gate One instances used by hosts not on the origins list. CWE-290
 Authentication Bypass by Spoofing 		CVE-2020-19003 2024-11-21 14:08 2021-10-6 Show GitHub Exploit DB Packet Storm