Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229781	7.5	危険	rianxosencabos cms	-	Rianxosencabos CMS における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-4244	2012-12-20 18:52	2008-09-25	Show	GitHub Exploit DB Packet Storm

229782	7.5	危険	softacid	-	SoftAcid HRS の city.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4204	2012-12-20 18:52	2008-09-24	Show	GitHub Exploit DB Packet Storm

229783	6.9	警告	レッドハット	-	cman の fence_egenera における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4192	2012-12-20 18:52	2008-09-29	Show	GitHub Exploit DB Packet Storm

229784	10	危険	TYPO3 Association	-	TYPO3 Secure Directory エクステンションにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-4188	2012-12-20 18:52	2008-09-23	Show	GitHub Exploit DB Packet Storm

229785	4.3	警告	proactive cms	-	ProActive CMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4187	2012-12-20 18:52	2008-09-23	Show	GitHub Exploit DB Packet Storm

229786	7.5	危険	webcms	-	webCMS Portal Edition の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4186	2012-12-20 18:52	2008-09-23	Show	GitHub Exploit DB Packet Storm

229787	9.3	危険	systemrequirementslab	-	Instant Expert Analysis で使用されている LLC Systems Requirements Lab における強制的にダウンロードされる脆弱性	CWE-94 コード・インジェクション	CVE-2008-4385	2012-12-20 18:52	2008-10-14	Show	GitHub Exploit DB Packet Storm

229788	7.8	危険	サムスン	-	Samsung DVR の Web インターフェースにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-4380	2012-12-20 18:52	2008-10-1	Show	GitHub Exploit DB Packet Storm

229789	4.3	警告	siteman	-	Siteman の search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4365	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

229790	7.8	危険	powerportal	-	PowerPortal におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4361	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214801	7.5	HIGH Network	apache	wicket fortress	By crafting a special URL it is possible to make Wicket deliver unprocessed HTML templates. This would allow an attacker to see possibly sensitive information inside a HTML template that is usually r…	CWE-552 Files or Directories Accessible to External Parties	CVE-2020-11976	2024-11-21 13:59	2020-08-12	Show	GitHub Exploit DB Packet Storm

214802	7.5	HIGH Network	apache netapp canonical opensuse debian fedoraproject oracle	http_server clustered_data_ontap ubuntu_linux leap debian_linux fedora instantis_enterprisetrack hyperion_infrastructure_technology enterprise_manager_ops_center communicat…	Apache HTTP Server versions 2.4.20 to 2.4.43 When trace/debug was enabled for the HTTP/2 module and on certain traffic edge patterns, logging statements were made on the wrong connection, causing con…	CWE-444 HTTP Request Smuggling	CVE-2020-11993	2024-11-21 13:59	2020-08-8	Show	GitHub Exploit DB Packet Storm

214803	5.3	MEDIUM Network	apache	http_server	IP address spoofing when proxying using mod_remoteip and mod_rewrite For configurations using proxying with mod_remoteip and certain mod_rewrite rules, an attacker could spoof their IP address for lo…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2020-11985	2024-11-21 13:59	2020-08-8	Show	GitHub Exploit DB Packet Storm

214804	9.8	CRITICAL Network	apache netapp canonical debian fedoraproject opensuse oracle	http_server clustered_data_ontap ubuntu_linux debian_linux fedora leap instantis_enterprisetrack hyperion_infrastructure_technology enterprise_manager_ops_center communicat…	Apache HTTP server 2.4.32 to 2.4.44 mod_proxy_uwsgi info disclosure and possible RCE	CWE-120 Classic Buffer Overflow	CVE-2020-11984	2024-11-21 13:59	2020-08-8	Show	GitHub Exploit DB Packet Storm

214805	9.8	CRITICAL Network	ivanti	service_manager_heat_remote_control desktop\&server_management	Denial-of-Service (DoS) in Ivanti Service Manager HEAT Remote Control 7.4 due to a buffer overflow in the protocol parser of the ‘HEATRemoteService’ agent. The DoS can be triggered by sending a speci…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-12441	2024-11-21 13:59	2020-08-7	Show	GitHub Exploit DB Packet Storm

214806	7.5	HIGH Network	flexera	flexnet_publisher	An information disclosure vulnerability has been identified in FlexNet Publisher lmadmin.exe 11.14.0.2. The web portal link can be used to access to system files or other important files on the syste…	NVD-CWE-noinfo	CVE-2020-12081	2024-11-21 13:59	2020-08-1	Show	GitHub Exploit DB Packet Storm

214807	7.8	HIGH Local	pi-hole	pi-hole	Pi-hole 4.4 allows a user able to write to /etc/pihole/dns-servers.conf to escalate privileges through command injection (shell metacharacters after an IP address).	CWE-78 OS Command	CVE-2020-12620	2024-11-21 13:59	2020-07-30	Show	GitHub Exploit DB Packet Storm

214808	9.8	CRITICAL Network	trusteddomain fedoraproject debian	opendmarc fedora debian_linux	OpenDMARC through 1.3.2 and 1.4.x through 1.4.0-Beta1 has improper null termination in the function opendmarc_xml_parse that can result in a one-byte heap overflow in opendmarc_xml when parsing a spe…	CWE-787 Out-of-bounds Write	CVE-2020-12460	2024-11-21 13:59	2020-07-28	Show	GitHub Exploit DB Packet Storm

214809	6.8	MEDIUM Adjacent	espressif	esp8266_nonos_sdk esp8266_rtos_sdk esp-idf	An encryption-bypass issue was discovered on Espressif ESP-IDF devices through 4.2, ESP8266_NONOS_SDK devices through 3.0.3, and ESP8266_RTOS_SDK devices through 3.3. Broadcasting forged beacon frame…	CWE-287 CWE-319 Improper Authentication Cleartext Transmission of Sensitive Information	CVE-2020-12638	2024-11-21 13:59	2020-07-24	Show	GitHub Exploit DB Packet Storm

214810	7.3	HIGH Local	phoenixcontact	plcnext_engineer	In PHOENIX CONTACT PLCnext Engineer version 2020.3.1 and earlier an improper path sanitation vulnerability exists on import of project files.	CWE-22 Path Traversal	CVE-2020-12499	2024-11-21 13:59	2020-07-22	Show	GitHub Exploit DB Packet Storm