Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229791	6.8	警告	xomol	-	Xomol CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2484	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

229792	6.8	警告	xomol	-	Xomol CMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2483	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

229793	10	危険	phpraider	-	phpRaider の authentication/phpbb3/phpbb3.functions.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2481	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

229794	10	危険	plusphp	-	plusPHP Short URL Multi-User Script の plus.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2480	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

229795	7.5	危険	vBulletin Solutions, Inc.	-	vBulletin Gold の faq.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2460	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

229796	7.5	危険	phpclassifiedsscript	-	PHP Classifieds Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2453	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

229797	4.3	警告	TYPO3 Association	-	TYPO3 用の Questionaire エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2452	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

229798	7.5	危険	TYPO3 Association	-	TYPO3 用の Statistics エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2451	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

229799	4.3	警告	TYPO3 Association	-	TYPO3 用の Statistics エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2450	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

229800	7.5	危険	wgcc	-	WGCC における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2446	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201221	4.8	MEDIUM Network	codologic	codoforum	Codoforum 4.8.3 allows XSS in the admin dashboard via a name field of a new user, i.e., on the Manage Users screen.	CWE-79 Cross-site Scripting	CVE-2020-5305	2024-11-21 14:33	2020-01-6	Show	GitHub Exploit DB Packet Storm

201222	7.1	HIGH Network	python debian canonical fedoraproject	pillow debian_linux ubuntu_linux fedora	libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow.	CWE-125 Out-of-bounds Read	CVE-2020-5313	2024-11-21 14:33	2020-01-3	Show	GitHub Exploit DB Packet Storm

201223	9.8	CRITICAL Network	python canonical debian fedoraproject	pillow ubuntu_linux debian_linux fedora	libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow.	CWE-120 Classic Buffer Overflow	CVE-2020-5312	2024-11-21 14:33	2020-01-3	Show	GitHub Exploit DB Packet Storm

201224	9.8	CRITICAL Network	python debian canonical fedoraproject	pillow debian_linux ubuntu_linux fedora	libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.	CWE-120 Classic Buffer Overflow	CVE-2020-5311	2024-11-21 14:33	2020-01-3	Show	GitHub Exploit DB Packet Storm

201225	8.8	HIGH Network	python canonical fedoraproject	pillow ubuntu_linux fedora	libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc.	CWE-190 Integer Overflow or Wraparound	CVE-2020-5310	2024-11-21 14:33	2020-01-3	Show	GitHub Exploit DB Packet Storm

201226	7.2	HIGH Network	comtechtel	stampede_fx-1010_firmware	Comtech Stampede FX-1010 7.4.3 devices allow remote authenticated administrators to execute arbitrary OS commands by navigating to the Diagnostics Ping page and entering shell metacharacters in the T…	CWE-78 OS Command	CVE-2020-5179	2024-11-21 14:33	2020-01-2	Show	GitHub Exploit DB Packet Storm

201227	3.3	LOW Local	ibm	financial_transaction_manager	IBM Financial Transaction Manager for High Value Payments for Multi-Platform 3.2.0 through 3.2.10 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force I…	NVD-CWE-noinfo	CVE-2020-4556	2024-11-21 14:32	2023-03-16	Show	GitHub Exploit DB Packet Storm

201228	5.9	MEDIUM Network	ibm	spectrum_protect_plus	IBM Spectrum Protect Plus 10.1.0 through 10.1.12 discloses sensitive information due to unencrypted data being used in the communication flow between Spectrum Protect Plus vSnap and its agents. An a…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-4497	2024-11-21 14:32	2022-12-15	Show	GitHub Exploit DB Packet Storm

201229	7.5	HIGH Network	hcltech	verse	The application was signed using a key length less than or equal to 1024 bits, making it potentially vulnerable to forged digital signatures. An attacker could forge the same digital signature of the…	CWE-326 Inadequate Encryption Strength	CVE-2020-4099	2024-11-21 14:32	2022-11-2	Show	GitHub Exploit DB Packet Storm

201230	6.5	MEDIUM Network	ibm netapp	cognos_analytics oncommand_insight	IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that th…	CWE-352 Origin Validation Error	CVE-2020-4301	2024-11-21 14:32	2022-09-2	Show	GitHub Exploit DB Packet Storm