Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229811 7.5 危険 TYPO3 Association - TYPO3 用の autobeuser エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6459 2012-12-20 19:10 2009-03-13 Show GitHub Exploit DB Packet Storm
229812 7.5 危険 walnutstreet - TYPO3 用の cgswigmore エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6457 2012-12-20 19:10 2009-03-13 Show GitHub Exploit DB Packet Storm
229813 9.3 危険 quiksoft - QuikSoft EasyMail MailStore ActiveX コントロールの emmailstore.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-6447 2012-12-20 19:10 2009-03-9 Show GitHub Exploit DB Packet Storm
229814 7.5 危険 yourplace - YourPlace における脆弱性 CWE-287
不適切な認証 		CVE-2008-6445 2012-12-20 19:10 2009-03-9 Show GitHub Exploit DB Packet Storm
229815 7.5 危険 phpkf - phpKF の forum_duzen.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6443 2012-12-20 19:10 2009-03-9 Show GitHub Exploit DB Packet Storm
229816 5.8 警告 sina - Sina Inc. DLoader Class ActiveX コントロールにおける任意のファイルを上書きされる脆弱性 CWE-Other
その他 		CVE-2008-6442 2012-12-20 19:10 2009-03-9 Show GitHub Exploit DB Packet Storm
229817 4.3 警告 phpsqlitecms - phpSQLiteCMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6435 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
229818 7.5 危険 psychostats - PsychoStats における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6422 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
229819 7.5 危険 socialsitegenerator - Social Site Generator の social_game_play.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6421 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
229820 5 警告 socialsitegenerator - Social Site Generator における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2008-6420 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201871 7.2 HIGH
Network 		johnsoncontrols exacqvision_web_service
exacqvision_enterprise_manager 		A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterpr… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-9047 2024-11-21 14:39 2020-06-27 Show GitHub Exploit DB Packet Storm
201872 7.8 HIGH
Local 		google
opensuse 		guest-oslogin
leap 		A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi… CWE-276
Incorrect Default Permissions  		CVE-2020-8933 2024-11-21 14:39 2020-06-22 Show GitHub Exploit DB Packet Storm
201873 7.8 HIGH
Local 		google
opensuse 		guest-oslogin
leap 		A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi… CWE-276
Incorrect Default Permissions  		CVE-2020-8907 2024-11-21 14:39 2020-06-22 Show GitHub Exploit DB Packet Storm
201874 7.8 HIGH
Local 		google
opensuse 		guest-oslogin
leap 		A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi… CWE-276
Incorrect Default Permissions  		CVE-2020-8903 2024-11-21 14:39 2020-06-22 Show GitHub Exploit DB Packet Storm
201875 4.9 MEDIUM
Network 		isc
opensuse
netapp
canonical 		bind
leap
steelstore_cloud_integrated_storage
ubuntu_linux 		An attacker who is permitted to send zone data to a server via zone transfer can exploit this to intentionally trigger the assertion failure with a specially constructed zone, denying service to clie… CWE-617
 Reachable Assertion 		CVE-2020-8618 2024-11-21 14:39 2020-06-18 Show GitHub Exploit DB Packet Storm
201876 4.9 MEDIUM
Network 		isc
fedoraproject
opensuse
debian
canonical
netapp 		bind
fedora
leap
debian_linux
ubuntu_linux
steelstore_cloud_integrated_storage 		In ISC BIND9 versions BIND 9.11.14 -> 9.11.19, BIND 9.14.9 -> 9.14.12, BIND 9.16.0 -> 9.16.3, BIND Supported Preview Edition 9.11.14-S1 -> 9.11.19-S1: Unless a nameserver is providing authoritative s… CWE-404
 Improper Resource Shutdown or Release 		CVE-2020-8619 2024-11-21 14:39 2020-06-18 Show GitHub Exploit DB Packet Storm
201877 6.5 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite through 7.10.3 allows SSRF. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-8544 2024-11-21 14:39 2020-06-16 Show GitHub Exploit DB Packet Storm
201878 7.5 HIGH
Network 		open-xchange open-xchange_appsuite OX App Suite through 7.10.3 has Improper Input Validation. CWE-20
 Improper Input Validation  		CVE-2020-8543 2024-11-21 14:39 2020-06-16 Show GitHub Exploit DB Packet Storm
201879 5.4 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite through 7.10.3 allows XSS. CWE-79
Cross-site Scripting 		CVE-2020-8542 2024-11-21 14:39 2020-06-16 Show GitHub Exploit DB Packet Storm
201880 6.8 MEDIUM
Network 		huawei p30_firmware
p30_pro_firmware
tony-al00b_firmware 		HUAWEI P30;HUAWEI P30 Pro;Tony-AL00B smartphones with versions earlier than 10.1.0.135(C00E135R2P11); versions earlier than 10.1.0.135(C00E135R2P8), versions earlier than 10.1.0.135 have an improper … CWE-287
Improper Authentication 		CVE-2020-9076 2024-11-21 14:39 2020-06-16 Show GitHub Exploit DB Packet Storm