Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229821 7.5 危険 TYPO3 Association - TYPO3 用の JobControl エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4658 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229822 7.5 危険 TYPO3 Association - TYPO3 用の Econda エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4657 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229823 7.5 危険 TYPO3 Association - TYPO3 用の Frontend Users View エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4656 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229824 7.5 危険 TYPO3 Association - TYPO3 用の Simple survey エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4655 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229825 9.3 危険 VideoLAN - VLC Media Player の Ty demux プラグインにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4654 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229826 7.5 危険 XOOPS - XOOPS 用の Makale モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4653 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229827 7.5 危険 sweetcms - sweetCMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4647 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229828 2.1 注意 ウェブセンス - Websense Enterprise の Websense Reporter Module におけるデータベースへの権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-4646 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229829 9 危険 phpwebgallery - PhpWebGallery の plugins/event_tracer/event_list.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4645 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
229830 10 危険 Matthias Wandel - Matthias Wandel jhead の jhead.c における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4641 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214851 6.8 MEDIUM
Physics 		apexmic apm32f103_firmware Apex Microelectronics APM32F103 devices allow physical attackers to execute arbitrary code via a power glitch and a specific flash patch/breakpoint unit configuration. NVD-CWE-noinfo
CVE-2020-13471 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
214852 4.6 MEDIUM
Physics 		gigadevice gd32f103_firmware
gd32f130_firmware 		Gigadevice GD32F103 and GD32F130 devices allow physical attackers to extract data via the probing of easily accessible bonding wires and de-obfuscation of the observed data. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2020-13470 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
214853 4.6 MEDIUM
Physics 		gigadevice gd32vf103_firmware The flash memory readout protection in Gigadevice GD32VF103 devices allows physical attackers to extract firmware via the debug interface by utilizing the CPU. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2020-13469 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
214854 6.8 MEDIUM
Physics 		gigadevice gd32f130_firmware Gigadevice GD32F130 devices allow physical attackers to escalate their debug interface permissions via fault injection into inter-IC bonding wires (which have insufficient physical protection). CWE-276
Incorrect Default Permissions  		CVE-2020-13468 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
214855 4.6 MEDIUM
Physics 		cksic cks32f103_firmware The flash memory readout protection in China Key Systems & Integrated Circuit CKS32F103 devices allows physical attackers to extract firmware via the debug interface and exception handling. CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-13467 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
214856 6.8 MEDIUM
Physics 		st stm32f103_firmware STMicroelectronics STM32F103 devices through 2020-05-20 allow physical attackers to execute arbitrary code via a power glitch and a specific flash patch/breakpoint unit configuration. NVD-CWE-noinfo
CVE-2020-13466 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
214857 6.8 MEDIUM
Physics 		gigadevice gd32f103_firmware The security protection in Gigadevice GD32F103 devices allows physical attackers to redirect the control flow and execute arbitrary code via the debug interface. CWE-20
 Improper Input Validation  		CVE-2020-13465 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
214858 4.2 MEDIUM
Physics 		cksic cks32f103_firmware The flash memory readout protection in China Key Systems & Integrated Circuit CKS32F103 devices allows physical attackers to extract firmware via the debug interface by utilizing the CPU or DMA modul… CWE-862
 Missing Authorization 		CVE-2020-13464 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
214859 4.6 MEDIUM
Physics 		apexmic apm32f103_firmware The flash memory readout protection in Apex Microelectronics APM32F103 devices allows physical attackers to extract firmware via the debug interface and exception handling. CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-13463 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
214860 6.1 MEDIUM
Network 		o-dyn collabtive An issue was discovered in Collabtive 3.0 and later. managefile.php is vulnerable to XSS: when the action parameter is set to movefile and the id parameter corresponds to a project the current user h… CWE-79
Cross-site Scripting 		CVE-2020-13655 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm