Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229851	7.5	危険	phpmygallery	-	PHPmyGallery の _conf/_php-core/common-tpl-vars.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6318	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

229852	6.8	警告	phpmygallery	-	PHPmyGallery の _conf/_php-core/common-tpl-vars.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6317	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

229853	6.8	警告	phpmygallery	-	PHPmyGallery の _conf/core/common-tpl-vars.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6316	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

229854	7.5	危険	phpmygallery	-	PHPmyGallery の _conf/core/common-tpl-vars.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6315	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

229855	7.5	危険	phpBB	-	phpBB 用の Tag Board モジュールの tag_board.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6314	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

229856	7.5	危険	w3matter	-	W3matter RevSense の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6310	2012-12-20 19:10	2009-02-26	Show	GitHub Exploit DB Packet Storm

229857	7.5	危険	w3matter	-	W3matter AskPert の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6309	2012-12-20 19:10	2009-02-26	Show	GitHub Exploit DB Packet Storm

229858	5.1	警告	PunBB	-	PunBB 用の PMS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6308	2012-12-20 19:10	2009-02-26	Show	GitHub Exploit DB Packet Storm

229859	4.3	警告	SoftbizScripts	-	Softbiz Classifieds Script の signinform.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6306	2012-12-20 19:10	2009-02-26	Show	GitHub Exploit DB Packet Storm

229860	7.5	危険	toursmanager	-	ToursManager の tourview.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6303	2012-12-20 19:10	2009-02-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
202061	7.8	HIGH Local	foxitsoftware	reader phantompdf	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.7.0.29455. User interaction is required to exploit this vulnerability in that the targ…	CWE-787 Out-of-bounds Write	CVE-2020-8847	2024-11-21 14:39	2020-02-15	Show	GitHub Exploit DB Packet Storm

202062	7.8	HIGH Local	foxitsoftware	reader phantompdf	This vulnerability allows remote atackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.6.0.25114. User interaction is required to exploit this vulnerability in that the t…	CWE-416 Use After Free	CVE-2020-8846	2024-11-21 14:39	2020-02-15	Show	GitHub Exploit DB Packet Storm

202063	7.8	HIGH Local	foxitsoftware	reader phantompdf	This vulnerability allows remote atackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.6.0.25114. User interaction is required to exploit this vulnerability in that the t…	CWE-416 Use After Free	CVE-2020-8845	2024-11-21 14:39	2020-02-15	Show	GitHub Exploit DB Packet Storm

202064	7.8	HIGH Local	foxitsoftware	reader phantompdf	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.6.0.25114. User interaction is required to exploit this vulnerability in that the targ…	CWE-190 Integer Overflow or Wraparound	CVE-2020-8844	2024-11-21 14:39	2020-02-15	Show	GitHub Exploit DB Packet Storm

202065	8.8	HIGH Network	progess progress	moveit_transfer	In Progress MOVEit Transfer 2019.1 before 2019.1.4 and 2019.2 before 2019.2.1, multiple SQL Injection vulnerabilities have been found in the REST API that could allow an authenticated attacker to gai…	CWE-89 SQL Injection	CVE-2020-8611	2024-11-21 14:39	2020-02-15	Show	GitHub Exploit DB Packet Storm

202066	5.5	MEDIUM Local	linux canonical opensuse netapp	linux_kernel ubuntu_linux leap cloud_backup steelstore_cloud_integrated_storage data_availability_services solidfire hci_management_node active_iq_unified_manager h410c_fir…	ext4_protect_reserved_inode in fs/ext4/block_validity.c in the Linux kernel through 5.5.3 allows attackers to cause a denial of service (soft lockup) via a crafted journal size.	CWE-400 CWE-834 Uncontrolled Resource Consumption Excessive Iteration	CVE-2020-8992	2024-11-21 14:39	2020-02-14	Show	GitHub Exploit DB Packet Storm

202067	2.3	LOW Local	redhat	lvm2	vg_lookup in daemons/lvmetad/lvmetad-core.c in LVM2 2.02 mismanages memory, leading to an lvmetad memory leak, as demonstrated by running pvs. NOTE: RedHat disputes CVE-2020-8991 as not being a vulne…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2020-8991	2024-11-21 14:39	2020-02-14	Show	GitHub Exploit DB Packet Storm

202068	5.3	MEDIUM Network	voatz	voatz	In the Voatz application 2020-01-01 for Android, the amount of data transmitted during a single voter's vote depends on the different lengths of the metadata across the available voting choices, whic…	CWE-203 Information Exposure Through Discrepancy	CVE-2020-8989	2024-11-21 14:39	2020-02-14	Show	GitHub Exploit DB Packet Storm

202069	5.9	MEDIUM Network	voatz	voatz	The Voatz application 2020-01-01 for Android allows only 100 million different PINs, which makes it easier for attackers (after using root access to make a copy of the local database) to discover log…	CWE-330 CWE-521 Use of Insufficiently Random Values Weak Password Requirements	CVE-2020-8988	2024-11-21 14:39	2020-02-14	Show	GitHub Exploit DB Packet Storm

202070	6.1	MEDIUM Network	mantisbt	source_integration	A cross-site scripting (XSS) vulnerability was discovered in the Source Integration plugin before 1.6.2 and 2.x before 2.3.1 for MantisBT. The repo_delete.php Delete Repository page allows execution …	CWE-79 Cross-site Scripting	CVE-2020-8981	2024-11-21 14:39	2020-02-14	Show	GitHub Exploit DB Packet Storm