Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229921 7.1 危険 サン・マイクロシステムズ - Sun Java System Calendar Server などの cshttpd におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-2749 2012-12-20 18:52 2008-06-13 Show GitHub Exploit DB Packet Storm
229922 5 警告 skulltag team - Skulltag におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2748 2012-12-20 18:52 2008-06-18 Show GitHub Exploit DB Packet Storm
229923 4.3 警告 vBulletin Solutions, Inc. - vBulletin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2744 2012-12-20 18:52 2008-06-9 Show GitHub Exploit DB Packet Storm
229924 4.3 警告 Xerox - Xerox 4110 などの Copier/Printers の組み込み Web サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2743 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
229925 4.3 警告 TYPO3 Association - TYPO3 の fe_adminlib.inc におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2718 2012-12-20 18:52 2008-06-16 Show GitHub Exploit DB Packet Storm
229926 9.3 危険 サン・マイクロシステムズ - Sun Java System AM における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-2705 2012-12-20 18:52 2008-06-11 Show GitHub Exploit DB Packet Storm
229927 4.3 警告 web-album - WEBalbum の photo_add-c.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2698 2012-12-20 18:52 2008-06-13 Show GitHub Exploit DB Packet Storm
229928 7.5 危険 phpinv - phpInv の entry.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2695 2012-12-20 18:52 2008-06-13 Show GitHub Exploit DB Packet Storm
229929 4.3 警告 phpinv - phpInv の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2694 2012-12-20 18:52 2008-06-13 Show GitHub Exploit DB Packet Storm
229930 7.5 危険 PilotCart - ASPilot Pilot Cart の pilot.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2688 2012-12-20 18:52 2008-06-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209241 9.8 CRITICAL
Network 		niushop niushop Niushop B2B2C Multi-business basic version V1.11, can bypass the administrator to obtain the background upload interface, through parameter upload, bypass the getimagesize function, upload php file, … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-19672 2024-11-21 14:09 2020-10-1 Show GitHub Exploit DB Packet Storm
209242 4.9 MEDIUM
Network 		niushop niushop In Niushop B2B2C Multi-Business Basic Edition V1.11, authentication can be bypassed, causing administrators to reset any passwords. CWE-306
Missing Authentication for Critical Function 		CVE-2020-19670 2024-11-21 14:09 2020-10-1 Show GitHub Exploit DB Packet Storm
209243 7.5 HIGH
Network 		jdownloads jdownloads SQL injection exists in the jdownloads 3.2.63 component for Joomla! via components/com_jdownloads/helpers/categories.php, order function via the filter_order parameter. CWE-89
SQL Injection 		CVE-2020-19455 2024-11-21 14:09 2020-09-26 Show GitHub Exploit DB Packet Storm
209244 7.5 HIGH
Network 		jdownloads jdownloads SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, updateLog function via the X-forwarded-for Header parameter. CWE-89
SQL Injection 		CVE-2020-19451 2024-11-21 14:09 2020-09-26 Show GitHub Exploit DB Packet Storm
209245 7.5 HIGH
Network 		jdownloads jdownloads SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, getUserLimits function in the list parameter. CWE-89
SQL Injection 		CVE-2020-19450 2024-11-21 14:09 2020-09-26 Show GitHub Exploit DB Packet Storm
209246 7.5 HIGH
Network 		jdownloads jdownloads SQL injection exists in the jdownloads 3.2.63 component for Joomla! com_jdownloads/models/send.php via the f_marked_files_id parameter. CWE-89
SQL Injection 		CVE-2020-19447 2024-11-21 14:09 2020-09-25 Show GitHub Exploit DB Packet Storm
209247 6.6 MEDIUM
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		<p>An elevation of privilege vulnerability exists when the Microsoft Store Runtime improperly handles memory.</p> <p>To exploit this vulnerability, an attacker would first have to gain execution on t… NVD-CWE-noinfo
CVE-2020-1146 2024-11-21 14:09 2020-09-12 Show GitHub Exploit DB Packet Storm
209248 9.9 CRITICAL
Network 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulner… CWE-494
 Download of Code Without Integrity Check 		CVE-2020-1210 2024-11-21 14:09 2020-09-12 Show GitHub Exploit DB Packet Storm
209249 4.6 MEDIUM
Network 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		<p>A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploi… NVD-CWE-noinfo
CVE-2020-1205 2024-11-21 14:09 2020-09-12 Show GitHub Exploit DB Packet Storm
209250 8.6 HIGH
Network 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulner… CWE-494
 Download of Code Without Integrity Check 		CVE-2020-1200 2024-11-21 14:09 2020-09-12 Show GitHub Exploit DB Packet Storm