Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229941 8.5 危険 The phpMyAdmin Project - phpMyAdmin の libraries/database_interface.lib.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4096 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
229942 7.5 危険 Ruby on Rails project - Ruby on Rails における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4094 2012-12-20 18:52 2008-09-30 Show GitHub Exploit DB Packet Storm
229943 6.8 警告 yourownbux - YourOwnBux の memberstats.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4093 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
229944 6.8 警告 source workshop - Web Directory Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4091 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
229945 7.5 危険 source workshop - Reciprocal Links Manager の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4086 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
229946 4.4 警告 stephenjungels - Plait の plaiter における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-4085 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
229947 7.5 危険 stash - Stash の admin/login.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-4081 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
229948 6.8 警告 stash - Stash における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4080 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
229949 7.5 危険 zanfi solutions - Zanfi Autodealers CMS AutOnline の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4074 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
229950 7.5 危険 zanfi solutions - Zanfi Autodealers CMS AutOnline の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4073 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208921 9.8 CRITICAL
Network 		ethernut nut\/os An issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. The DNS response data length is not checked (it can be set to an arbitrary value from a packet). This may lead to successf… CWE-787
 Out-of-bounds Write 		CVE-2020-25108 2024-11-21 14:17 2020-12-12 Show GitHub Exploit DB Packet Storm
208922 9.8 CRITICAL
Network 		ethernut nut\/os An issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. There is no check on whether a domain name has '\0' termination. This may lead to successful Denial-of-Service, and possib… CWE-125
Out-of-bounds Read 		CVE-2020-25107 2024-11-21 14:17 2020-12-12 Show GitHub Exploit DB Packet Storm
208923 7.5 HIGH
Network 		ni compactrio_firmware Incorrect permissions are set by default for an API entry-point of a specific service, allowing a non-authenticated user to trigger a function that could reboot the CompactRIO (Driver versions prior … CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-25191 2024-11-21 14:17 2020-12-11 Show GitHub Exploit DB Packet Storm
208924 7.8 HIGH
Local 		we-con levistudiou A heap-based buffer overflow vulnerability exists within the WECON LeviStudioU Release Build 2019-09-21 and prior when processing project files. Opening a specially crafted project file could allow a… CWE-787
 Out-of-bounds Write 		CVE-2020-25199 2024-11-21 14:17 2020-12-10 Show GitHub Exploit DB Packet Storm
208925 4.8 MEDIUM
Network 		arachnys cabot Cross Site Scripting (XSS) vulnerability in Arachnys Cabot 0.11.12 can be exploited via the Address column. CWE-79
Cross-site Scripting 		CVE-2020-25449 2024-11-21 14:17 2020-12-5 Show GitHub Exploit DB Packet Storm
208926 9.8 CRITICAL
Network 		moddable moddable Heap buffer overflow in the fxCheckArrowFunction function at moddable/xs/sources/xsSyntaxical.c:3562 in Moddable SDK before OS200903. CWE-787
 Out-of-bounds Write 		CVE-2020-25462 2024-11-21 14:17 2020-12-5 Show GitHub Exploit DB Packet Storm
208927 7.5 HIGH
Network 		moddable moddable Invalid Memory Access in the fxProxyGetter function in moddable/xs/sources/xsProxy.c in Moddable SDK before OS200908 causes a denial of service (SEGV). NVD-CWE-Other
CVE-2020-25461 2024-11-21 14:17 2020-12-5 Show GitHub Exploit DB Packet Storm
208928 5.5 MEDIUM
Local 		appimage appimaged AppImage appimaged before 1.0.3 does not properly check whether a downloaded file is a valid appimage. For example, it will accept a crafted mp3 file that contains an appimage, and install it. CWE-494
 Download of Code Without Integrity Check 		CVE-2020-25266 2024-11-21 14:17 2020-12-3 Show GitHub Exploit DB Packet Storm
208929 6.5 MEDIUM
Network 		appimage libappimage AppImage libappimage before 1.0.3 allows attackers to trigger an overwrite of a system-installed .desktop file by providing a .desktop file that contains Name= with path components. NVD-CWE-noinfo
CVE-2020-25265 2024-11-21 14:17 2020-12-3 Show GitHub Exploit DB Packet Storm
208930 8.8 HIGH
Network 		we-con plc_editor WECON PLC Editor Versions 1.3.8 and prior has a heap-based buffer overflow vulnerabilities have been identified that may allow arbitrary code execution. CWE-125
Out-of-bounds Read 		CVE-2020-25181 2024-11-21 14:17 2020-12-2 Show GitHub Exploit DB Packet Storm