Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229941 7.5 危険 y-blog - yBlog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2669 2012-12-20 18:52 2008-06-11 Show GitHub Exploit DB Packet Storm
229942 4.3 警告 y-blog - yBlog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2668 2012-12-20 18:52 2008-06-11 Show GitHub Exploit DB Packet Storm
229943 7.5 危険 smeweb - SMEWeb の catalog.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2652 2012-12-20 18:52 2008-06-10 Show GitHub Exploit DB Packet Storm
229944 4.3 警告 smeweb - SMEWeb における任意の Web スクリプトまたは HTML を挿入される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2644 2012-12-20 18:52 2008-06-10 Show GitHub Exploit DB Packet Storm
229945 7.5 危険 theflashblog - FlashBlog の php/leer_comentarios.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2572 2012-12-20 18:52 2008-06-6 Show GitHub Exploit DB Packet Storm
229946 4.3 警告 samtodo - SamTodo の dsp_main.php などにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2563 2012-12-20 18:52 2008-06-6 Show GitHub Exploit DB Packet Storm
229947 6.5 警告 powerphlogger - PowerPhlogger の edCss.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2562 2012-12-20 18:52 2008-06-6 Show GitHub Exploit DB Packet Storm
229948 4.3 警告 slashcode.com - Slash におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2553 2012-12-20 18:52 2008-06-5 Show GitHub Exploit DB Packet Storm
229949 9.3 危険 Skype Technologies S.A. - Skype における警告ダイアログを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2545 2012-12-20 18:52 2008-06-6 Show GitHub Exploit DB Packet Storm
229950 7.2 危険 サン・マイクロシステムズ - Sun Solaris 上の Sun Cluster における任意の削除されたファイルデータが読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2539 2012-12-20 18:52 2008-03-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209121 6.7 MEDIUM
Local 		paloaltonetworks globalprotect An unquoted search path vulnerability in the Windows release of Global Protect Agent allows an authenticated local user with file creation privileges on the root of the OS disk (C:\) or to Program Fi… CWE-428
 Unquoted Search Path or Element 		CVE-2020-1988 2024-11-21 14:11 2020-04-9 Show GitHub Exploit DB Packet Storm
209122 3.3 LOW
Local 		paloaltonetworks globalprotect An information exposure vulnerability in the logging component of Palo Alto Networks Global Protect Agent allows a local authenticated user to read VPN cookie information when the troubleshooting log… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-1987 2024-11-21 14:11 2020-04-9 Show GitHub Exploit DB Packet Storm
209123 5.5 MEDIUM
Local 		paloaltonetworks secdo Improper input validation vulnerability in Secdo allows an authenticated local user with 'create folders or append data' access to the root of the OS disk (C:\) to cause a system crash on every login… CWE-20
 Improper Input Validation  		CVE-2020-1986 2024-11-21 14:11 2020-04-9 Show GitHub Exploit DB Packet Storm
209124 7.8 HIGH
Local 		paloaltonetworks secdo Incorrect Default Permissions on C:\Programdata\Secdo\Logs folder in Secdo allows local authenticated users to overwrite system files and gain escalated privileges. This issue affects all versions Se… CWE-276
Incorrect Default Permissions  		CVE-2020-1985 2024-11-21 14:11 2020-04-9 Show GitHub Exploit DB Packet Storm
209125 6.8 MEDIUM
Network 		redhat
linuxfoundation
fedoraproject 		openshift
ceph_storage
openstack
ceph
fedora 		A vulnerability was found in Red Hat Ceph Storage 4 and Red Hat Openshift Container Storage 4.2 where, A nonce reuse vulnerability was discovered in the secure mode of the messenger v2 protocol, whic… - CVE-2020-1759 2024-11-21 14:11 2020-04-13 Show GitHub Exploit DB Packet Storm
209126 7.8 HIGH
Local 		paloaltonetworks secdo Secdo tries to execute a script at a hardcoded path if present, which allows a local authenticated user with 'create folders or append data' access to the root of the OS disk (C:\) to gain system pri… CWE-20
 Improper Input Validation  		CVE-2020-1984 2024-11-21 14:11 2020-04-9 Show GitHub Exploit DB Packet Storm
209127 4.6 MEDIUM
Physics 		huawei osca-550_firmware
osca-550a_firmware
osca-550ax_firmware
osca-550x_firmware 		There is an insufficient integrity validation vulnerability in several products. The device does not sufficiently validate the integrity of certain file in certain loading processes, successful explo… CWE-354
 Improper Validation of Integrity Check Value 		CVE-2020-1802 2024-11-21 14:11 2020-04-10 Show GitHub Exploit DB Packet Storm
209128 6.5 MEDIUM
Adjacent 		juniper junos Due to a new NDP proxy feature for EVPN leaf nodes introduced in Junos OS 17.4, crafted NDPv6 packets could transit a Junos device configured as a Broadband Network Gateway (BNG) and reach the EVPN l… NVD-CWE-noinfo
CVE-2020-1633 2024-11-21 14:11 2020-04-10 Show GitHub Exploit DB Packet Storm
209129 7.5 HIGH
Network 		juniper junos When an attacker sends a specific crafted Ethernet Operation, Administration, and Maintenance (Ethernet OAM) packet to a target device, it may improperly handle the incoming malformed data and fail t… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-1639 2024-11-21 14:11 2020-04-9 Show GitHub Exploit DB Packet Storm
209130 7.5 HIGH
Network 		juniper junos
junos_os_evolved 		The FPC (Flexible PIC Concentrator) of Juniper Networks Junos OS and Junos OS Evolved may restart after processing a specific IPv4 packet. Only packets destined to the device itself, successfully rea… NVD-CWE-noinfo
CVE-2020-1638 2024-11-21 14:11 2020-04-9 Show GitHub Exploit DB Packet Storm