Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229971 7.5 危険 runcms - RunCMS 用の MyAnnonces モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0878 2012-12-20 18:34 2008-02-21 Show GitHub Exploit DB Packet Storm
229972 4.3 警告 SmarterTools Inc. - SmarterTools SmarterMail Enterprise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0872 2012-12-20 18:34 2008-02-21 Show GitHub Exploit DB Packet Storm
229973 7.5 危険 woltlab - WoltLab Burning Board の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0857 2012-12-20 18:34 2008-02-20 Show GitHub Exploit DB Packet Storm
229974 7.5 危険 WordPress.org - WordPress 用の Dean Logan WP-People プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0845 2012-12-20 18:34 2008-02-20 Show GitHub Exploit DB Packet Storm
229975 6.4 警告 statcountex - StatCounteX における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0843 2012-12-20 18:34 2008-02-20 Show GitHub Exploit DB Packet Storm
229976 4.4 警告 publicwarehouse - Public Warehouse LightBlog の view_member.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0840 2012-12-20 18:34 2008-02-20 Show GitHub Exploit DB Packet Storm
229977 4.3 警告 ソフォス - Sophos ES1000 および ES4000 Email Security Appliance の Web の管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0838 2012-12-20 18:34 2008-02-20 Show GitHub Exploit DB Packet Storm
229978 7.5 危険 simple cms - Simple CMS の indexen.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0835 2012-12-20 18:34 2008-02-20 Show GitHub Exploit DB Packet Storm
229979 7.5 危険 PHPNUKE - PHP-Nuke の Books モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0827 2012-12-20 18:34 2008-02-19 Show GitHub Exploit DB Packet Storm
229980 3.6 注意 scribe - Scribe の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0822 2012-12-20 18:34 2008-02-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209791 8.7 HIGH
Network 		microsoft sharepoint_foundation
sharepoint_designer
sharepoint_enterprise_server
sharepoint_server 		<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated att… CWE-79
Cross-site Scripting 		CVE-2020-16946 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209792 8.7 HIGH
Network 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated att… CWE-79
Cross-site Scripting 		CVE-2020-16945 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209793 8.7 HIGH
Network 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		<p>This vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request to an affected SharePoint server.</p> <p>An authenticated attacker could exploit this vul… CWE-79
Cross-site Scripting 		CVE-2020-16944 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209794 6.5 MEDIUM
Adjacent 		microsoft dynamics_365 <p>An elevation of privilege vulnerability exists in Microsoft Dynamics 365 Commerce. An unauthenticated attacker who successfully exploited this vulnerability could update data without proper author… NVD-CWE-noinfo
CVE-2020-16943 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209795 4.1 MEDIUM
Local 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		<p>An information disclosure vulnerability exists when Microsoft SharePoint Server improperly discloses its folder structure when rendering specific web pages. An attacker who took advantage of this … NVD-CWE-noinfo
CVE-2020-16942 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209796 4.1 MEDIUM
Local 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		<p>An information disclosure vulnerability exists when Microsoft SharePoint Server improperly discloses its folder structure when rendering specific web pages. An attacker who took advantage of this … NVD-CWE-noinfo
CVE-2020-16941 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209797 7.8 HIGH
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		<p>An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles junction points. An attacker who successfully exploited this vulnerability could d… CWE-269
 Improper Privilege Management 		CVE-2020-16940 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209798 7.8 HIGH
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		<p>An elevation of privilege vulnerability exists when Group Policy improperly checks access. An attacker who successfully exploited this vulnerability could run processes in an elevated context.</p>… CWE-59
Link Following 		CVE-2020-16939 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209799 5.5 MEDIUM
Local 		microsoft windows_10
windows_server_2016 		<p>An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to f… NVD-CWE-noinfo
CVE-2020-16938 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
209800 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2008
windows_7
windows_server_2019 		<p>An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.</p> <p>To exploit this vulnerability, an attacker would first have to gain execut… NVD-CWE-noinfo
CVE-2020-16936 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm