Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229991	6.8	警告	turnkey web tools	-	Turnkey PHP Live Helper の libsecure.php における db config ファイルに関連する任意の変数を上書きされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-3763	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229992	7.5	危険	turnkey web tools	-	Turnkey PHP Live Helper の onlinestatus_html.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3762	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229993	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Forced Matrix Script の tr1.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3757	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229994	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Viral Marketing Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3756	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229995	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Classifieds Script の view.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3755	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229996	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Stylish Text Ads Script の trl.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3754	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229997	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Programs Rating Script の details.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3753	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229998	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Ad-Exchange Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3752	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229999	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Short Url & Url Tracker Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3751	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

230000	7.5	危険	YourFreeWorld.com	-	YourFreeWorld URL Rotator Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3750	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201711	8.4	HIGH Local	mcafee	endpoint_security	Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 Hotfix 199847 allows local users to delete files the user would otherwise not have access to via manip…	CWE-269 Improper Privilege Management	CVE-2020-7264	2024-11-21 14:36	2020-05-8	Show	GitHub Exploit DB Packet Storm

201712	7.8	HIGH Local	eaton	intelligent_power_manager	Incorrect Privilege Assignment vulnerability in Eaton's Intelligent Power Manager (IPM) v1.67 & prior allow non-admin users to upload the system configuration files by sending specially crafted reque…	CWE-269 Improper Privilege Management	CVE-2020-6652	2024-11-21 14:36	2020-05-8	Show	GitHub Exploit DB Packet Storm

201713	7.3	HIGH Local	eaton	intelligent_power_manager	Improper Input Validation in Eaton's Intelligent Power Manager (IPM) v 1.67 & prior on file name during configuration file import functionality allows attackers to perform command injection or code e…	CWE-20 CWE-78 Improper Input Validation OS Command	CVE-2020-6651	2024-11-21 14:36	2020-05-8	Show	GitHub Exploit DB Packet Storm

201714	5.5	MEDIUM Local	ledger	monero	A flawed protocol design in the Ledger Monero app before 1.5.1 for Ledger Nano and Ledger S devices allows a local attacker to extract the master spending key by sending crafted messages to this app …	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-6861	2024-11-21 14:36	2020-05-6	Show	GitHub Exploit DB Packet Storm

201715	5.5	MEDIUM Local	zte	zenic_one_r22b	ZTE's SDON controller is impacted by the resource management error vulnerability. When RPC is frequently called by other applications in the case of mass traffic data in the system, it will result in…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-6867	2024-11-21 14:36	2020-05-1	Show	GitHub Exploit DB Packet Storm

201716	4.9	MEDIUM Network	zte	zxctn_6500_firmware	A ZTE product is impacted by a resource management error vulnerability. An attacker could exploit this vulnerability to cause a denial of service by issuing a specific command. This affects: ZXCTN 65…	NVD-CWE-noinfo	CVE-2020-6866	2024-11-21 14:36	2020-05-1	Show	GitHub Exploit DB Packet Storm

201717	6.5	MEDIUM Network	zte	oscp	ZTE SDN controller platform is impacted by an information leakage vulnerability. Due to the program's failure to optimize the response of failure to the request, the caller can directly view the inte…	CWE-200 Information Exposure	CVE-2020-6865	2024-11-21 14:36	2020-05-1	Show	GitHub Exploit DB Packet Storm

201718	9.8	CRITICAL Network	hpe	smart_update_manager	A security vulnerability in HPE Smart Update Manager (SUM) prior to version 8.5.6 could allow remote unauthorized access. Hewlett Packard Enterprise has provided a software update to resolve this vul…	NVD-CWE-noinfo	CVE-2020-7136	2024-11-21 14:36	2020-05-1	Show	GitHub Exploit DB Packet Storm

201719	6.1	MEDIUM Network	mailbeez	mailbeez	Cross-site scripting (XSS) vulnerability in mailhive/cloudbeez/cloudloader.php and mailhive/cloudbeez/cloudloader_core.php in the MailBeez plugin for ZenCart before 3.9.22 allows remote attackers to …	CWE-79 Cross-site Scripting	CVE-2020-6579	2024-11-21 14:36	2020-04-30	Show	GitHub Exploit DB Packet Storm

201720	7.5	HIGH Network	php tenable oracle debian	php tenable.sc communications_diameter_signaling_router debian_linux	In PHP versions 7.2.x below 7.2.30, 7.3.x below 7.3.17 and 7.4.x below 7.4.5, if PHP is compiled with EBCDIC support (uncommon), urldecode() function can be made to access locations past the allocate…	CWE-125 Out-of-bounds Read	CVE-2020-7067	2024-11-21 14:36	2020-04-28	Show	GitHub Exploit DB Packet Storm