Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230021 4.3 警告 phpweather - PHP Weather の config/make_config.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5770 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
230022 7.5 危険 sirium - XOOPS 用の AM Events モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5768 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
230023 6.8 警告 phparanoid - PHParanoid におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-5758 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
230024 3.5 注意 Textpattern - Textpattern の textarea/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5757 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
230025 4.3 警告 WordPress.org - WordPress 用の Page Flip Image Gallery プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5752 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
230026 7.5 危険 Pligg - Pligg CMS の evb/check_url.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5739 2012-12-20 19:10 2008-12-26 Show GitHub Exploit DB Packet Storm
230027 7.5 危険 PHP-Fusion - PHP-Fusion 用の Team Impact TI Blog System モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5733 2012-12-20 19:10 2008-12-26 Show GitHub Exploit DB Packet Storm
230028 7.5 危険 stormboards aaronnemisis - stormBoards の thread.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5726 2012-12-20 19:10 2008-12-26 Show GitHub Exploit DB Packet Storm
230029 10 危険 sawstudio - SAWStudio におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5722 2012-12-20 19:10 2008-12-26 Show GitHub Exploit DB Packet Storm
230030 7.8 危険 Fabrice Bellard - Qemu の monitor.c における VNC パスワードを推測される脆弱性 CWE-189
数値処理の問題 		CVE-2008-5714 2012-12-20 19:10 2008-12-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201961 5.9 MEDIUM
Network 		kubernetes ingress-nginx The Kubernetes ingress-nginx component prior to version 0.28.0 allows a user with the ability to create namespaces and to read and create ingress objects to overwrite the password file of another ing… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2020-8553 2024-11-21 14:39 2020-07-30 Show GitHub Exploit DB Packet Storm
201962 8.8 HIGH
Adjacent 		kubernetes kubernetes The Kubelet and kube-proxy components in versions 1.1.0-1.16.10, 1.17.0-1.17.6, and 1.18.0-1.18.3 were found to contain a security issue which allows adjacent hosts to reach TCP and UDP services boun… NVD-CWE-Other
CVE-2020-8558 2024-11-21 14:39 2020-07-28 Show GitHub Exploit DB Packet Storm
201963 3.3 LOW
Local 		huawei p30_firmware HUAWEI P30 smart phones with versions earlier than 10.1.0.160(C00E160R2P11) have an information exposure vulnerability. The system does not properly authenticate the application that access a specifi… CWE-287
Improper Authentication 		CVE-2020-9077 2024-11-21 14:39 2020-07-27 Show GitHub Exploit DB Packet Storm
201964 5.5 MEDIUM
Local 		kubernetes kubernetes The Kubernetes kubelet component in versions 1.1-1.16.12, 1.17.0-1.17.8 and 1.18.0-1.18.5 do not account for disk usage by a pod which writes to its own /etc/hosts file. The /etc/hosts file mounted i… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-8557 2024-11-21 14:39 2020-07-24 Show GitHub Exploit DB Packet Storm
201965 6.8 MEDIUM
Network 		kubernetes kubernetes The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an att… CWE-601
Open Redirect 		CVE-2020-8559 2024-11-21 14:39 2020-07-22 Show GitHub Exploit DB Packet Storm
201966 7.2 HIGH
Network 		gpononu 1ge_router_wifi_onu_v2801rw_firmware
1ge\+3fe\+wifi_onu_v2804rgw_firmware 		Guangzhou 1GE ONU V2801RW 1.9.1-181203 through 2.9.0-181024 and V2804RGW 1.9.1-181203 through 2.9.0-181024 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in … CWE-78
OS Command  		CVE-2020-8958 2024-11-21 14:39 2020-07-16 Show GitHub Exploit DB Packet Storm
201967 5.5 MEDIUM
Local 		openthread wpantund A memory leak in Openthread's wpantund versions up to commit 0e5d1601febb869f583e944785e5685c6c747be7, when used in an environment where wpanctl is directly interfacing with the control driver (eg: d… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2020-8916 2024-11-21 14:39 2020-07-8 Show GitHub Exploit DB Packet Storm
201968 7.5 HIGH
Network 		envoyproxy envoy Envoy version 1.14.2, 1.13.2, 1.12.4 or earlier may exhaust file descriptors and/or memory when accepting too many connections. CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-8663 2024-11-21 14:39 2020-07-2 Show GitHub Exploit DB Packet Storm
201969 6.5 MEDIUM
Network 		netapp hci_h610s_firmware The NetApp HCI H610C, H615C and H610S Baseboard Management Controllers (BMC) are shipped with a documented default account and password that should be changed during the initial node setup. During up… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-8573 2024-11-21 14:39 2020-06-29 Show GitHub Exploit DB Packet Storm
201970 7.2 HIGH
Network 		johnsoncontrols exacqvision_web_service
exacqvision_enterprise_manager 		A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterpr… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-9047 2024-11-21 14:39 2020-06-27 Show GitHub Exploit DB Packet Storm