Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230081	9.3	危険	クイックヒール・テクノロジーズ・ジャパン株式会社	-	CAT-QuickHeal におけるマルウェアの検知を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5524	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

230082	7.5	危険	pozscripts	-	PozScripts Business Directory Script の showcategory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5496	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

230083	7.5	危険	phpstore	-	PHPStore Wholesales の track.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5493	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

230084	9.3	危険	verypdf	-	VeryDOC PDF Viewer OCX Control の pdfview.ocx におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5492	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

230085	7.5	危険	slimcms	-	SlimCMS の edit.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5491	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

230086	7.5	危険	phpstore	-	PHPStore Yahoo Answers の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5490	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

230087	4.3	警告	turnkeyforms	-	TurnkeyForms Text Link Sales の admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5487	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

230088	7.5	危険	turnkeyforms	-	TurnkeyForms Text Link Sales の admin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5486	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

230089	4.3	警告	PunBB	-	PunBB の moderate.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5435	2012-12-20 18:52	2008-12-11	Show	GitHub Exploit DB Packet Storm

230090	6.5	警告	PunBB	-	PunBB における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5434	2012-12-20 18:52	2008-12-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208711	9.8	CRITICAL Network	deferred-exec_project	deferred-exec	This affects all versions of package deferred-exec. The injection point is located in line 42 in lib/deferred-exec.js	CWE-77 Command Injection	CVE-2020-28438	2024-11-21 14:22	2022-07-25	Show	GitHub Exploit DB Packet Storm

208712	9.8	CRITICAL Network	google-cloudstorage-commands_project	google-cloudstorage-commands	This affects all versions of package google-cloudstorage-commands.	CWE-77 Command Injection	CVE-2020-28436	2024-11-21 14:22	2022-07-25	Show	GitHub Exploit DB Packet Storm

208713	9.8	CRITICAL Network	ffmpeg-sdk_project	ffmpeg-sdk	This affects all versions of package ffmpeg-sdk. The injection point is located in line 9 in index.js.	CWE-77 Command Injection	CVE-2020-28435	2024-11-21 14:22	2022-07-25	Show	GitHub Exploit DB Packet Storm

208714	7.8	HIGH Local	git-archive_project	git-archive	All versions of package git-archive are vulnerable to Command Injection via the exports function.	CWE-77 Command Injection	CVE-2020-28422	2024-11-21 14:22	2022-07-25	Show	GitHub Exploit DB Packet Storm

208715	9.8	CRITICAL Network	form	form.io	A Server-Side Template Injection (SSTI) was discovered in Form.io 2.0.0. This leads to Remote Code Execution during deletion of the default Email template URL. NOTE: the email templating service was …	CWE-74 Injection	CVE-2020-28246	2024-11-21 14:22	2022-06-2	Show	GitHub Exploit DB Packet Storm

208716	8.8	HIGH Network	cgal debian	computational_geometry_algorithms_library debian_linux	Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confu…	-	CVE-2020-28604	2024-11-21 14:22	2022-04-19	Show	GitHub Exploit DB Packet Storm

208717	8.8	HIGH Network	cgal debian	computational_geometry_algorithms_library debian_linux	Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confu…	-	CVE-2020-28603	2024-11-21 14:22	2022-04-19	Show	GitHub Exploit DB Packet Storm

208718	8.8	HIGH Network	cgal debian	computational_geometry_algorithms_library debian_linux	Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confu…	-	CVE-2020-28602	2024-11-21 14:22	2022-04-19	Show	GitHub Exploit DB Packet Storm

208719	7.2	HIGH Network	hisiphp	hisiphp	An Access Control vulnerability exists in HisiPHP 2.0.11 via special packets that are constructed in $files = Dir::getList($decompath. '/ Upload/Plugins /, which could let a remote malicious user exe…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-28062	2024-11-21 14:22	2022-04-5	Show	GitHub Exploit DB Packet Storm

208720	4.3	MEDIUM Network	osu	ohio_supercomputer_center_open_ondemand	The Job Composer app in Ohio Supercomputer Center Open OnDemand before 1.7.19 and 1.8.x before 1.8.18 allows remote authenticated users to provide crafted input in a job template.	CWE-116 Improper Encoding or Escaping of Output	CVE-2020-27958	2024-11-21 14:22	2022-02-27	Show	GitHub Exploit DB Packet Storm