Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230091	7.5	危険	Mike Jolley	-	WordPress 用の Download Monitor プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2034	2012-12-20 18:52	2008-04-30	Show	GitHub Exploit DB Packet Storm

230092	7.5	危険	WordPress.org	-	WordPress 用の Spreadsheet プラグインの ss_load.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1982	2012-12-20 18:52	2008-04-27	Show	GitHub Exploit DB Packet Storm

230093	7.5	危険	phphq	-	phShoutBox Final における権限を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-1971	2012-12-20 18:52	2008-04-27	Show	GitHub Exploit DB Packet Storm

230094	7.5	危険	quate	-	Quate Grape Web Statistics の includes/functions.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-1963	2012-12-20 18:52	2008-04-25	Show	GitHub Exploit DB Packet Storm

230095	7.5	危険	sipp	-	SIPp の call.cpp の get_remote_video_port_media 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1959	2012-12-20 18:52	2008-04-25	Show	GitHub Exploit DB Packet Storm

230096	4.3	警告	wikepage	-	Wikepage Opus の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1956	2012-12-20 18:52	2008-04-25	Show	GitHub Exploit DB Packet Storm

230097	4.3	警告	Toocharger	-	Martin BOUCHER MyBoard の rep.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1955	2012-12-20 18:52	2008-04-25	Show	GitHub Exploit DB Packet Storm

230098	7.5	危険	webcalendar	-	Web Calendar Pro の one_day.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1954	2012-12-20 18:52	2008-04-25	Show	GitHub Exploit DB Packet Storm

230099	6.8	警告	Realtek Semiconductor Corp	-	Windows Vista 上で稼動している Realtek HD Audio Codec Drivers RTKVHDA.sys などにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-1932	2012-12-20 18:52	2008-04-25	Show	GitHub Exploit DB Packet Storm

230100	6.8	警告	Realtek Semiconductor Corp	-	Windows Vista 上で稼動している Realtek HD Audio Codec Drivers RTKVHDA.sys および RTKVHDA64.sys におけるレジストリキーを作成される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1931	2012-12-20 18:52	2008-04-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209321	7.8	HIGH Local	microsoft	access office 365_apps	A remote code execution vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could …	NVD-CWE-noinfo	CVE-2020-1582	2024-11-21 14:10	2020-08-18	Show	GitHub Exploit DB Packet Storm

209322	7.8	HIGH Local	microsoft	office 365_apps	An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) components handle objects in memory. An attacker who successfully exploited the vulnerability could …	NVD-CWE-noinfo	CVE-2020-1581	2024-11-21 14:10	2020-08-18	Show	GitHub Exploit DB Packet Storm

209323	5.4	MEDIUM Network	microsoft	sharepoint_foundation sharepoint_server sharepoint_enterprise_server	A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attack…	CWE-79 Cross-site Scripting	CVE-2020-1580	2024-11-21 14:10	2020-08-18	Show	GitHub Exploit DB Packet Storm

209324	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists when the Windows Function Discovery SSDP Provider improperly handles memory. To exploit this vulnerability, an attacker would first have to gain executi…	NVD-CWE-noinfo	CVE-2020-1579	2024-11-21 14:10	2020-08-18	Show	GitHub Exploit DB Packet Storm

209325	7.8	HIGH Local	microsoft	windows_10 windows_server_2016 windows_server_2019	An elevation of privilege vulnerability exists when the Windows CDP User Components improperly handle memory. To exploit this vulnerability, an attacker would first have to gain execution on the vict…	NVD-CWE-noinfo	CVE-2020-1549	2024-11-21 14:10	2020-08-18	Show	GitHub Exploit DB Packet Storm

209326	7.8	HIGH Local	microsoft	windows_10 windows_server_2019 windows_server_2016	An information disclosure vulnerability exists when the Windows WaasMedic Service improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victi…	NVD-CWE-noinfo	CVE-2020-1548	2024-11-21 14:10	2020-08-18	Show	GitHub Exploit DB Packet Storm

209327	7.8	HIGH Local	microsoft	windows_10 windows_8.1 windows_7 windows_rt_8.1	An elevation of privilege vulnerability exists when the Windows Backup Engine improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim sy…	NVD-CWE-noinfo	CVE-2020-1547	2024-11-21 14:10	2020-08-18	Show	GitHub Exploit DB Packet Storm

209328	4.7	MEDIUM Local	microsoft	windows_10 windows_server_2019 windows_server_2016	An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass.…	NVD-CWE-noinfo	CVE-2020-1578	2024-11-21 14:10	2020-08-18	Show	GitHub Exploit DB Packet Storm

209329	7.8	HIGH Local	microsoft	windows_10 windows_server_2012 windows_8.1 windows_server_2016 windows_server_2008 windows_7 windows_rt_8.1 windows_server_2019	An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to f…	NVD-CWE-noinfo	CVE-2020-1577	2024-11-21 14:10	2020-08-18	Show	GitHub Exploit DB Packet Storm

209330	5.5	MEDIUM Local	microsoft	sharepoint_foundation sharepoint_designer sharepoint_enterprise_server sharepoint_server	A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attack…	CWE-79 Cross-site Scripting	CVE-2020-1573	2024-11-21 14:10	2020-08-18	Show	GitHub Exploit DB Packet Storm