Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230091 7.5 危険 xforum - Xforum の liretopic.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0279 2012-12-20 18:34 2008-01-15 Show GitHub Exploit DB Packet Storm
230092 6 警告 X7 Group - X7 Chat の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0278 2012-12-20 18:34 2008-01-15 Show GitHub Exploit DB Packet Storm
230093 6 警告 taskfreak - TaskFreak! の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0270 2012-12-20 18:34 2008-01-15 Show GitHub Exploit DB Packet Storm
230094 6.8 警告 wavelink media - TutorialCMS の activate.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0254 2012-12-20 18:34 2008-01-15 Show GitHub Exploit DB Packet Storm
230095 5 警告 php webquest - PHP Webquest におけるデータベースの資格情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-0249 2012-12-20 18:34 2008-01-11 Show GitHub Exploit DB Packet Storm
230096 9.3 危険 streamaudio - StreamAudio ChainCast ProxyManager の ccpm_0237.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0248 2012-12-20 18:34 2008-01-11 Show GitHub Exploit DB Packet Storm
230097 10 危険 uploadscript - UploadScript の admin.php における管理者の権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0246 2012-12-20 18:34 2008-01-11 Show GitHub Exploit DB Packet Storm
230098 7.5 危険 uploadscript - UploadImage の admin.php における管理者の権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0245 2012-12-20 18:34 2008-01-11 Show GitHub Exploit DB Packet Storm
230099 10 危険 SAP - SAP MaxDB における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-0244 2012-12-20 18:34 2008-01-11 Show GitHub Exploit DB Packet Storm
230100 5.8 警告 サン・マイクロシステムズ - Sun Java System Identity Manager の /idm/user/login.jsp におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2008-0241 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214161 6.7 MEDIUM
Local 		dpdk
canonical
fedoraproject
opensuse
oracle 		data_plane_development_kit
ubuntu_linux
fedora
leap
enterprise_communications_broker
communications_session_border_controller 		A memory corruption issue was found in DPDK versions 17.05 and above. This flaw is caused by an integer truncation on the index of a payload. Under certain circumstances, the index (a UInt) is copied… - CVE-2020-10723 2024-11-21 13:55 2020-05-20 Show GitHub Exploit DB Packet Storm
214162 6.7 MEDIUM
Local 		dpdk
canonical
fedoraproject
opensuse
oracle 		data_plane_development_kit
ubuntu_linux
fedora
leap
enterprise_communications_broker
communications_session_border_controller 		A vulnerability was found in DPDK versions 18.05 and above. A missing check for an integer overflow in vhost_user_set_log_base() could result in a smaller memory map than requested, possibly allowing… - CVE-2020-10722 2024-11-21 13:55 2020-05-20 Show GitHub Exploit DB Packet Storm
214163 5.0 MEDIUM
Local 		redhat ansible_tower
ansible 		An incomplete fix was found for the fix of the flaw CVE-2020-1733 ansible: insecure temporary directory when running become_user from become directive. The provided fix is insufficient to prevent the… CWE-362
Race Condition 		CVE-2020-10744 2024-11-21 13:55 2020-05-15 Show GitHub Exploit DB Packet Storm
214164 9.8 CRITICAL
Network 		opto22 softpac_project Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC communication does not include any credentials. This allows an attacker with network access to directly communicate with SoftPAC, including, for… CWE-862
 Missing Authorization 		CVE-2020-10620 2024-11-21 13:55 2020-05-15 Show GitHub Exploit DB Packet Storm
214165 8.8 HIGH
Network 		opto22 softpac_project Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC does not specify the path of multiple imported .dll files. Therefore, an attacker can replace them and execute code whenever the service starts. CWE-427
 Uncontrolled Search Path Element 		CVE-2020-10616 2024-11-21 13:55 2020-05-15 Show GitHub Exploit DB Packet Storm
214166 9.1 CRITICAL
Network 		opto22 softpac_project Opto 22 SoftPAC Project Version 9.6 and prior. SoftPACAgent communicates with SoftPACMonitor over network Port 22000. However, this port is open without any restrictions. This allows an attacker with… CWE-862
 Missing Authorization 		CVE-2020-10612 2024-11-21 13:55 2020-05-15 Show GitHub Exploit DB Packet Storm
214167 7.8 HIGH
Local 		fazecast
schneider-electric 		jserialcomm
ecostruxure_it_gateway 		In Fazecast jSerialComm, Version 2.2.2 and prior, an uncontrolled search path element vulnerability could allow a malicious DLL file with the same name of any resident DLLs inside the software instal… CWE-427
 Uncontrolled Search Path Element 		CVE-2020-10626 2024-11-21 13:55 2020-05-15 Show GitHub Exploit DB Packet Storm
214168 9.8 CRITICAL
Network 		pingidentity pingid_ssh_integration Ping Identity PingID SSH before 4.0.14 contains a heap buffer overflow in PingID-enrolled servers. This condition can be potentially exploited into a Remote Code Execution vector on the authenticatin… CWE-787
 Out-of-bounds Write 		CVE-2020-10654 2024-11-21 13:55 2020-05-13 Show GitHub Exploit DB Packet Storm
214169 6.6 MEDIUM
Physics 		redhat openshift_container_platform A flaw was found in OpenShift Container Platform where OAuth tokens are not encrypted when the encryption of data at rest is enabled. This flaw allows an attacker with access to a backup to obtain OA… - CVE-2020-10706 2024-11-21 13:55 2020-05-12 Show GitHub Exploit DB Packet Storm
214170 5.5 MEDIUM
Local 		redhat
debian 		ansible_tower
ansible_engine
ceph_storage
openstack
storage
debian_linux 		A flaw was found in Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible Tower before and including versions 3.4.5 an… CWE-459
 Incomplete Cleanup 		CVE-2020-10685 2024-11-21 13:55 2020-05-11 Show GitHub Exploit DB Packet Storm