Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230151 7.2 危険 Fabrice Bellard - Debian GNU/Linux 上で稼動する qemu の qemu-make-debian-root における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-4553 2012-12-20 18:52 2008-10-15 Show GitHub Exploit DB Packet Storm
230152 5 警告 strongSwan - strongSwan におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4551 2012-12-20 18:52 2008-10-14 Show GitHub Exploit DB Packet Storm
230153 9.3 危険 rtssentry - RTS Sentry の PTZCamPanelCtrl ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4548 2012-12-20 18:52 2008-10-14 Show GitHub Exploit DB Packet Storm
230154 7.5 危険 PHP-Fusion - PHP-Fusion 用の Recepies モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4527 2012-12-20 18:52 2008-10-9 Show GitHub Exploit DB Packet Storm
230155 7.5 危険 PHP-Fusion - PHP-Fusion 用の World of Warcraft tracker infusion モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4521 2012-12-20 18:52 2008-10-9 Show GitHub Exploit DB Packet Storm
230156 5 警告 designplace - ASP/MS Access Shoutbox における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4512 2012-12-20 18:52 2008-10-9 Show GitHub Exploit DB Packet Storm
230157 5 警告 toddwoolums - Todd Woolums ASP News Management における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4511 2012-12-20 18:52 2008-10-9 Show GitHub Exploit DB Packet Storm
230158 7.8 危険 tonec inc. - Tonec Internet Download Manager のファイル解析関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4508 2012-12-20 18:52 2008-10-9 Show GitHub Exploit DB Packet Storm
230159 9 危険 Rhino Software - Serv-U の FTP サーバにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4501 2012-12-20 18:52 2008-10-8 Show GitHub Exploit DB Packet Storm
230160 4.3 警告 Plone Foundation - Plone の LiveSearch モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4571 2012-12-20 18:52 2007-10-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214601 7.5 HIGH
Network 		herac tuxguitar An issue was discovered in io/gpx/GPXDocumentReader.java in TuxGuitar 1.5.4. It uses misconfigured XML parsers, leading to XXE while loading GP6 (.gpx) and GP7 (.gp) tablature files. CWE-611
XXE 		CVE-2020-14940 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
214602 7.8 HIGH
Local 		freedroid freedroidrpg An issue was discovered in savestruct_internal.c in FreedroidRPG 1.0rc2. Saved game files are composed of Lua scripts that recover a game's state. A file can be modified to put any Lua code inside, l… CWE-20
 Improper Input Validation  		CVE-2020-14939 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
214603 9.8 CRITICAL
Network 		freedroid freedroidrpg An issue was discovered in map.c in FreedroidRPG 1.0rc2. It assumes lengths of data sets read from saved game files. It copies data from a file into a fixed-size heap-allocated buffer without size ve… CWE-787
 Out-of-bounds Write 		CVE-2020-14938 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
214604 4.3 MEDIUM
Network 		globalradar bsa_radar downloadFile.ashx in the Administrator section of the Surveillance module in Global RADAR BSA Radar 1.6.7234.24750 and earlier allows users to download transaction files. When downloading the files, … CWE-22
Path Traversal 		CVE-2020-14946 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
214605 8.8 HIGH
Network 		globalradar bsa_radar A privilege escalation vulnerability exists within Global RADAR BSA Radar 1.6.7234.24750 and earlier that allows an authenticated, low-privileged user to escalate their privileges to administrator ri… NVD-CWE-noinfo
CVE-2020-14945 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
214606 9.8 CRITICAL
Network 		globalradar bsa_radar Global RADAR BSA Radar 1.6.7234.24750 and earlier lacks valid authorization controls in multiple functions. This can allow for manipulation and takeover of user accounts if successfully exploited. Th… CWE-862
 Missing Authorization 		CVE-2020-14944 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
214607 5.4 MEDIUM
Network 		globalradar bsa_radar The Firstname and Lastname parameters in Global RADAR BSA Radar 1.6.7234.24750 and earlier are vulnerable to stored cross-site scripting (XSS) via Update User Profile. CWE-79
Cross-site Scripting 		CVE-2020-14943 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
214608 7.1 HIGH
Local 		iobit advanced_systemcare IOBit Advanced SystemCare Free 13.5.0.263 allows local users to gain privileges for file deletion by manipulating the Clean & Optimize feature with an NTFS junction and an Object Manager symbolic lin… CWE-59
Link Following 		CVE-2020-14990 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
214609 9.8 CRITICAL
Network 		chocolate-doom
opensuse 		crispy_doom
chocolate_doom
leap
backports 		The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players value, leading to a buffer overflow. A malicious user can overwrite the server's stack. CWE-120
Classic Buffer Overflow 		CVE-2020-14983 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
214610 5.9 MEDIUM
Network 		vipre password_vault The ThreatTrack VIPRE Password Vault app through 1.100.1090 for iOS has Missing SSL Certificate Validation. CWE-295
Improper Certificate Validation  		CVE-2020-14981 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm