Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230211	9.3	危険	SAP	-	SAP GUI の KWEdit ActiveX コントロールにおける任意のファイルを上書きされる脆弱性	CWE-Other その他	CVE-2008-4830	2012-12-20 18:52	2009-04-16	Show	GitHub Exploit DB Packet Storm

230212	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Classifieds Blaster Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4900	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

230213	6.8	警告	planetluc	-	Planetluc RateMe におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-4899	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

230214	4.3	警告	planetluc	-	planetluc RateMe におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4898	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

230215	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Downline Builder の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4895	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

230216	5.1	警告	Tribal Ltd.	-	Tribiq CMS の templates/mytribiqsite/tribal-GPL-1066/includes/header.inc.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4894	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

230217	2.6	注意	Tribal Ltd.	-	Tribiq CMS の templates/mytribiqsite/tribal-GPL-1066/includes/header.inc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4893	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

230218	4.3	警告	planetluc	-	Planetluc MyGallery の gallery.inc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4892	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

230219	4.3	警告	planetluc	-	Planetluc SignMe の signme.inc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4891	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

230220	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Shopping Cart Script の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4886	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201901	7.2	HIGH Network	trendmicro	deep_security_manager vulnerability_protection	A vulnerability in the management consoles of Trend Micro Deep Security 10.0-12.0 and Trend Micro Vulnerability Protection 2.0 SP2 may allow an authenticated attacker with full control privileges to …	NVD-CWE-noinfo	CVE-2020-8602	2024-11-21 14:39	2020-08-28	Show	GitHub Exploit DB Packet Storm

201902	7.6	HIGH Physics	ncr	aptra_xfs	NCR SelfServ ATMs running APTRA XFS 05.01.00 or earlier do not authenticate or protect the integrity of USB HID communications between the currency dispenser and the host computer, permitting an atta…	CWE-120 Classic Buffer Overflow	CVE-2020-9063	2024-11-21 14:39	2020-08-22	Show	GitHub Exploit DB Packet Storm

201903	5.3	MEDIUM Physics	dieboldnixdorf	probase	Diebold Nixdorf ProCash 2100xe USB ATMs running Wincor Probase version 1.1.30 do not encrypt, authenticate, or verify the integrity of messages between the CCDM and the host computer, allowing an att…	CWE-306 CWE-311 Missing Authentication for Critical Function Missing Encryption of Sensitive Data	CVE-2020-9062	2024-11-21 14:39	2020-08-22	Show	GitHub Exploit DB Packet Storm

201904	4.3	MEDIUM Network	isc debian canonical netapp fedoraproject opensuse	bind debian_linux ubuntu_linux steelstore_cloud_integrated_storage fedora leap	In BIND 9.9.12 -> 9.9.13, 9.10.7 -> 9.10.8, 9.11.3 -> 9.11.21, 9.12.1 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.9.12-S1 -> 9.9.13-S1, 9.11.3-S1 -> 9.11.21-S1 of the BIND 9 Supported Preview Edition…	CWE-269 Improper Privilege Management	CVE-2020-8624	2024-11-21 14:39	2020-08-22	Show	GitHub Exploit DB Packet Storm

201905	7.5	HIGH Network	isc fedoraproject opensuse debian canonical synology netapp	bind fedora leap debian_linux ubuntu_linux dns_server steelstore_cloud_integrated_storage	In BIND 9.10.0 -> 9.11.21, 9.12.0 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.10.5-S1 -> 9.11.21-S1 of the BIND 9 Supported Preview Edition, An attacker that can reach a vulnerable system with a spec…	CWE-617 Reachable Assertion	CVE-2020-8623	2024-11-21 14:39	2020-08-22	Show	GitHub Exploit DB Packet Storm

201906	7.5	HIGH Network	isc opensuse canonical synology netapp	bind leap ubuntu_linux dns_server steelstore_cloud_integrated_storage	In BIND 9.14.0 -> 9.16.5, 9.17.0 -> 9.17.3, If a server is configured with both QNAME minimization and 'forward first' then an attacker who can send queries to it may be able to trigger the condition…	CWE-617 Reachable Assertion	CVE-2020-8621	2024-11-21 14:39	2020-08-22	Show	GitHub Exploit DB Packet Storm

201907	7.5	HIGH Network	isc opensuse netapp canonical	bind leap steelstore_cloud_integrated_storage ubuntu_linux	In BIND 9.15.6 -> 9.16.5, 9.17.0 -> 9.17.3, An attacker who can establish a TCP connection with the server and send data on that connection can exploit this to trigger the assertion failure, causing …	CWE-617 Reachable Assertion	CVE-2020-8620	2024-11-21 14:39	2020-08-22	Show	GitHub Exploit DB Packet Storm

201908	6.5	MEDIUM Network	isc fedoraproject debian canonical netapp opensuse synology oracle	bind fedora debian_linux ubuntu_linux steelstore_cloud_integrated_storage leap dns_server communications_diameter_signaling_router	In BIND 9.0.0 -> 9.11.21, 9.12.0 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.9.3-S1 -> 9.11.21-S1 of the BIND 9 Supported Preview Edition, An attacker on the network path for a TSIG-signed request, o…	CWE-617 Reachable Assertion	CVE-2020-8622	2024-11-21 14:39	2020-08-22	Show	GitHub Exploit DB Packet Storm

201909	7.8	HIGH Local	foxitsoftware	foxit_studio_photo	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Studio Photo 3.6.6.916. User interaction is required to exploit this vulnerability in that the …	CWE-125 Out-of-bounds Read	CVE-2020-8870	2024-11-21 14:39	2020-08-20	Show	GitHub Exploit DB Packet Storm

201910	7.8	HIGH Local	foxitsoftware	foxit_studio_photo	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Studio Photo 3.6.6.916. User interaction is required to exploit this vulnerability in that the …	-	CVE-2020-8869	2024-11-21 14:39	2020-08-20	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed