Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230211	5	警告	yektaweb	-	AWT YEKTA の download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2969	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

230212	7.5	危険	yektaweb	-	AWT YEKTA の rating.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2968	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

230213	4.3	警告	yektaweb	-	AWT YEKTA におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2967	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

230214	7.5	危険	researchguide	-	ResearchGuide の guide.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2964	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

230215	2.6	注意	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2960	2012-12-20 18:52	2008-06-23	Show	GitHub Exploit DB Packet Storm

230216	5.8	警告	Edgewall Software	-	Trac の検索スクリプトにおけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2008-2951	2012-12-20 18:52	2008-07-27	Show	GitHub Exploit DB Packet Storm

230217	7.5	危険	freedesktop.org	-	Poppler の libpoppler における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-2950	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

230218	7.5	危険	サン・マイクロシステムズ	-	Sun Java System Access Manager および Sun Java System Identity Server における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-2945	2012-12-20 18:52	2008-06-26	Show	GitHub Exploit DB Packet Storm

230219	4.9	警告	レッドハット	-	RHEL などの Linux kernel の utrace サポートにおけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2008-2944	2012-12-20 18:52	2008-06-2	Show	GitHub Exploit DB Packet Storm

230220	7.5	危険	レッドハット	-	Red Hat adminutil におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2932	2012-12-20 18:52	2008-09-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209021	7.5	HIGH Network	thinkadmin	thinkadmin	ThinkAdmin v6 is affected by a directory traversal vulnerability. An unauthorized attacker can read arbitrarily file on a remote server via GET request encode parameter.	CWE-22 Path Traversal	CVE-2020-25540	2024-11-21 14:18	2020-09-14	Show	GitHub Exploit DB Packet Storm

209022	7.5	HIGH Network	webank	federated_ai_technology_enabler	An issue was discovered in function sync_tree in hetero_decision_tree_guest.py in WeBank FATE (Federated AI Technology Enabler) 0.1 through 1.4.2 allows attackers to read sensitive information during…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-25459	2024-11-21 14:17	2022-06-17	Show	GitHub Exploit DB Packet Storm

209023	6.5	MEDIUM Network	osisoft	pi_vision	OSIsoft PI Vision 2020 versions prior to 3.5.0 could disclose information to a user with insufficient privileges for an AF attribute.	-	CVE-2020-25167	2024-11-21 14:17	2022-04-19	Show	GitHub Exploit DB Packet Storm

209024	7.3	HIGH Network	osisoft	pi_vision	A remote attacker with write access to PI ProcessBook files could inject code that is imported into OSIsoft PI Vision 2020 versions prior to 3.5.0. Unauthorized information disclosure, modification, …	-	CVE-2020-25163	2024-11-21 14:17	2022-04-19	Show	GitHub Exploit DB Packet Storm

209025	3.3	LOW Local	bbraun	datamodule_compactplus spacecom	Hard-coded credentials in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 enable attackers with command line access to access the …	-	CVE-2020-25168	2024-11-21 14:17	2022-04-15	Show	GitHub Exploit DB Packet Storm

209026	7.1	HIGH Network	bbraun	datamodule_compactplus spacecom	An improper verification of the cryptographic signature of firmware updates of the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 all…	-	CVE-2020-25166	2024-11-21 14:17	2022-04-15	Show	GitHub Exploit DB Packet Storm

209027	7.5	HIGH Network	bbraun	datamodule_compactplus spacecom	A vulnerability in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 allows attackers to recover user credentials of the administrat…	-	CVE-2020-25164	2024-11-21 14:17	2022-04-15	Show	GitHub Exploit DB Packet Storm

209028	7.5	HIGH Network	bbraun	datamodule_compactplus spacecom	A XPath injection vulnerability in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 allows unauthenticated remote attackers to acce…	-	CVE-2020-25162	2024-11-21 14:17	2022-04-15	Show	GitHub Exploit DB Packet Storm

209029	6.3	MEDIUM Local	bbraun	datamodule_compactplus spacecom	Improper access controls in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 enables attackers to extract and tamper with the devic…	NVD-CWE-Other	CVE-2020-25160	2024-11-21 14:17	2022-04-15	Show	GitHub Exploit DB Packet Storm

209030	6.1	MEDIUM Network	bbraun	datamodule_compactplus spacecom	A reflected cross-site scripting (XSS) vulnerability in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 allows remote attackers to…	-	CVE-2020-25158	2024-11-21 14:17	2022-04-15	Show	GitHub Exploit DB Packet Storm