Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230291	7.5	危険	sweetcms	-	sweetCMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4647	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

230292	2.1	注意	ウェブセンス	-	Websense Enterprise の Websense Reporter Module におけるデータベースへの権限を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-4646	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

230293	9	危険	phpwebgallery	-	PhpWebGallery の plugins/event_tracer/event_list.php における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-4645	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

230294	10	危険	Matthias Wandel	-	Matthias Wandel jhead の jhead.c における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4641	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

230295	3.6	注意	Matthias Wandel	-	Matthias Wandel jhead の jhead.c における任意のファイルを削除される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4640	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

230296	4.6	警告	Matthias Wandel	-	Matthias Wandel jhead の jhead.c における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4639	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

230297	7.5	危険	rgallery	-	WBB 用の rGallery プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4627	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

230298	6.8	警告	zirkon box	-	Fritz Berger yappa-ng の yappa-ng におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4626	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

230299	7.5	危険	shiftthis	-	WordPress 用の ShiftThis Newsletter プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4625	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

230300	5	警告	Wireshark	-	Wireshark の Bluetooth ACL 解析子におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-4683	2012-12-20 18:52	2007-04-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209201	7.8	HIGH Local	utimaco	block-safe_firmware cryptoserver_cp5_firmware cryptoserver_cp5_vs-nfd_firmware paymentserver_firmware paymentserver_hybrid_firmware securityserver_firmware	Multiple files and folders in Utimaco SecurityServer 4.20.0.4 and 4.31.1.0. are installed with Read/Write permissions for authenticated users, which allows for binaries to be manipulated by non-admin…	CWE-427 CWE-732 Uncontrolled Search Path Element Incorrect Permission Assignment for Critical Resource	CVE-2020-26155	2024-11-21 14:19	2021-03-19	Show	GitHub Exploit DB Packet Storm

209202	6.8	MEDIUM Physics	kaspersky	endpoint_security rescue_disk	A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authenticity. This component is incorporated in Kaspersky Rescue Disk (KRD) an…	CWE-287 Improper Authentication	CVE-2020-26200	2024-11-21 14:19	2021-02-26	Show	GitHub Exploit DB Packet Storm

209203	9.6	CRITICAL Network	ftp-srv_project	ftp-srv	ftp-srv is an open-source FTP server designed to be simple yet configurable. In ftp-srv before version 4.4.0 there is a path-traversal vulnerability. Clients of FTP servers utilizing ftp-srv hosted o…	-	CVE-2020-26299	2024-11-21 14:19	2021-02-11	Show	GitHub Exploit DB Packet Storm

209204	5.5	MEDIUM Local	dell	emc_powerscale_onefs	Dell EMC PowerScale OneFS versions 8.1.0-9.1.0 contain a Backup/Restore Privilege implementation issue. A user with the BackupAdmin role may potentially exploit this vulnerability resulting in the ab…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-26196	2024-11-21 14:19	2021-02-10	Show	GitHub Exploit DB Packet Storm

209205	5.3	MEDIUM Network	dell	emc_powerscale_onefs	Dell EMC PowerScale OneFS versions 8.1.2 – 9.1.0 contain an issue where the OneFS SMB directory auto-create may erroneously create a directory for a user. A remote unauthenticated attacker may take a…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2020-26195	2024-11-21 14:19	2021-02-10	Show	GitHub Exploit DB Packet Storm

209206	7.8	HIGH Local	dell	emc_powerscale_onefs	Dell EMC PowerScale OneFS versions 8.1.2 and 8.2.2 contain an Incorrect Permission Assignment for a Critical Resource vulnerability. This may allow a non-admin user with either ISI_PRIV_LOGIN_CONSOLE…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-26194	2024-11-21 14:19	2021-02-10	Show	GitHub Exploit DB Packet Storm

209207	7.8	HIGH Local	dell	emc_powerscale_onefs	Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain an improper input validation vulnerability. A user with the ISI_PRIV_CLUSTER privilege may exploit this vulnerability, leading to the executio…	CWE-78 OS Command	CVE-2020-26193	2024-11-21 14:19	2021-02-10	Show	GitHub Exploit DB Packet Storm

209208	7.8	HIGH Local	dell	emc_powerscale_onefs	Dell EMC PowerScale OneFS versions 8.2.0 - 9.1.0 contain a privilege escalation vulnerability. A non-admin user with either ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH may potentially exploit this v…	CWE-306 Missing Authentication for Critical Function	CVE-2020-26192	2024-11-21 14:19	2021-02-10	Show	GitHub Exploit DB Packet Storm

209209	7.8	HIGH Local	dell	emc_powerscale_onefs	Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain a privilege escalation vulnerability. A user with ISI_PRIV_JOB_ENGINE may use the PermissionRepair job to grant themselves the highest level o…	NVD-CWE-noinfo	CVE-2020-26191	2024-11-21 14:19	2021-02-10	Show	GitHub Exploit DB Packet Storm

209210	5.4	MEDIUM Network	phpgurukul	online_marriage_registration_system	Online Marriage Registration System 1.0 is affected by stored cross-site scripting (XSS) vulnerabilities in multiple parameters.	CWE-79 Cross-site Scripting	CVE-2020-26052	2024-11-21 14:19	2021-02-8	Show	GitHub Exploit DB Packet Storm