Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230301 7.5 危険 phpfastnews - phpFastNews の fastnews-code.php における認証を迂回される脆弱性 CWE-287
不適切な認証 		CVE-2008-4622 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
230302 7.5 危険 ZeeScripts.com - ZeeScripts Zeeproperty の bannerclick.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4621 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
230303 10 危険 サン・マイクロシステムズ - Sun Solaris の RPC サブシステムにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-4619 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
230304 7.5 危険 pyxicom - Joomla! 用の actualite モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4617 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
230305 5 警告 the spanner
WordPress.org		 - WordPress の SpamBam プラグインにおける制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4616 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
230306 10 危険 portalapp - PortalApp の i_utils.asp における脆弱性 CWE-noinfo
情報不足 		CVE-2008-4615 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
230307 7.5 危険 portalapp - PortalApp におけるトピックなどを作成および削除される脆弱性 CWE-287
不適切な認証 		CVE-2008-4614 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
230308 7.5 危険 portalapp - PortalApp の forums.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4613 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
230309 4.3 警告 portalapp - PortalApp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4612 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
230310 6.5 警告 qualityunit - Post Affiliate Pro の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4602 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209141 7.1 HIGH
Network 		redhat openshift_container_platform A Zip Slip vulnerability was found in the oc binary in openshift-clients where an arbitrary file write is achieved by using a specially crafted raw container image (.tar file) which contains symbolic… CWE-59
Link Following 		CVE-2020-27833 2024-11-21 14:21 2021-05-15 Show GitHub Exploit DB Packet Storm
209142 3.3 LOW
Local 		imagemagick
redhat
fedoraproject 		imagemagick
enterprise_linux_desktop
fedora 		In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c. - CVE-2020-27769 2024-11-21 14:21 2021-05-15 Show GitHub Exploit DB Packet Storm
209143 5.5 MEDIUM
Local 		linux
debian 		linux_kernel
debian_linux 		A vulnerability was found in Linux Kernel where in the spk_ttyio_receive_buf2() function, it would dereference spk_ttyio_synth without checking whether it is NULL or not, and may lead to a NULL-ptr d… - CVE-2020-27830 2024-11-21 14:21 2021-05-14 Show GitHub Exploit DB Packet Storm
209144 7.8 HIGH
Local 		uclouvain
fedoraproject
debian 		openjpeg
fedora
debian_linux 		A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to co… CWE-787
CWE-120
 Out-of-bounds Write
Classic Buffer Overflow 		CVE-2020-27823 2024-11-21 14:21 2021-05-14 Show GitHub Exploit DB Packet Storm
209145 5.5 MEDIUM
Local 		uclouvain
redhat
fedoraproject
debian 		openjpeg
enterprise_linux
fedora
debian_linux 		A flaw was found in OpenJPEG’s encoder in the opj_dwt_calc_explicit_stepsizes() function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow.… CWE-125
Out-of-bounds Read 		CVE-2020-27824 2024-11-21 14:21 2021-05-13 Show GitHub Exploit DB Packet Storm
209146 7.5 HIGH
Network 		samba
debian
fedoraproject 		samba
debian_linux
fedora 		A flaw was found in samba. Spaces used in a string around a domain name (DN), while supposed to be ignored, can cause invalid DN strings with spaces to instead write a zero-byte into out-of-bounds me… - CVE-2020-27840 2024-11-21 14:21 2021-05-13 Show GitHub Exploit DB Packet Storm
209147 7.8 HIGH
Local 		windscribe windscribe All versions of Windscribe VPN for Mac and Windows <= v2.02.10 contain a local privilege escalation vulnerability in the WindscribeService component. A low privilege user could leverage several openv… CWE-269
 Improper Privilege Management 		CVE-2020-27518 2024-11-21 14:21 2021-05-4 Show GitHub Exploit DB Packet Storm
209148 7.8 HIGH
Local 		pritunl pritunl-client-electron Pritunl Client v1.2.2550.20 contains a local privilege escalation vulnerability in the pritunl-service component. The attack vector is: malicious openvpn config. A local attacker could leverage the l… CWE-269
 Improper Privilege Management 		CVE-2020-27519 2024-11-21 14:21 2021-04-30 Show GitHub Exploit DB Packet Storm
209149 7.5 HIGH
Network 		aviatrix openvpn Arbitrary File Write exists in Aviatrix VPN Client 2.8.2 and earlier. The VPN service writes logs to a location that is world writable and can be leveraged to gain write access to any file on the sys… CWE-276
Incorrect Default Permissions  		CVE-2020-27569 2024-11-21 14:21 2021-04-22 Show GitHub Exploit DB Packet Storm
209150 7.5 HIGH
Network 		aviatrix controller Insecure File Permissions exist in Aviatrix Controller 5.3.1516. Several world writable files and directories were found in the controller resource. Note: All Aviatrix appliances are fully encrypted.… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-27568 2024-11-21 14:21 2021-04-22 Show GitHub Exploit DB Packet Storm