Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230341	3.6	注意	scribe	-	Scribe の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0822	2012-12-20 18:34	2008-02-19	Show	GitHub Exploit DB Packet Storm

230342	3.6	注意	plutostatus	-	PlutoStatus Locator の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0819	2012-12-20 18:34	2008-02-19	Show	GitHub Exploit DB Packet Storm

230343	6.4	警告	truc	-	TRUC の download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0814	2012-12-20 18:34	2008-02-18	Show	GitHub Exploit DB Packet Storm

230344	5	警告	xpweb	-	XPWeb の Download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0813	2012-12-20 18:34	2008-02-18	Show	GitHub Exploit DB Packet Storm

230345	9.3	危険	reality	-	PHPizabi の image.php における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0805	2012-12-20 18:34	2008-02-18	Show	GitHub Exploit DB Packet Storm

230346	6.8	警告	Thecus	-	Thecus N5200Pro NAS Server の usrgetform.html における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-0804	2012-12-20 18:34	2008-02-18	Show	GitHub Exploit DB Packet Storm

230347	7.5	危険	VWar	-	VWar の calendar.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0753	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

230348	10	危険	ソニー・コンピュータエンタテインメント	-	Sony ImageStation 用の SonyISUpload.cab におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0748	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

230349	7.5	危険	PreProject.com	-	PreProjects.com Pre Hotels & Resorts Management System の user_login.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0744	2012-12-20 18:34	2008-02-12	Show	GitHub Exploit DB Packet Storm

230350	7.5	危険	powerscripts	-	PowerScripts PowerNews におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0742	2012-12-20 18:34	2008-02-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214231	5.5	MEDIUM Local	linux debian canonical opensuse netapp	linux_kernel debian_linux ubuntu_linux leap cloud_backup element_software steelstore_cloud_integrated_storage solidfire hci_management_node active_iq_unified_manager hci…	An issue was discovered in the Linux kernel before 5.4.17. drivers/spi/spi-dw.c allows attackers to cause a panic via concurrent calls to dw_spi_irq and dw_spi_transfer_one, aka CID-19b61392c5a8.	CWE-662 Improper Synchronization	CVE-2020-12769	2024-11-21 14:00	2020-05-10	Show	GitHub Exploit DB Packet Storm

214232	9.8	CRITICAL Network	solis	gnuteca	Gnuteca 3.8 allows action=main:search:simpleSearch SQL Injection via the exemplaryStatusId parameter.	CWE-89 SQL Injection	CVE-2020-12766	2024-11-21 14:00	2020-05-10	Show	GitHub Exploit DB Packet Storm

214233	5.3	MEDIUM Network	solis	miolo	Solis Miolo 2.0 allows index.php?module=install&action=view&item= Directory Traversal.	CWE-22 Path Traversal	CVE-2020-12765	2024-11-21 14:00	2020-05-10	Show	GitHub Exploit DB Packet Storm

214234	5.3	MEDIUM Network	solis	gnuteca	Gnuteca 3.8 allows file.php?folder=/&file= Directory Traversal.	CWE-22 Path Traversal	CVE-2020-12764	2024-11-21 14:00	2020-05-10	Show	GitHub Exploit DB Packet Storm

214235	7.8	HIGH Local	json-c fedoraproject debian canonical siemens	json-c fedora debian_linux ubuntu_linux sinec_ins	json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbuf_memappend.	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2020-12762	2024-11-21 14:00	2020-05-10	Show	GitHub Exploit DB Packet Storm

214236	9.1	CRITICAL Network	enlightenment	imlib2	modules/loaders/loader_ico.c in imlib2 1.6.0 has an integer overflow (with resultant invalid memory allocations and out-of-bounds reads) via an icon with many colors in its color map.	CWE-125 CWE-190 Out-of-bounds Read Integer Overflow or Wraparound	CVE-2020-12761	2024-11-21 14:00	2020-05-10	Show	GitHub Exploit DB Packet Storm

214237	3.3	LOW Local	kde	kio-extras	fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a cacheAuthentication call even if the user had not set the keepPassword option. This may lead to unintended…	NVD-CWE-noinfo	CVE-2020-12755	2024-11-21 14:00	2020-05-10	Show	GitHub Exploit DB Packet Storm

214238	9.1	CRITICAL Network	broadcom fedoraproject	tcpreplay fedora	tcprewrite in Tcpreplay through 4.3.2 has a heap-based buffer over-read during a get_c operation. The issue is being triggered in the function get_ipv6_next() at common/get.c.	CWE-125 Out-of-bounds Read	CVE-2020-12740	2024-11-21 14:00	2020-05-9	Show	GitHub Exploit DB Packet Storm

214239	6.5	MEDIUM Network	maxum	rumpus	An issue was discovered in Maxum Rumpus before 8.2.12 on macOS. Authenticated users can perform a path traversal using double escaped characters, enabling read access to arbitrary files on the server.	CWE-22 Path Traversal	CVE-2020-12737	2024-11-21 14:00	2020-05-9	Show	GitHub Exploit DB Packet Storm

214240	5.5	MEDIUM Local	avira	free_antivirus	Avira Free Antivirus through 15.0.2005.1866 allows local users to discover user credentials. The functions of the executable file Avira.PWM.NativeMessaging.exe are aimed at collecting credentials sto…	NVD-CWE-noinfo	CVE-2020-12680	2024-11-21 14:00	2020-05-8	Show	GitHub Exploit DB Packet Storm