Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230401 7.8 危険 サン・マイクロシステムズ - SunMC の PRM モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-4117 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
230402 5 警告 talkback - TalkBack における設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-4115 2012-12-20 18:52 2008-09-16 Show GitHub Exploit DB Packet Storm
230403 7.2 危険 Python Software Foundation - Python の Tools/faqwiz/move-faqwiz.sh における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-4108 2012-12-20 18:52 2008-09-18 Show GitHub Exploit DB Packet Storm
230404 5.1 警告 WordPress.org - WordPress におけるユーザパスワードを任意の値に変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4106 2012-12-20 18:52 2008-09-8 Show GitHub Exploit DB Packet Storm
230405 8.5 危険 The phpMyAdmin Project - phpMyAdmin の libraries/database_interface.lib.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4096 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
230406 7.5 危険 Ruby on Rails project - Ruby on Rails における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4094 2012-12-20 18:52 2008-09-30 Show GitHub Exploit DB Packet Storm
230407 6.8 警告 yourownbux - YourOwnBux の memberstats.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4093 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
230408 6.8 警告 source workshop - Web Directory Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4091 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
230409 7.5 危険 source workshop - Reciprocal Links Manager の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4086 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
230410 4.4 警告 stephenjungels - Plait の plaiter における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-4085 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209141 7.1 HIGH
Network 		redhat openshift_container_platform A Zip Slip vulnerability was found in the oc binary in openshift-clients where an arbitrary file write is achieved by using a specially crafted raw container image (.tar file) which contains symbolic… CWE-59
Link Following 		CVE-2020-27833 2024-11-21 14:21 2021-05-15 Show GitHub Exploit DB Packet Storm
209142 3.3 LOW
Local 		imagemagick
redhat
fedoraproject 		imagemagick
enterprise_linux_desktop
fedora 		In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c. - CVE-2020-27769 2024-11-21 14:21 2021-05-15 Show GitHub Exploit DB Packet Storm
209143 5.5 MEDIUM
Local 		linux
debian 		linux_kernel
debian_linux 		A vulnerability was found in Linux Kernel where in the spk_ttyio_receive_buf2() function, it would dereference spk_ttyio_synth without checking whether it is NULL or not, and may lead to a NULL-ptr d… - CVE-2020-27830 2024-11-21 14:21 2021-05-14 Show GitHub Exploit DB Packet Storm
209144 7.8 HIGH
Local 		uclouvain
fedoraproject
debian 		openjpeg
fedora
debian_linux 		A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to co… CWE-787
CWE-120
 Out-of-bounds Write
Classic Buffer Overflow 		CVE-2020-27823 2024-11-21 14:21 2021-05-14 Show GitHub Exploit DB Packet Storm
209145 5.5 MEDIUM
Local 		uclouvain
redhat
fedoraproject
debian 		openjpeg
enterprise_linux
fedora
debian_linux 		A flaw was found in OpenJPEG’s encoder in the opj_dwt_calc_explicit_stepsizes() function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow.… CWE-125
Out-of-bounds Read 		CVE-2020-27824 2024-11-21 14:21 2021-05-13 Show GitHub Exploit DB Packet Storm
209146 7.5 HIGH
Network 		samba
debian
fedoraproject 		samba
debian_linux
fedora 		A flaw was found in samba. Spaces used in a string around a domain name (DN), while supposed to be ignored, can cause invalid DN strings with spaces to instead write a zero-byte into out-of-bounds me… - CVE-2020-27840 2024-11-21 14:21 2021-05-13 Show GitHub Exploit DB Packet Storm
209147 7.8 HIGH
Local 		windscribe windscribe All versions of Windscribe VPN for Mac and Windows <= v2.02.10 contain a local privilege escalation vulnerability in the WindscribeService component. A low privilege user could leverage several openv… CWE-269
 Improper Privilege Management 		CVE-2020-27518 2024-11-21 14:21 2021-05-4 Show GitHub Exploit DB Packet Storm
209148 7.8 HIGH
Local 		pritunl pritunl-client-electron Pritunl Client v1.2.2550.20 contains a local privilege escalation vulnerability in the pritunl-service component. The attack vector is: malicious openvpn config. A local attacker could leverage the l… CWE-269
 Improper Privilege Management 		CVE-2020-27519 2024-11-21 14:21 2021-04-30 Show GitHub Exploit DB Packet Storm
209149 7.5 HIGH
Network 		aviatrix openvpn Arbitrary File Write exists in Aviatrix VPN Client 2.8.2 and earlier. The VPN service writes logs to a location that is world writable and can be leveraged to gain write access to any file on the sys… CWE-276
Incorrect Default Permissions  		CVE-2020-27569 2024-11-21 14:21 2021-04-22 Show GitHub Exploit DB Packet Storm
209150 7.5 HIGH
Network 		aviatrix controller Insecure File Permissions exist in Aviatrix Controller 5.3.1516. Several world writable files and directories were found in the controller resource. Note: All Aviatrix appliances are fully encrypted.… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-27568 2024-11-21 14:21 2021-04-22 Show GitHub Exploit DB Packet Storm