Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230441 8.5 危険 VideoLAN - VideoLAN VLC Media Player で使用される Xine ライブラリにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0295 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
230442 6.8 警告 visionburst - VisionBurst vcart における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0287 2012-12-20 18:34 2008-01-15 Show GitHub Exploit DB Packet Storm
230443 4.3 警告 Simple Machines - SMF におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0284 2012-12-20 18:34 2008-01-15 Show GitHub Exploit DB Packet Storm
230444 7.5 危険 xforum - Xforum の liretopic.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0279 2012-12-20 18:34 2008-01-15 Show GitHub Exploit DB Packet Storm
230445 6 警告 X7 Group - X7 Chat の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0278 2012-12-20 18:34 2008-01-15 Show GitHub Exploit DB Packet Storm
230446 6 警告 taskfreak - TaskFreak! の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0270 2012-12-20 18:34 2008-01-15 Show GitHub Exploit DB Packet Storm
230447 6.8 警告 wavelink media - TutorialCMS の activate.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0254 2012-12-20 18:34 2008-01-15 Show GitHub Exploit DB Packet Storm
230448 5 警告 php webquest - PHP Webquest におけるデータベースの資格情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-0249 2012-12-20 18:34 2008-01-11 Show GitHub Exploit DB Packet Storm
230449 9.3 危険 streamaudio - StreamAudio ChainCast ProxyManager の ccpm_0237.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0248 2012-12-20 18:34 2008-01-11 Show GitHub Exploit DB Packet Storm
230450 10 危険 uploadscript - UploadScript の admin.php における管理者の権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0246 2012-12-20 18:34 2008-01-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214051 5.4 MEDIUM
Network 		prestashop prestashop In PrestaShop from version 1.5.3.0 and before version 1.7.6.6, there is a stored XSS when using the name of a quick access item. The problem is fixed in 1.7.6.6. CWE-79
Cross-site Scripting 		CVE-2020-11074 2024-11-21 13:56 2020-07-3 Show GitHub Exploit DB Packet Storm
214052 5.5 MEDIUM
Local 		redhat
opensuse 		enterprise_linux
leap 		A buffer over-read flaw was found in RH kernel versions before 5.0 in crypto_authenc_extractkeys in crypto/authenc.c in the IPsec Cryptographic algorithm's module, authenc. When a payload longer than… CWE-125
Out-of-bounds Read 		CVE-2020-10769 2024-11-21 13:56 2020-06-27 Show GitHub Exploit DB Packet Storm
214053 5.5 MEDIUM
Local 		python
fedoraproject
canonical 		pillow
fedora
ubuntu_linux 		In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file. CWE-125
Out-of-bounds Read 		CVE-2020-10994 2024-11-21 13:56 2020-06-26 Show GitHub Exploit DB Packet Storm
214054 8.8 HIGH
Network 		semtech loramac-node In LoRaMac-node before 4.4.4, a reception buffer overflow can happen due to the received buffer size not being checked. This has been fixed in 4.4.4. - CVE-2020-11068 2024-11-21 13:56 2020-06-24 Show GitHub Exploit DB Packet Storm
214055 6.5 MEDIUM
Network 		freerdp
opensuse
fedoraproject
canonical
debian 		freerdp
leap
fedora
ubuntu_linux
debian_linux 		In FreeRDP before version 2.1.2, there is an out of bounds read in license_read_new_or_upgrade_license_packet. A manipulated license packet can lead to out of bound reads to an internal buffer. This … - CVE-2020-11099 2024-11-21 13:56 2020-06-23 Show GitHub Exploit DB Packet Storm
214056 6.5 MEDIUM
Network 		freerdp
fedoraproject
opensuse
canonical
debian 		freerdp
fedora
leap
ubuntu_linux
debian_linux 		In FreeRDP before version 2.1.2, there is an out-of-bound read in glyph_cache_put. This affects all FreeRDP clients with `+glyph-cache` option enabled This is fixed in version 2.1.2. - CVE-2020-11098 2024-11-21 13:56 2020-06-23 Show GitHub Exploit DB Packet Storm
214057 5.4 MEDIUM
Network 		freerdp
fedoraproject
opensuse
canonical
debian 		freerdp
fedora
leap
ubuntu_linux
debian_linux 		In FreeRDP before version 2.1.2, an out of bounds read occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is… - CVE-2020-11097 2024-11-21 13:56 2020-06-23 Show GitHub Exploit DB Packet Storm
214058 6.5 MEDIUM
Network 		freerdp
fedoraproject
opensuse
canonical
debian 		freerdp
fedora
leap
ubuntu_linux
debian_linux 		In FreeRDP before version 2.1.2, there is a global OOB read in update_read_cache_bitmap_v3_order. As a workaround, one can disable bitmap cache with -bitmap-cache (default). This is fixed in version … - CVE-2020-11096 2024-11-21 13:56 2020-06-23 Show GitHub Exploit DB Packet Storm
214059 5.4 MEDIUM
Network 		freerdp
fedoraproject
opensuse
canonical
debian 		freerdp
fedora
leap
ubuntu_linux
debian_linux 		In FreeRDP before version 2.1.2, an out of bound reads occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is… - CVE-2020-11095 2024-11-21 13:56 2020-06-23 Show GitHub Exploit DB Packet Storm
214060 6.5 MEDIUM
Local 		redhat ansible_tower An exposure of sensitive information flaw was found in Ansible version 3.7.0. Sensitive information, such tokens and other secrets could be readable and exposed from the rsyslog configuration file, w… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-10782 2024-11-21 13:56 2020-06-18 Show GitHub Exploit DB Packet Storm