Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230461	4.3	警告	サン・マイクロシステムズ	-	Sun Java System Identity Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0239	2012-12-20 18:34	2008-01-9	Show	GitHub Exploit DB Packet Storm

230462	7.5	危険	Xine	-	xine-lib の input/libreal/rmff.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0238	2012-12-20 18:34	2008-01-11	Show	GitHub Exploit DB Packet Storm

230463	7.5	危険	zero cms	-	Zero CMS における意図したアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0233	2012-12-20 18:34	2008-01-10	Show	GitHub Exploit DB Packet Storm

230464	7.5	危険	zero cms	-	Zero CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0232	2012-12-20 18:34	2008-01-10	Show	GitHub Exploit DB Packet Storm

230465	7.5	危険	tuned studios	-	Tuned Studios Subwoofer などの Web ページテンプレートにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0231	2012-12-20 18:34	2008-01-10	Show	GitHub Exploit DB Packet Storm

230466	6.4	警告	Xine	-	xine-lib の input/libreal/rmff.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0225	2012-12-20 18:34	2008-01-10	Show	GitHub Exploit DB Packet Storm

230467	7.5	危険	runcms	-	RunCMS の Newbb_plus モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0224	2012-12-20 18:34	2008-01-10	Show	GitHub Exploit DB Packet Storm

230468	7.5	危険	WordPress.org	-	WordPress 用の Wp-FileManager プラグインにおける任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-0222	2012-12-20 18:34	2008-01-10	Show	GitHub Exploit DB Packet Storm

230469	6.4	警告	uebimiau	-	Uebimiau Webmail における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-0210	2012-12-20 18:34	2008-01-9	Show	GitHub Exploit DB Packet Storm

230470	5.8	警告	snitz forums 2000	-	Snitz Forums 2000 の Forums/login.asp におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2008-0209	2012-12-20 18:34	2008-01-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209831	8.8	HIGH Local	microsoft	windows_10 windows_server_2019 windows_server_2016	<p>An elevation of privilege vulnerability exists when Windows Hyper-V on a host server fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could …	NVD-CWE-noinfo	CVE-2020-1080	2024-11-21 14:09	2020-10-17	Show	GitHub Exploit DB Packet Storm

209832	7.8	HIGH Local	microsoft	windows_10 windows_server_2019 windows_server_2016	<p>An elevation of privilege vulnerability exists when Windows Hyper-V on a host server fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could …	NVD-CWE-noinfo	CVE-2020-1047	2024-11-21 14:09	2020-10-17	Show	GitHub Exploit DB Packet Storm

209833	5.3	MEDIUM Network	alibaba	nacos	Nacos 1.1.4 is affected by: Incorrect Access Control. An environment can be set up locally to get the service details interface. Then other Nacos service names can be accessed through the service lis…	NVD-CWE-noinfo	CVE-2020-19676	2024-11-21 14:09	2020-10-1	Show	GitHub Exploit DB Packet Storm

209834	9.8	CRITICAL Network	niushop	niushop	Niushop B2B2C Multi-business basic version V1.11, can bypass the administrator to obtain the background upload interface, through parameter upload, bypass the getimagesize function, upload php file, …	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-19672	2024-11-21 14:09	2020-10-1	Show	GitHub Exploit DB Packet Storm

209835	4.9	MEDIUM Network	niushop	niushop	In Niushop B2B2C Multi-Business Basic Edition V1.11, authentication can be bypassed, causing administrators to reset any passwords.	CWE-306 Missing Authentication for Critical Function	CVE-2020-19670	2024-11-21 14:09	2020-10-1	Show	GitHub Exploit DB Packet Storm

209836	7.5	HIGH Network	jdownloads	jdownloads	SQL injection exists in the jdownloads 3.2.63 component for Joomla! via components/com_jdownloads/helpers/categories.php, order function via the filter_order parameter.	CWE-89 SQL Injection	CVE-2020-19455	2024-11-21 14:09	2020-09-26	Show	GitHub Exploit DB Packet Storm

209837	7.5	HIGH Network	jdownloads	jdownloads	SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, updateLog function via the X-forwarded-for Header parameter.	CWE-89 SQL Injection	CVE-2020-19451	2024-11-21 14:09	2020-09-26	Show	GitHub Exploit DB Packet Storm

209838	7.5	HIGH Network	jdownloads	jdownloads	SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, getUserLimits function in the list parameter.	CWE-89 SQL Injection	CVE-2020-19450	2024-11-21 14:09	2020-09-26	Show	GitHub Exploit DB Packet Storm

209839	7.5	HIGH Network	jdownloads	jdownloads	SQL injection exists in the jdownloads 3.2.63 component for Joomla! com_jdownloads/models/send.php via the f_marked_files_id parameter.	CWE-89 SQL Injection	CVE-2020-19447	2024-11-21 14:09	2020-09-25	Show	GitHub Exploit DB Packet Storm

209840	6.6	MEDIUM Local	microsoft	windows_10 windows_server_2016 windows_server_2019	<p>An elevation of privilege vulnerability exists when the Microsoft Store Runtime improperly handles memory.</p> <p>To exploit this vulnerability, an attacker would first have to gain execution on t…	NVD-CWE-noinfo	CVE-2020-1146	2024-11-21 14:09	2020-09-12	Show	GitHub Exploit DB Packet Storm