Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230471 4.3 警告 swfdec - Swfdec の swfdec_load_object.c における任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1834 2012-12-20 18:52 2008-04-16 Show GitHub Exploit DB Packet Storm
230472 4.4 警告 SAP - Linux 上で稼動する SAP MaxDB の dbmsrv における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1810 2012-12-20 18:52 2008-08-1 Show GitHub Exploit DB Packet Storm
230473 9.3 危険 Skype Technologies S.A. - Skype における警告ダイアログを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-1805 2012-12-20 18:52 2008-06-6 Show GitHub Exploit DB Packet Storm
230474 9.3 危険 Rdesktop - rdesktop の process_redirect_pdu 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1802 2012-12-20 18:52 2008-05-12 Show GitHub Exploit DB Packet Storm
230475 5 警告 sabros.us - sabros.us の thumbnails.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1799 2012-12-20 18:52 2008-04-15 Show GitHub Exploit DB Packet Storm
230476 7.1 危険 securecomputing - Secure Computing Webwasher におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-1797 2012-12-20 18:52 2008-04-15 Show GitHub Exploit DB Packet Storm
230477 6.8 警告 prozilla - Prozilla Forum の forum.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1789 2012-12-20 18:52 2008-04-15 Show GitHub Exploit DB Packet Storm
230478 7.5 危険 prozilla - Prozilla Entertainers の directory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1788 2012-12-20 18:52 2008-04-15 Show GitHub Exploit DB Packet Storm
230479 4.3 警告 poplar gedcom viewer - Poplar Gedcom Viewer の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1787 2012-12-20 18:52 2008-04-15 Show GitHub Exploit DB Packet Storm
230480 5.5 警告 prozilla - Prozilla Top 100 の delete.php における統計情報を削除される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-1785 2012-12-20 18:52 2008-04-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214271 7.3 HIGH
Local 		solarwinds advanced_monitoring_agent SolarWinds Advanced Monitoring Agent before 10.8.9 allows local users to gain privileges via a Trojan horse .exe file, because everyone can write to a certain .exe file. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-13912 2024-11-21 14:02 2020-06-8 Show GitHub Exploit DB Packet Storm
214272 9.1 CRITICAL
Network 		pengutronix barebox Pengutronix Barebox through v2020.05.0 has an out-of-bounds read in nfs_read_reply in net/nfs.c because a field of an incoming network packet is directly used as a length field without any bounds che… CWE-125
Out-of-bounds Read 		CVE-2020-13910 2024-11-21 14:02 2020-06-8 Show GitHub Exploit DB Packet Storm
214273 9.8 CRITICAL
Network 		facade ignition The Ignition component before 2.0.5 for Laravel mishandles globals, _get, _post, _cookie, and _env. NOTE: in the 1.x series, versions 1.16.15 and later are unaffected as a consequence of the CVE-2021… NVD-CWE-noinfo
CVE-2020-13909 2024-11-21 14:02 2020-06-8 Show GitHub Exploit DB Packet Storm
214274 5.5 MEDIUM
Local 		ffmpeg
canonical
debian 		ffmpeg
ubuntu_linux
debian_linux 		FFmpeg 2.8 and 4.2.3 has a use-after-free via a crafted EXTINF duration in an m3u8 file because parse_playlist in libavformat/hls.c frees a pointer, and later that pointer is accessed in av_probe_inp… CWE-416
 Use After Free 		CVE-2020-13904 2024-11-21 14:02 2020-06-8 Show GitHub Exploit DB Packet Storm
214275 7.1 HIGH
Local 		imagemagick imagemagick ImageMagick 7.0.9-27 through 7.0.10-17 has a heap-based buffer over-read in BlobToStringInfo in MagickCore/string.c during TIFF image decoding. CWE-125
Out-of-bounds Read 		CVE-2020-13902 2024-11-21 14:02 2020-06-8 Show GitHub Exploit DB Packet Storm
214276 6.1 MEDIUM
Network 		hesk hesk HESK before 3.1.10 allows reflected XSS. CWE-79
Cross-site Scripting 		CVE-2020-13897 2024-11-21 14:02 2020-06-7 Show GitHub Exploit DB Packet Storm
214277 8.8 HIGH
Network 		p5-crypt-perl_project p5-crypt-perl Crypt::Perl::ECDSA in the Crypt::Perl (aka p5-Crypt-Perl) module before 0.32 for Perl fails to verify correct ECDSA signatures when r and s are small and when s = 1. This happens when using the curve… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-13895 2024-11-21 14:02 2020-06-7 Show GitHub Exploit DB Packet Storm
214278 7.5 HIGH
Network 		dext5 dext5 handler/upload_handler.jsp in DEXT5 Editor through 3.5.1402961 allows an attacker to download arbitrary files via the savefilepath field. CWE-276
Incorrect Default Permissions  		CVE-2020-13894 2024-11-21 14:02 2020-06-7 Show GitHub Exploit DB Packet Storm
214279 5.4 MEDIUM
Network 		laborator neon The Neon theme 2.0 before 2020-06-03 for Bootstrap allows XSS via an Add Task Input operation in a dashboard. CWE-79
Cross-site Scripting 		CVE-2020-13890 2024-11-21 14:02 2020-06-7 Show GitHub Exploit DB Packet Storm
214280 5.4 MEDIUM
Network 		bludit bludit showAlert() in the administration panel in Bludit 3.12.0 allows XSS. CWE-79
Cross-site Scripting 		CVE-2020-13889 2024-11-21 14:02 2020-06-7 Show GitHub Exploit DB Packet Storm