Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230491 6.8 警告 smallnuke - SmallNuke の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0147 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
230492 7.5 危険 phprisk - NetRisk の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0144 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
230493 7.5 危険 spacial audio solutions - samPHPweb の common/db.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0143 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
230494 9.3 危険 ZyXEL - ZyXEL P-330W ルータの Web 管理インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-6730 2012-12-20 18:34 2009-09-10 Show GitHub Exploit DB Packet Storm
230495 4.3 警告 ZyXEL - ZyXEL P-330W ルータの Web 管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6729 2012-12-20 18:34 2009-09-10 Show GitHub Exploit DB Packet Storm
230496 6.8 警告 webportal - WebPortal CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0142 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
230497 7.5 危険 webportal - WebPortal CMS の actions.php における任意のアカウントへのアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-0141 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
230498 6.4 警告 uebimiau - Uebimiau Webmail の error.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0140 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
230499 7.5 危険 snetworks - SNETWORKS PHP CLASSIFIEDS の config.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0137 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
230500 5 警告 snitz forums 2000 - Snitz Forums 2000 における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-0136 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200591 5.5 MEDIUM
Local 		f5 big-iq_centralized_management
big-ip_local_traffic_manager
big-ip_application_acceleration_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_access_policy_manager
big… 		On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, and 12.1.0-12.1.5.1 and BIG-IQ 5.2.0-7.1.0, when creating a QKView, credentials for binding to LDAP servers used for remote authentication o… CWE-200
Information Exposure 		CVE-2020-5890 2024-11-21 14:34 2020-05-1 Show GitHub Exploit DB Packet Storm
200592 8.1 HIGH
Adjacent 		f5 big-ip_local_traffic_manager
big-ip_application_acceleration_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_access_policy_manager
big-ip_application_security_manager<… 		On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, BIG-IP Virtual Edition (VE) may expose a mechanism for adjacent network (layer 2) attackers to access local daemons and bypass port … NVD-CWE-noinfo
CVE-2020-5888 2024-11-21 14:34 2020-05-1 Show GitHub Exploit DB Packet Storm
200593 3.7 LOW
Network 		f5 big-ip_access_policy_manager
big-ip_access_policy_manager_client 		In versions 7.1.5-7.1.8, when a user connects to a VPN using BIG-IP Edge Client over an unsecure network, BIG-IP Edge Client responds to authentication requests over HTTP while sending probes for cap… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-5893 2024-11-21 14:34 2020-05-1 Show GitHub Exploit DB Packet Storm
200594 5.4 MEDIUM
Network 		f5 big-ip_access_policy_manager On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, in BIG-IP APM portal access, a specially crafted HTTP request can lead to reflected XSS after the BIG-IP APM system rewrites the HTT… CWE-79
Cross-site Scripting 		CVE-2020-5889 2024-11-21 14:34 2020-05-1 Show GitHub Exploit DB Packet Storm
200595 7.5 HIGH
Network 		f5 big-ip_application_security_manager On BIG-IP ASM 11.6.1-11.6.5.1, under certain configurations, the BIG-IP system sends data plane traffic to back-end servers unencrypted, even when a Server SSL profile is applied. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-5879 2024-11-21 14:34 2020-05-1 Show GitHub Exploit DB Packet Storm
200596 7.5 HIGH
Network 		f5 big-ip_access_policy_manager On BIG-IP APM 15.0.0-15.0.1.2, 14.1.0-14.1.2.3, and 14.0.0-14.0.1, in certain circumstances, an attacker sending specifically crafted requests to a BIG-IP APM virtual server may cause a disruption of… NVD-CWE-noinfo
CVE-2020-5874 2024-11-21 14:34 2020-05-1 Show GitHub Exploit DB Packet Storm
200597 7.5 HIGH
Network 		f5 big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_application_acceleration_manager
big-ip_application_security_manager
big-ip_fraud_protection_servi… 		On BIG-IP 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, undisclosed HTTP/2 requests can lead to a denial of service when sent to a virtual server configured with the Fallback Host setting an… NVD-CWE-noinfo
CVE-2020-5891 2024-11-21 14:34 2020-05-1 Show GitHub Exploit DB Packet Storm
200598 9.1 CRITICAL
Network 		f5 big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_application_acceleration_manager
big-ip_application_security_manager
big-ip_fraud_protection_servi… 		On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, BIG-IP Virtual Edition (VE) may expose a mechanism for remote attackers to access local daemons and bypass port lockdown settings. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2020-5887 2024-11-21 14:34 2020-05-1 Show GitHub Exploit DB Packet Storm
200599 9.1 CRITICAL
Network 		f5 big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_application_acceleration_manager
big-ip_application_security_manager
big-ip_domain_name_system
 On versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, and 12.1.0-12.1.5.1, BIG-IP systems setup for connection mirroring in a High Availability (HA) pair transfers sensitive cryptographic ob… CWE-326
CWE-319
Inadequate Encryption Strength
Cleartext Transmission of Sensitive Information 		CVE-2020-5886 2024-11-21 14:34 2020-05-1 Show GitHub Exploit DB Packet Storm
200600 9.1 CRITICAL
Network 		f5 big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_application_acceleration_manager
big-ip_application_security_manager
big-ip_domain_name_system
 On versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, and 12.1.0-12.1.5.1, BIG-IP systems set up for connection mirroring in a high availability (HA) pair transfer sensitive cryptographic ob… CWE-326
CWE-319
Inadequate Encryption Strength
Cleartext Transmission of Sensitive Information 		CVE-2020-5885 2024-11-21 14:34 2020-05-1 Show GitHub Exploit DB Packet Storm