Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230531 7.5 危険 powerscripts - PowerPHPBoard におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1534 2012-12-20 18:52 2008-03-28 Show GitHub Exploit DB Packet Storm
230532 5 警告 ZyXEL - ZyXEL Prestige ルータにおけるパスワードを予測される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-1529 2012-12-20 18:52 2008-03-26 Show GitHub Exploit DB Packet Storm
230533 4 警告 ZyXEL - ZyXEL Prestige ルータにおける認証データを取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-1528 2012-12-20 18:52 2008-03-26 Show GitHub Exploit DB Packet Storm
230534 7.5 危険 ZyXEL - ZyXEL Prestige ルータにおけるアクセス権を取得される脆弱性 CWE-310
暗号の問題 		CVE-2008-1527 2012-12-20 18:52 2008-03-26 Show GitHub Exploit DB Packet Storm
230535 5 警告 ZyXEL - ZyXEL Prestige ルータにおけるパスワードを破られる脆弱性 CWE-310
暗号の問題 		CVE-2008-1526 2012-12-20 18:52 2008-03-26 Show GitHub Exploit DB Packet Storm
230536 5 警告 ZyXEL - ZyXEL Prestige ルータのデフォルト SNMP 設定における SNMP リクエストを送られる脆弱性 CWE-16
環境設定 		CVE-2008-1525 2012-12-20 18:52 2008-03-26 Show GitHub Exploit DB Packet Storm
230537 7.5 危険 ZyXEL - ZyXEL Prestige ルータの SNMP サービスにおける管理アクションを実行される脆弱性 CWE-16
環境設定 		CVE-2008-1524 2012-12-20 18:52 2008-03-26 Show GitHub Exploit DB Packet Storm
230538 5 警告 ZyXEL - ZyXEL Prestige ルータにおける ISP の資格情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-1523 2012-12-20 18:52 2008-03-26 Show GitHub Exploit DB Packet Storm
230539 7.5 危険 ZyXEL - ZyXEL Prestige ルータにおけるアクセス権を取得される脆弱性 CWE-16
環境設定 		CVE-2008-1522 2012-12-20 18:52 2008-03-26 Show GitHub Exploit DB Packet Storm
230540 6.5 警告 ZyXEL - ZyXEL Prestige ルータにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1521 2012-12-20 18:52 2008-03-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209611 7.8 HIGH
Local 		360 speed_browser 360 Speed Browser 12.0.1247.0 has a DLL hijacking vulnerability, which can be exploited by attackers to execute malicious code. It is a dual-core browser owned by Beijing Qihoo Technology. CWE-427
 Uncontrolled Search Path Element 		CVE-2020-24158 2024-11-21 14:14 2020-09-4 Show GitHub Exploit DB Packet Storm
209612 6.1 MEDIUM
Network 		xuxueli xxl-job Multiple cross-site scripting (XSS) vulnerabilities in xxl-job v2.2.0 allow remote attackers to inject arbitrary web script or HTML via (1) AppName and (2)AddressList parameter in JobGroupController.… CWE-79
Cross-site Scripting 		CVE-2020-23814 2024-11-21 14:14 2020-09-4 Show GitHub Exploit DB Packet Storm
209613 7.5 HIGH
Network 		xuxueli xxl-job xxl-job 2.2.0 allows Information Disclosure of username, model, and password via job/admin/controller/UserController.java. NVD-CWE-noinfo
CVE-2020-23811 2024-11-21 14:14 2020-09-4 Show GitHub Exploit DB Packet Storm
209614 5.5 MEDIUM
Local 		midnightbsd
freebsd 		midnightbsd
freebsd 		In MidnightBSD before 1.2.6 and 1.3 before August 2020, and FreeBSD before 7, a NULL pointer dereference was found in the Linux emulation layer that allows attackers to crash the running kernel. Duri… CWE-476
 NULL Pointer Dereference 		CVE-2020-24385 2024-11-21 14:14 2020-09-4 Show GitHub Exploit DB Packet Storm
209615 6.1 MEDIUM
Network 		golang
fedoraproject
opensuse
oracle 		go
fedora
leap
communications_cloud_native_core_policy 		Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header. CWE-79
Cross-site Scripting 		CVE-2020-24553 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
209616 9.8 CRITICAL
Network 		forlogic qualiex ForLogic Qualiex v1 and v3 has weak token expiration. This allows remote unauthenticated privilege escalation and access to sensitive data via token reuse. CWE-672
 Operation on a Resource after Expiration or Release 		CVE-2020-24030 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
209617 9.8 CRITICAL
Network 		forlogic qualiex Because of unauthenticated password changes in ForLogic Qualiex v1 and v3, customer and admin permissions and data can be accessed via a simple request. CWE-287
Improper Authentication 		CVE-2020-24029 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
209618 8.8 HIGH
Network 		forlogic qualiex ForLogic Qualiex v1 and v3 allows any authenticated customer to achieve privilege escalation via user creations, password changes, or user permission updates. NVD-CWE-noinfo
CVE-2020-24028 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
209619 7.1 HIGH
Network 		stock_management_system_project stock_management_system A Cross-Site Request Forgery (CSRF) vulnerability in changeUsername.php in SourceCodester Stock Management System v1.0 allows remote attackers to deny future logins by changing an authenticated victi… CWE-352
 Origin Validation Error 		CVE-2020-23830 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
209620 9.8 CRITICAL
Network 		zyxel vmg5313-b30b_firmware Zyxel VMG5313-B30B router on firmware 5.13(ABCJ.6)b3_1127, and possibly older versions of firmware are affected by insecure permissions which allows regular and other users to create new users with e… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-24355 2024-11-21 14:14 2020-09-2 Show GitHub Exploit DB Packet Storm