Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230561 6.5 警告 xigla - Xigla Absolute News Manager XE の search.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2757 2012-12-20 18:52 2008-06-18 Show GitHub Exploit DB Packet Storm
230562 4.3 警告 xigla - Xigla Absolute Control Panel XE の admin/users.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2756 2012-12-20 18:52 2008-06-18 Show GitHub Exploit DB Packet Storm
230563 7.1 危険 サン・マイクロシステムズ - Sun Java System Calendar Server などの cshttpd におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-2749 2012-12-20 18:52 2008-06-13 Show GitHub Exploit DB Packet Storm
230564 5 警告 skulltag team - Skulltag におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2748 2012-12-20 18:52 2008-06-18 Show GitHub Exploit DB Packet Storm
230565 4.3 警告 vBulletin Solutions, Inc. - vBulletin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2744 2012-12-20 18:52 2008-06-9 Show GitHub Exploit DB Packet Storm
230566 4.3 警告 Xerox - Xerox 4110 などの Copier/Printers の組み込み Web サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2743 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
230567 4.3 警告 TYPO3 Association - TYPO3 の fe_adminlib.inc におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2718 2012-12-20 18:52 2008-06-16 Show GitHub Exploit DB Packet Storm
230568 9.3 危険 サン・マイクロシステムズ - Sun Java System AM における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-2705 2012-12-20 18:52 2008-06-11 Show GitHub Exploit DB Packet Storm
230569 4.3 警告 web-album - WEBalbum の photo_add-c.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2698 2012-12-20 18:52 2008-06-13 Show GitHub Exploit DB Packet Storm
230570 7.5 危険 phpinv - phpInv の entry.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2695 2012-12-20 18:52 2008-06-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201281 5.5 MEDIUM
Local 		kubernetes kubernetes The Kubernetes kubelet component in versions 1.1-1.16.12, 1.17.0-1.17.8 and 1.18.0-1.18.5 do not account for disk usage by a pod which writes to its own /etc/hosts file. The /etc/hosts file mounted i… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-8557 2024-11-21 14:39 2020-07-24 Show GitHub Exploit DB Packet Storm
201282 6.8 MEDIUM
Network 		kubernetes kubernetes The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an att… CWE-601
Open Redirect 		CVE-2020-8559 2024-11-21 14:39 2020-07-22 Show GitHub Exploit DB Packet Storm
201283 7.2 HIGH
Network 		gpononu 1ge_router_wifi_onu_v2801rw_firmware
1ge\+3fe\+wifi_onu_v2804rgw_firmware 		Guangzhou 1GE ONU V2801RW 1.9.1-181203 through 2.9.0-181024 and V2804RGW 1.9.1-181203 through 2.9.0-181024 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in … CWE-78
OS Command  		CVE-2020-8958 2024-11-21 14:39 2020-07-16 Show GitHub Exploit DB Packet Storm
201284 5.5 MEDIUM
Local 		openthread wpantund A memory leak in Openthread's wpantund versions up to commit 0e5d1601febb869f583e944785e5685c6c747be7, when used in an environment where wpanctl is directly interfacing with the control driver (eg: d… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2020-8916 2024-11-21 14:39 2020-07-8 Show GitHub Exploit DB Packet Storm
201285 7.5 HIGH
Network 		envoyproxy envoy Envoy version 1.14.2, 1.13.2, 1.12.4 or earlier may exhaust file descriptors and/or memory when accepting too many connections. CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-8663 2024-11-21 14:39 2020-07-2 Show GitHub Exploit DB Packet Storm
201286 6.5 MEDIUM
Network 		netapp hci_h610s_firmware The NetApp HCI H610C, H615C and H610S Baseboard Management Controllers (BMC) are shipped with a documented default account and password that should be changed during the initial node setup. During up… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-8573 2024-11-21 14:39 2020-06-29 Show GitHub Exploit DB Packet Storm
201287 7.2 HIGH
Network 		johnsoncontrols exacqvision_web_service
exacqvision_enterprise_manager 		A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterpr… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-9047 2024-11-21 14:39 2020-06-27 Show GitHub Exploit DB Packet Storm
201288 7.8 HIGH
Local 		google
opensuse 		guest-oslogin
leap 		A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi… CWE-276
Incorrect Default Permissions  		CVE-2020-8933 2024-11-21 14:39 2020-06-22 Show GitHub Exploit DB Packet Storm
201289 7.8 HIGH
Local 		google
opensuse 		guest-oslogin
leap 		A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi… CWE-276
Incorrect Default Permissions  		CVE-2020-8907 2024-11-21 14:39 2020-06-22 Show GitHub Exploit DB Packet Storm
201290 7.8 HIGH
Local 		google
opensuse 		guest-oslogin
leap 		A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi… CWE-276
Incorrect Default Permissions  		CVE-2020-8903 2024-11-21 14:39 2020-06-22 Show GitHub Exploit DB Packet Storm