Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230611	10	危険	SAP	-	SAP GUI および SAPSprint に含まれる SAPLPD におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2008-0620	2012-12-20 18:34	2008-02-6	Show	GitHub Exploit DB Packet Storm

230612	7.5	危険	rmsoft XOOPS	-	XOOPS 用の RMSOFT Gallery System モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0611	2012-12-20 18:34	2008-02-6	Show	GitHub Exploit DB Packet Storm

230613	9.3	危険	UltraVNC	-	UltraVNC 用の vncviewer におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0610	2012-12-20 18:34	2008-02-6	Show	GitHub Exploit DB Packet Storm

230614	6.8	警告	xlight ftp server	-	XLight FTP Server の LDAP 認証機能におけるアクセス制限を回避される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-0604	2012-12-20 18:34	2008-02-6	Show	GitHub Exploit DB Packet Storm

230615	4.3	警告	Skype Technologies S.A.	-	Windows 上で稼動する Skype の Internet Explorer Web コントロールにおけるクロスゾーンスクリプティングの脆弱性	CWE-94 コード・インジェクション	CVE-2008-0583	2012-12-20 18:34	2008-02-4	Show	GitHub Exploit DB Packet Storm

230616	4.3	警告	Skype Technologies S.A.	-	Windows 上で稼動する Skype の Internet Explorer Web コントロールにおけるクロスゾーンスクリプティングの脆弱性	CWE-94 コード・インジェクション	CVE-2008-0582	2012-12-20 18:34	2008-02-4	Show	GitHub Exploit DB Packet Storm

230617	4.3	警告	トリップワイヤ	-	Tripwire Enterprise の Web 管理ログインページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0578	2012-12-20 18:34	2008-02-4	Show	GitHub Exploit DB Packet Storm

230618	4.3	警告	webSPELL	-	webSPELL の admin/admincenter.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-0575	2012-12-20 18:34	2008-02-4	Show	GitHub Exploit DB Packet Storm

230619	4.3	警告	webSPELL	-	webSPELL の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0574	2012-12-20 18:34	2008-02-4	Show	GitHub Exploit DB Packet Storm

230620	7.2	危険	SafeNet, Inc	-	SafeNET HighAssurance Remote および SoftRemote の IPSecDrv.sys における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0573	2012-12-20 18:34	2008-02-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200551	9.8	CRITICAL Network	jooby	jooby	This affects the package io.jooby:jooby-netty before 1.6.9, from 2.0.0 and before 2.2.1. The DefaultHttpHeaders is set to false which means it does not validates that the header isn't being abused fo…	NVD-CWE-Other	CVE-2020-7622	2024-11-21 14:37	2020-04-7	Show	GitHub Exploit DB Packet Storm

200552	5.3	MEDIUM Network	dot_project	dot	eivindfjeldstad-dot below 1.0.3 is vulnerable to Prototype Pollution.The function 'set' could be tricked into adding or modifying properties of 'Object.prototype' using a '__proto__' payload.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7639	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

200553	5.3	MEDIUM Network	confinit_project	confinit	confinit through 0.3.0 is vulnerable to Prototype Pollution.The 'setDeepProperty' function could be tricked into adding or modifying properties of 'Object.prototype' using a '__proto__' payload.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7638	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

200554	5.3	MEDIUM Network	class-transformer_project	class-transformer	class-transformer before 0.3.1 allow attackers to perform Prototype Pollution. The classToPlainFromExist function could be tricked into adding or modifying properties of Object.prototype using a __pr…	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7637	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

200555	9.8	CRITICAL Network	adb-driver_project	adb-driver	adb-driver through 0.1.8 is vulnerable to Command Injection.It allows execution of arbitrary commands via the command function.	CWE-78 OS Command	CVE-2020-7636	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

200556	9.8	CRITICAL Network	compass-compile_project	compass-compile	compass-compile through 0.0.1 is vulnerable to Command Injection.It allows execution of arbitrary commands via tha options argument.	CWE-78 OS Command	CVE-2020-7635	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

200557	9.8	CRITICAL Network	heroku-addonpool_project	heroku-addonpool	heroku-addonpool through 0.1.15 is vulnerable to Command Injection.	CWE-78 OS Command	CVE-2020-7634	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

200558	9.8	CRITICAL Network	apiconnect-cli-plugins_project	apiconnect-cli-plugins	apiconnect-cli-plugins through 6.0.1 is vulnerable to Command Injection.It allows execution of arbitrary commands via the pluginUri argument.	CWE-78 OS Command	CVE-2020-7633	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

200559	9.8	CRITICAL Network	node-mpv_project	node-mpv	node-mpv through 1.4.3 is vulnerable to Command Injection. It allows execution of arbitrary commands via the options argument.	CWE-78 OS Command	CVE-2020-7632	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

200560	9.8	CRITICAL Network	diskusage-ng_project	diskusage-ng	diskusage-ng through 0.2.4 is vulnerable to Command Injection.It allows execution of arbitrary commands via the path argument.	CWE-78 OS Command	CVE-2020-7631	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm