Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230651	6.4	警告	spyce	-	Spyce - PSP の spyce/examples/redirect.spy におけるオープンリダイレクトの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0981	2012-12-20 18:34	2008-02-25	Show	GitHub Exploit DB Packet Storm

230652	4.3	警告	spyce	-	Spyce - PSP におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0980	2012-12-20 18:34	2008-02-25	Show	GitHub Exploit DB Packet Storm

230653	4.3	警告	webgui	-	Plain Black WebGUI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0940	2012-12-20 18:34	2008-02-25	Show	GitHub Exploit DB Packet Storm

230654	7.5	危険	WordPress.org	-	WordPress 用の WPPA プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0939	2012-12-20 18:34	2008-02-25	Show	GitHub Exploit DB Packet Storm

230655	7.5	危険	the sword project	-	The SWORD Project Diatheke の diatheke.pl における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-0932	2012-12-20 18:34	2008-02-25	Show	GitHub Exploit DB Packet Storm

230656	6.3	警告	xwine	-	Debian GNU/Linux 上で稼動する XWine の w_export.c における任意のコマンドを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0931	2012-12-20 18:34	2008-03-3	Show	GitHub Exploit DB Packet Storm

230657	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Manuales モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0922	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

230658	4.3	警告	tendenci	-	Tendenci CMS の search.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0793	2012-12-20 18:34	2008-02-14	Show	GitHub Exploit DB Packet Storm

230659	4.3	警告	Simple Machines	-	SMF Shoutbox の sboxDB.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0775	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

230660	7.5	危険	site2nite	-	Site2Nite の default.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0771	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200691	5.3	MEDIUM Network	oneidentity	password_manager	An issue was discovered in One Identity Password Manager 5.8. An attacker could enumerate valid answers for a user. It is possible for an attacker to detect a valid answer based on the HTTP response …	CWE-203 Information Exposure Through Discrepancy	CVE-2020-7962	2024-11-21 14:38	2020-11-14	Show	GitHub Exploit DB Packet Storm

200692	6.7	MEDIUM Local	lenovo	notebook_firmware	A potential vulnerability in the SMI callback function used in the VariableServiceSmm driver in some Lenovo Notebook models may allow arbitrary code execution.	NVD-CWE-noinfo	CVE-2020-8354	2024-11-21 14:38	2020-11-12	Show	GitHub Exploit DB Packet Storm

200693	6.7	MEDIUM Local	lenovo	thinkcentre_m80t_firmware thinkcentre_m80s_firmware thinkcentre_m90t_firmware thinkcentre_m90s_firmware thinkcentre_m910z_firmware thinkcentre_m920s_firmware thinkcentre_m920t_firmw…	Prior to August 10, 2020, some Lenovo Desktop and Workstation systems were shipped with the Embedded Host Based Configuration (EHBC) feature of Intel AMT enabled. This could allow an administrative u…	NVD-CWE-noinfo	CVE-2020-8353	2024-11-21 14:38	2020-11-12	Show	GitHub Exploit DB Packet Storm

200694	2.4	LOW Physics	lenovo	thinkcentre_e73_firmware thinkcentre_m73_firmware qitian_4500_firmware qitian_b4550_firmware qitian_m4550_firmware thinkcentre_m4500k_firmware thinkcentre_m4500t_firmware thinkce…	In some Lenovo Desktop models, the Configuration Change Detection BIOS setting failed to detect SATA configuration changes.	NVD-CWE-noinfo	CVE-2020-8352	2024-11-21 14:38	2020-11-12	Show	GitHub Exploit DB Packet Storm

200695	7.5	HIGH Network	json8-merge-patch_project	json8-merge-patch	Prototype pollution vulnerability in json8-merge-patch npm package < 1.0.3 may allow attackers to inject or modify methods and properties of the global object constructor.	CWE-20 Improper Input Validation	CVE-2020-8268	2024-11-21 14:38	2020-11-10	Show	GitHub Exploit DB Packet Storm

200696	4.1	MEDIUM Local	nextcloud	nextcloud_server	A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker to downgrade the encryption scheme and break the integrity of encrypted files.	CWE-311 Missing Encryption of Sensitive Data	CVE-2020-8150	2024-11-21 14:38	2020-11-10	Show	GitHub Exploit DB Packet Storm

200697	5.3	MEDIUM Network	nextcloud	nextcloud_server	A wrong generation of the passphrase for the encrypted block in Nextcloud Server 19.0.1 allowed an attacker to overwrite blocks in a file.	CWE-347 Improper Verification of Cryptographic Signature	CVE-2020-8133	2024-11-21 14:38	2020-11-10	Show	GitHub Exploit DB Packet Storm

200698	5.5	MEDIUM Local	brave	brave	The implementation of Brave Desktop's privacy-preserving analytics system (P3A) between 1.1 and 1.18.35 logged the timestamp of when the user last opened an incognito window, including Tor windows. T…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-8276	2024-11-21 14:38	2020-11-10	Show	GitHub Exploit DB Packet Storm

200699	5.3	MEDIUM Network	ui	unifi_protect_firmware	A security issue was found in UniFi Protect controller v1.14.10 and earlier.The authentication in the UniFi Protect controller API was using “x-token” improperly, allowing attackers to use the API to…	CWE-287 Improper Authentication	CVE-2020-8267	2024-11-21 14:38	2020-11-6	Show	GitHub Exploit DB Packet Storm

200700	7.5	HIGH Network	tcpdump debian fedoraproject apple	tcpdump debian_linux fedora mac_os_x macos	The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-8037	2024-11-21 14:38	2020-11-5	Show	GitHub Exploit DB Packet Storm