Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230651	6.4	警告	spyce	-	Spyce - PSP の spyce/examples/redirect.spy におけるオープンリダイレクトの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0981	2012-12-20 18:34	2008-02-25	Show	GitHub Exploit DB Packet Storm

230652	4.3	警告	spyce	-	Spyce - PSP におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0980	2012-12-20 18:34	2008-02-25	Show	GitHub Exploit DB Packet Storm

230653	4.3	警告	webgui	-	Plain Black WebGUI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0940	2012-12-20 18:34	2008-02-25	Show	GitHub Exploit DB Packet Storm

230654	7.5	危険	WordPress.org	-	WordPress 用の WPPA プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0939	2012-12-20 18:34	2008-02-25	Show	GitHub Exploit DB Packet Storm

230655	7.5	危険	the sword project	-	The SWORD Project Diatheke の diatheke.pl における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-0932	2012-12-20 18:34	2008-02-25	Show	GitHub Exploit DB Packet Storm

230656	6.3	警告	xwine	-	Debian GNU/Linux 上で稼動する XWine の w_export.c における任意のコマンドを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0931	2012-12-20 18:34	2008-03-3	Show	GitHub Exploit DB Packet Storm

230657	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Manuales モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0922	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

230658	4.3	警告	tendenci	-	Tendenci CMS の search.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0793	2012-12-20 18:34	2008-02-14	Show	GitHub Exploit DB Packet Storm

230659	4.3	警告	Simple Machines	-	SMF Shoutbox の sboxDB.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0775	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

230660	7.5	危険	site2nite	-	Site2Nite の default.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0771	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200891	7.5	HIGH Network	st	stm32f1_firmware	STMicroelectronics STM32F1 devices have Incorrect Access Control.	NVD-CWE-noinfo	CVE-2020-8004	2024-11-21 14:38	2020-04-6	Show	GitHub Exploit DB Packet Storm

200892	9.8	CRITICAL Network	utils-extend_project	utils-extend	Flaw in input validation in npm package utils-extend version 1.0.8 and earlier may allow prototype pollution attack that may result in remote code execution or denial of service of applications using…	CWE-20 Improper Input Validation	CVE-2020-8147	2024-11-21 14:38	2020-04-4	Show	GitHub Exploit DB Packet Storm

200893	6.1	MEDIUM Network	revive-adserver	revive_adserver	An Open Redirect vulnerability was discovered in Revive Adserver version < 5.0.5 and reported by HackerOne user hoangn144. A remote attacker could trick logged-in users to open a specifically crafted…	CWE-601 Open Redirect	CVE-2020-8143	2024-11-21 14:38	2020-04-4	Show	GitHub Exploit DB Packet Storm

200894	6.8	MEDIUM Physics	revive-adserver	revive_adserver	A security restriction bypass vulnerability has been discovered in Revive Adserver version < 5.0.5 by HackerOne user hoangn144. Revive Adserver, like many other applications, requires the logged in u…	CWE-863 Incorrect Authorization	CVE-2020-8142	2024-11-21 14:38	2020-04-4	Show	GitHub Exploit DB Packet Storm

200895	7.2	HIGH Network	tp-link	tl-wr841n_firmware	A buffer overflow in the httpd daemon on TP-Link TL-WR841N V10 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for th…	CWE-120 Classic Buffer Overflow	CVE-2020-8423	2024-11-21 14:38	2020-04-3	Show	GitHub Exploit DB Packet Storm

200896	6.3	MEDIUM Local	opensuse	texlive-filesystem leap	A Race Condition Enabling Link Following vulnerability in the cron job shipped with texlive-filesystem of SUSE Linux Enterprise Module for Desktop Applications 15-SP1, SUSE Linux Enterprise Software …	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2020-8017	2024-11-21 14:38	2020-04-2	Show	GitHub Exploit DB Packet Storm

200897	7.0	HIGH Local	opensuse	texlive-filesystem	A Race Condition Enabling Link Following vulnerability in the packaging of texlive-filesystem of SUSE Linux Enterprise Module for Desktop Applications 15-SP1, SUSE Linux Enterprise Software Developme…	-	CVE-2020-8016	2024-11-21 14:38	2020-04-2	Show	GitHub Exploit DB Packet Storm

200898	7.8	HIGH Local	exim	exim	A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: openSUSE Factory exi…	-	CVE-2020-8015	2024-11-21 14:38	2020-04-2	Show	GitHub Exploit DB Packet Storm

200899	7.8	HIGH Local	ui	unifi_video	In UniFi Video v3.10.1 (for Windows 7/8/10 x64) there is a Local Privileges Escalation to SYSTEM from arbitrary file deletion and DLL hijack vulnerabilities. The issue was fixed by adjusting the .tsE…	CWE-427 Uncontrolled Search Path Element	CVE-2020-8146	2024-11-21 14:38	2020-04-2	Show	GitHub Exploit DB Packet Storm

200900	6.5	MEDIUM Network	ui	unifi_video	The UniFi Video Server (Windows) web interface configuration restore functionality at the “backup” and “wizard” endpoints does not implement sufficient privilege checks. Low privileged users, belongi…	NVD-CWE-noinfo	CVE-2020-8145	2024-11-21 14:38	2020-04-2	Show	GitHub Exploit DB Packet Storm