Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230681 7.5 危険 PHPNUKE - PHP-Nuke の Books モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0827 2012-12-20 18:34 2008-02-19 Show GitHub Exploit DB Packet Storm
230682 3.6 注意 scribe - Scribe の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0822 2012-12-20 18:34 2008-02-19 Show GitHub Exploit DB Packet Storm
230683 3.6 注意 plutostatus - PlutoStatus Locator の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0819 2012-12-20 18:34 2008-02-19 Show GitHub Exploit DB Packet Storm
230684 6.4 警告 truc - TRUC の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0814 2012-12-20 18:34 2008-02-18 Show GitHub Exploit DB Packet Storm
230685 5 警告 xpweb - XPWeb の Download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0813 2012-12-20 18:34 2008-02-18 Show GitHub Exploit DB Packet Storm
230686 9.3 危険 reality - PHPizabi の image.php における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0805 2012-12-20 18:34 2008-02-18 Show GitHub Exploit DB Packet Storm
230687 6.8 警告 Thecus - Thecus N5200Pro NAS Server の usrgetform.html における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0804 2012-12-20 18:34 2008-02-18 Show GitHub Exploit DB Packet Storm
230688 7.5 危険 VWar - VWar の calendar.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0753 2012-12-20 18:34 2008-02-13 Show GitHub Exploit DB Packet Storm
230689 10 危険 ソニー・コンピュータエンタテインメント - Sony ImageStation 用の SonyISUpload.cab におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0748 2012-12-20 18:34 2008-02-13 Show GitHub Exploit DB Packet Storm
230690 7.5 危険 PreProject.com - PreProjects.com Pre Hotels & Resorts Management System の user_login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0744 2012-12-20 18:34 2008-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209751 6.1 MEDIUM
Network 		pega pega_platform Pega Platform before 8.4.0 has a XSS issue via stream rule parameters used in the request header. CWE-79
Cross-site Scripting 		CVE-2020-24353 2024-11-21 14:14 2020-11-9 Show GitHub Exploit DB Packet Storm
209752 9.1 CRITICAL
Network 		magento magento Magento versions 2.4.0 and 2.3.5p1 (and earlier) are affected by an unsafe file upload vulnerability that could result in arbitrary code execution. This vulnerability could be abused by authenticated… - CVE-2020-24407 2024-11-21 14:14 2020-11-9 Show GitHub Exploit DB Packet Storm
209753 3.7 LOW
Network 		magento magento When in maintenance mode, Magento version 2.4.0 and 2.3.4 (and earlier) are affected by an information disclosure vulnerability that could expose the installation path during build deployments. This … CWE-22
Path Traversal 		CVE-2020-24406 2024-11-21 14:14 2020-11-9 Show GitHub Exploit DB Packet Storm
209754 4.3 MEDIUM
Network 		magento magento Magento version 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect permissions issue vulnerability in the Inventory module. This vulnerability could be abused by authenticated users to modi… NVD-CWE-Other
CVE-2020-24405 2024-11-21 14:14 2020-11-9 Show GitHub Exploit DB Packet Storm
209755 2.7 LOW
Network 		magento magento Magento version 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect permissions vulnerability within the Integrations component. This vulnerability could be abused by users with permissions … NVD-CWE-Other
CVE-2020-24404 2024-11-21 14:14 2020-11-9 Show GitHub Exploit DB Packet Storm
209756 2.7 LOW
Network 		magento magento Magento version 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect user permissions vulnerability within the Inventory component. This vulnerability could be abused by authenticated users w… NVD-CWE-Other
CVE-2020-24403 2024-11-21 14:14 2020-11-9 Show GitHub Exploit DB Packet Storm
209757 4.9 MEDIUM
Network 		magento magento Magento version 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect permissions vulnerability in the Integrations component. This vulnerability could be abused by authenticated users with pe… - CVE-2020-24402 2024-11-21 14:14 2020-11-9 Show GitHub Exploit DB Packet Storm
209758 6.5 MEDIUM
Network 		magento magento Magento versions 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect authorization vulnerability. A user can still access resources provisioned under their old role after an administrator re… - CVE-2020-24401 2024-11-21 14:14 2020-11-9 Show GitHub Exploit DB Packet Storm
209759 7.1 HIGH
Network 		magento magento Magento versions 2.4.0 and 2.3.5 (and earlier) are affected by an SQL Injection vulnerability that could lead to sensitive information disclosure. This vulnerability could be exploited by an authenti… - CVE-2020-24400 2024-11-21 14:14 2020-11-9 Show GitHub Exploit DB Packet Storm
209760 2.8 LOW
Local 		adobe acrobat
acrobat_dc
acrobat_reader
acrobat_reader_dc 		Acrobat Reader DC for macOS versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by a security feature bypass. While the practical securit… - CVE-2020-24439 2024-11-21 14:14 2020-11-6 Show GitHub Exploit DB Packet Storm