Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230721 9.3 危険 シマンテック - Symantec Veritas Storage Foundation の VEA サービスにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0638 2012-12-20 18:34 2008-02-20 Show GitHub Exploit DB Packet Storm
230722 7.5 危険 sejoong namo - Sejoong Namo ActiveSquare で使用される NamoInstaller.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0634 2012-12-20 18:34 2008-02-6 Show GitHub Exploit DB Packet Storm
230723 7.5 危険 SAP - SAP GUI および SAPSprint に含まれる SAPLPD におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0621 2012-12-20 18:34 2008-02-6 Show GitHub Exploit DB Packet Storm
230724 10 危険 SAP - SAP GUI および SAPSprint に含まれる SAPLPD におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2008-0620 2012-12-20 18:34 2008-02-6 Show GitHub Exploit DB Packet Storm
230725 7.5 危険 rmsoft
XOOPS		 - XOOPS 用の RMSOFT Gallery System モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0611 2012-12-20 18:34 2008-02-6 Show GitHub Exploit DB Packet Storm
230726 9.3 危険 UltraVNC - UltraVNC 用の vncviewer におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0610 2012-12-20 18:34 2008-02-6 Show GitHub Exploit DB Packet Storm
230727 6.8 警告 xlight ftp server - XLight FTP Server の LDAP 認証機能におけるアクセス制限を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-0604 2012-12-20 18:34 2008-02-6 Show GitHub Exploit DB Packet Storm
230728 4.3 警告 Skype Technologies S.A. - Windows 上で稼動する Skype の Internet Explorer Web コントロールにおけるクロスゾーンスクリプティングの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0583 2012-12-20 18:34 2008-02-4 Show GitHub Exploit DB Packet Storm
230729 4.3 警告 Skype Technologies S.A. - Windows 上で稼動する Skype の Internet Explorer Web コントロールにおけるクロスゾーンスクリプティングの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0582 2012-12-20 18:34 2008-02-4 Show GitHub Exploit DB Packet Storm
230730 4.3 警告 トリップワイヤ - Tripwire Enterprise の Web 管理ログインページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0578 2012-12-20 18:34 2008-02-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200821 6.5 MEDIUM
Network 		citrix netscaler_gateway
gateway
application_delivery_controller_firmware 		Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access control allowing SAML authentication hijack t… NVD-CWE-Other
CVE-2020-8300 2024-11-21 14:38 2021-06-16 Show GitHub Exploit DB Packet Storm
200822 6.5 MEDIUM
Adjacent 		citrix netscaler_gateway
gateway
application_delivery_controller_firmware
sd-wan_wanop 		Citrix ADC and Citrix/NetScaler Gateway 13.0 before 13.0-76.29, 12.1-61.18, 11.1-65.20, Citrix ADC 12.1-FIPS before 12.1-55.238, and Citrix SD-WAN WANOP Edition before 11.4.0, 11.3.2, 11.3.1a, 11.2.3… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-8299 2024-11-21 14:38 2021-06-16 Show GitHub Exploit DB Packet Storm
200823 6.5 MEDIUM
Network 		mongodb mongomirror
database_tools 		Usage of specific command line parameter in MongoDB Tools which was originally intended to just skip hostname checks, may result in MongoDB skipping all certificate validation. This may result in acc… CWE-295
Improper Certificate Validation  		CVE-2020-7924 2024-11-21 14:38 2021-04-13 Show GitHub Exploit DB Packet Storm
200824 5.5 MEDIUM
Local 		lenovo pcmanager A denial of service vulnerability was reported in Lenovo PCManager, prior to version 3.0.200.2042, that could allow configuration files to be written to non-standard locations. CWE-276
Incorrect Default Permissions  		CVE-2020-8357 2024-11-21 14:38 2021-03-10 Show GitHub Exploit DB Packet Storm
200825 4.9 MEDIUM
Network 		lenovo xclarity_orchestrator An internal product security audit of LXCO, prior to version 1.2.2, discovered that optional passwords, if specified, for the Syslog and SMTP forwarders are written to an internal LXCO log file in cl… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-8356 2024-11-21 14:38 2021-03-10 Show GitHub Exploit DB Packet Storm
200826 9.8 CRITICAL
Network 		fs-path_project fs-path fs-path node module before 0.0.25 is vulnerable to command injection by way of user-supplied inputs via the `copy`, `copySync`, `remove`, and `removeSync` methods. CWE-77
Command Injection 		CVE-2020-8298 2024-11-21 14:38 2021-03-5 Show GitHub Exploit DB Packet Storm
200827 6.7 MEDIUM
Local 		nextcloud
fedoraproject 		nextcloud_server
fedora 		Nextcloud Server prior to 20.0.0 stores passwords in a recoverable format even when external storage is not configured. CWE-521
Weak Password Requirements  		CVE-2020-8296 2024-11-21 14:38 2021-03-4 Show GitHub Exploit DB Packet Storm
200828 6.5 MEDIUM
Network 		mongodb mongodb A user authorized to perform database queries may trigger denial of service by issuing specially crafted query contain a type of regex. This issue affects MongoDB Server v3.6 versions prior to 3.6.21… NVD-CWE-Other
CVE-2020-7929 2024-11-21 14:38 2021-03-2 Show GitHub Exploit DB Packet Storm
200829 7.0 HIGH
Local 		opensuse cyrus-sasl A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4… - CVE-2020-8032 2024-11-21 14:38 2021-02-25 Show GitHub Exploit DB Packet Storm
200830 4.3 MEDIUM
Network 		nextcloud deck Nextcloud Deck before 1.0.2 suffers from an insecure direct object reference (IDOR) vulnerability that permits users with a duplicate user identifier to access deck data of a previous deleted user. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2020-8297 2024-11-21 14:38 2021-02-24 Show GitHub Exploit DB Packet Storm