Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230731	4.3	警告	webSPELL	-	webSPELL の admin/admincenter.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-0575	2012-12-20 18:34	2008-02-4	Show	GitHub Exploit DB Packet Storm

230732	4.3	警告	webSPELL	-	webSPELL の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0574	2012-12-20 18:34	2008-02-4	Show	GitHub Exploit DB Packet Storm

230733	7.2	危険	SafeNet, Inc	-	SafeNET HighAssurance Remote および SoftRemote の IPSecDrv.sys における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0573	2012-12-20 18:34	2008-02-4	Show	GitHub Exploit DB Packet Storm

230734	4.3	警告	uniwin	-	Uniwin eCart Professional におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0558	2012-12-20 18:34	2008-02-4	Show	GitHub Exploit DB Packet Storm

230735	10	危険	radio toolbox	-	Steamcast におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2008-0550	2012-12-20 18:34	2008-02-1	Show	GitHub Exploit DB Packet Storm

230736	5	警告	radio toolbox	-	Steamcast の OggHeaderParse 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-0549	2012-12-20 18:34	2008-02-1	Show	GitHub Exploit DB Packet Storm

230737	5	警告	radio toolbox	-	Steamcast におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2008-0548	2012-12-20 18:34	2008-02-1	Show	GitHub Exploit DB Packet Storm

230738	4.3	警告	shoppingtree	-	CP の admin/utilities_ConfigHelp.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0547	2012-12-20 18:34	2008-02-1	Show	GitHub Exploit DB Packet Storm

230739	7.5	危険	shoppingtree	-	CP における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0546	2012-12-20 18:34	2008-02-1	Show	GitHub Exploit DB Packet Storm

230740	10	危険	Simple DirectMedia Layer	-	SDL_image の IMG_lbm.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0544	2012-12-20 18:34	2008-02-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214171	6.1	MEDIUM Network	prestashop	prestashop	In PrestaShop from version 1.7.0.0 and before version 1.7.6.6, if a target sends a corrupted file, it leads to a reflected XSS. The problem is fixed in 1.7.6.6	CWE-79 Cross-site Scripting	CVE-2020-15083	2024-11-21 14:04	2020-07-3	Show	GitHub Exploit DB Packet Storm

214172	8.8	HIGH Network	prestashop	prestashop	In PrestaShop from version 1.6.0.1 and before version 1.7.6.6, the dashboard allows rewriting all configuration variables. The problem is fixed in 1.7.6.6	NVD-CWE-Other	CVE-2020-15082	2024-11-21 14:04	2020-07-3	Show	GitHub Exploit DB Packet Storm

214173	5.3	MEDIUM Network	prestashop	prestashop	In PrestaShop from version 1.5.0.0 and before 1.7.6.6, there is information exposure in the upload directory. The problem is fixed in version 1.7.6.6. A possible workaround is to add an empty index.p…	CWE-200 Information Exposure	CVE-2020-15081	2024-11-21 14:04	2020-07-3	Show	GitHub Exploit DB Packet Storm

214174	5.3	MEDIUM Network	prestashop	prestashop	In PrestaShop from version 1.7.4.0 and before version 1.7.6.6, some files should not be in the release archive, and others should not be accessible. The problem is fixed in version 1.7.6.6 A possible…	CWE-862 Missing Authorization	CVE-2020-15080	2024-11-21 14:04	2020-07-3	Show	GitHub Exploit DB Packet Storm

214175	5.4	MEDIUM Network	prestashop	prestashop	In PrestaShop from version 1.5.0.0 and before version 1.7.6.6, there is improper access control in Carrier page, Module Manager and Module Positions. The problem is fixed in version 1.7.6.6	NVD-CWE-noinfo	CVE-2020-15079	2024-11-21 14:04	2020-07-3	Show	GitHub Exploit DB Packet Storm

214176	8.8	HIGH Network	factorfx	open_computer_software_inventory_next_generation	OCS Inventory NG 2.7 allows Remote Command Execution via shell metacharacters to require/commandLine/CommandLine.php because mib_file in plugins/main_sections/ms_config/ms_snmp_config.php is mishandl…	CWE-78 OS Command	CVE-2020-14947	2024-11-21 14:04	2020-07-1	Show	GitHub Exploit DB Packet Storm

214177	8.8	HIGH Network	squid-cache fedoraproject	squid fedora	An issue was discovered in http/ContentLengthInterpreter.cc in Squid before 4.12 and 5.x before 5.0.3. A Request Smuggling and Poisoning attack can succeed against the HTTP cache. The client sends an…	CWE-444 HTTP Request Smuggling	CVE-2020-15049	2024-11-21 14:04	2020-07-1	Show	GitHub Exploit DB Packet Storm

214178	8.8	HIGH Network	prestosql	presto	In Presto before version 337, authenticated users can bypass authorization checks by directly accessing internal APIs. This impacts Presto server installations with secure internal communication conf…	NVD-CWE-Other	CVE-2020-15087	2024-11-21 14:04	2020-07-1	Show	GitHub Exploit DB Packet Storm

214179	6.1	MEDIUM Local	mirumee	saleor	In Saleor Storefront before version 2.10.3, request data used to authenticate customers was inadvertently cached in the browser's local storage mechanism, including credentials. A malicious user with…	-	CVE-2020-15085	2024-11-21 14:04	2020-07-1	Show	GitHub Exploit DB Packet Storm

214180	9.1	CRITICAL Network	auth0	express-jwt	In express-jwt (NPM package) up and including version 5.3.3, the algorithms entry to be specified in the configuration is not being enforced. When algorithms is not specified in the configuration, wi…	CWE-863 Incorrect Authorization	CVE-2020-15084	2024-11-21 14:04	2020-07-1	Show	GitHub Exploit DB Packet Storm