Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230871 4.3 警告 review-script - Five Star Review Script の search/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3779 2012-12-20 18:52 2008-08-26 Show GitHub Exploit DB Packet Storm
230872 7.5 危険 simasy - Simasy CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3774 2012-12-20 18:52 2008-08-22 Show GitHub Exploit DB Packet Storm
230873 4.3 警告 vBulletin Solutions, Inc. - vBulletin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3773 2012-12-20 18:52 2008-08-18 Show GitHub Exploit DB Packet Storm
230874 7.5 危険 turnkey web tools - Turnkey Web Tools SunShop Shopping Cart の class.ajax.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3768 2012-12-20 18:52 2008-08-22 Show GitHub Exploit DB Packet Storm
230875 7.5 危険 smartisoft - phpBazar の classified.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3767 2012-12-20 18:52 2008-08-22 Show GitHub Exploit DB Packet Storm
230876 5 警告 realtime internet band rehearsal - Realtime Internet llcon におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-3766 2012-12-20 18:52 2008-08-22 Show GitHub Exploit DB Packet Storm
230877 7.5 危険 turnkey web tools - Turnkey PHP Live Helper の globalsoff.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-3764 2012-12-20 18:52 2008-08-21 Show GitHub Exploit DB Packet Storm
230878 6.8 警告 turnkey web tools - Turnkey PHP Live Helper の libsecure.php における db config ファイルに関連する任意の変数を上書きされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-3763 2012-12-20 18:52 2008-08-21 Show GitHub Exploit DB Packet Storm
230879 7.5 危険 turnkey web tools - Turnkey PHP Live Helper の onlinestatus_html.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3762 2012-12-20 18:52 2008-08-21 Show GitHub Exploit DB Packet Storm
230880 7.5 危険 YourFreeWorld.com - YourFreeWorld Forced Matrix Script の tr1.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3757 2012-12-20 18:52 2008-08-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201161 2.4 LOW
Physics 		apple iphone_os
ipados 		A lock screen issue allowed access to messages on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 14.0 and iPadOS 14.0. A person with physical acc… CWE-667
 Improper Locking 		CVE-2020-9959 2024-11-21 14:41 2020-10-17 Show GitHub Exploit DB Packet Storm
201162 7.8 HIGH
Local 		apple iphone_os
ipados 		An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 14.0 and iPadOS 14.0. An application may be able to cause unexpected system termination or write k… CWE-787
 Out-of-bounds Write 		CVE-2020-9958 2024-11-21 14:41 2020-10-17 Show GitHub Exploit DB Packet Storm
201163 7.1 HIGH
Network 		apple
webkit 		iphone_os
watchos
safari
icloud
tvos
ipados
webkitgtk\+ 		An input validation issue was addressed with improved input validation. This issue is fixed in iOS 14.0 and iPadOS 14.0, tvOS 14.0, watchOS 7.0, Safari 14.0, iCloud for Windows 11.4, iCloud for Windo… CWE-79
Cross-site Scripting 		CVE-2020-9952 2024-11-21 14:41 2020-10-17 Show GitHub Exploit DB Packet Storm
201164 8.8 HIGH
Network 		apple
webkit
debian 		iphone_os
watchos
safari
tvos
ipados
icloud
itunes
webkitgtk\+
debian_linux 		A use after free issue was addressed with improved memory management. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to arbitrary code execution. CWE-416
 Use After Free 		CVE-2020-9951 2024-11-21 14:41 2020-10-17 Show GitHub Exploit DB Packet Storm
201165 8.8 HIGH
Network 		apple
webkit
debian 		safari
webkitgtk\+
debian_linux 		A type confusion issue was addressed with improved memory handling. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to arbitrary code execution. CWE-843
Type Confusion 		CVE-2020-9948 2024-11-21 14:41 2020-10-17 Show GitHub Exploit DB Packet Storm
201166 6.8 MEDIUM
Physics 		apple iphone_os
watchos
ipados 		This issue was addressed with improved checks. This issue is fixed in iOS 14.0 and iPadOS 14.0, watchOS 7.0. The screen lock may not engage after the specified time period. CWE-667
 Improper Locking 		CVE-2020-9946 2024-11-21 14:41 2020-10-17 Show GitHub Exploit DB Packet Storm
201167 7.8 HIGH
Local 		apple tvos
iphone_os
icloud
itunes
safari
watchos
ipados 		An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8, iTunes 12.10.8 for Windo… CWE-787
 Out-of-bounds Write 		CVE-2020-9936 2024-11-21 14:41 2020-10-17 Show GitHub Exploit DB Packet Storm
201168 3.3 LOW
Local 		apple tvos
iphone_os
watchos
ipados 		An authorization issue was addressed with improved state management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8. A malicious application may be able to read sensitive… NVD-CWE-noinfo
CVE-2020-9933 2024-11-21 14:41 2020-10-17 Show GitHub Exploit DB Packet Storm
201169 7.5 HIGH
Network 		apple iphone_os
ipados 		A denial of service issue was addressed with improved input validation. This issue is fixed in iOS 13.6 and iPadOS 13.6. A remote attacker may cause an unexpected application termination. CWE-20
 Improper Input Validation  		CVE-2020-9931 2024-11-21 14:41 2020-10-17 Show GitHub Exploit DB Packet Storm
201170 6.1 MEDIUM
Network 		apple tvos
iphone_os
icloud
itunes
safari
watchos
ipados 		A logic issue was addressed with improved state management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows … CWE-79
Cross-site Scripting 		CVE-2020-9925 2024-11-21 14:41 2020-10-17 Show GitHub Exploit DB Packet Storm