Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230931 10 危険 synfig - Synfig Animation Studio における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2008-7148 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
230932 10 危険 RARLAB - RARLAB WinRAR における脆弱性 CWE-noinfo
情報不足 		CVE-2008-7144 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
230933 6.8 警告 phpBB - phpBB におけるセッションをハイジャックされる脆弱性 CWE-200
情報漏えい 		CVE-2008-7143 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
230934 4.3 警告 redgalaxy - Chris LaPointe RedGalaxy Download Center のデフォルト URI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7134 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
230935 5 警告 xyssl - XySSL におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-7129 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
230936 7.5 危険 xyssl - XySSL の ssl_parse_client_key_exchange 関数における鍵を回復される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7128 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
230937 7.5 危険 zkup - zKup CMS における管理者権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-7124 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
230938 6.8 警告 zkup - zKup CMS の admin/configuration/modifier.php における任意の PHP コード挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-7123 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
230939 7.5 危険 WeBid Support - WeBid auction script の item.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7119 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
230940 5 警告 WeBid Support - WeBid auction script における SQL クエリログを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7118 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209481 7.5 HIGH
Network 		xen xapi An issue was discovered in Xen XAPI before 2020-12-15. Certain xenstore keys provide feedback from the guest, and are therefore watched by toolstack. Specifically, keys are watched by xenopsd, and da… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-29487 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
209482 5.5 MEDIUM
Local 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen 4.6 through 4.14.x. When acting upon a guest XS_RESET_WATCHES request, not all tracking information is freed. A guest can cause unbounded memory usage in oxenstored. Th… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2020-29485 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
209483 6.2 MEDIUM
Local 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen through 4.14.x. Recording of the per-vCPU control block mapping maintained by Xen and that of pointers into the control block is reversed. The consumer assumes, seeing … CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-29570 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
209484 6.0 MEDIUM
Local 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen through 4.14.x. Nodes in xenstore have an ownership. In oxenstored, a owner could give a node away. However, node ownership has quota implications. Any guest can run an… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-29486 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
209485 6.0 MEDIUM
Local 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen through 4.14.x. When a Xenstore watch fires, the xenstore client that registered the watch will receive a Xenstore message containing the path of the modified Xenstore … CWE-476
 NULL Pointer Dereference 		CVE-2020-29484 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
209486 6.5 MEDIUM
Local 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen through 4.14.x. Xenstored and guests communicate via a shared memory page using a specific protocol. When a guest violates this protocol, xenstored will drop the connec… CWE-416
 Use After Free 		CVE-2020-29483 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
209487 6.5 MEDIUM
Local 		xen
debian 		xen
debian_linux 		An issue was discovered in Xen through 4.14.x. Some OSes (such as Linux, FreeBSD, and NetBSD) are processing watch events using a single thread. If the events are received faster than the thread is a… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-29568 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
209488 6.0 MEDIUM
Local 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen through 4.14.x. A guest may access xenstore paths via absolute paths containing a full pathname, or via a relative path, which implicitly includes /local/domain/$DOMID … CWE-426
 Untrusted Search Path 		CVE-2020-29482 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
209489 8.8 HIGH
Local 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen through 4.14.x. Access rights of Xenstore nodes are per domid. Unfortunately, existing granted access rights are not removed when a domain is being destroyed. This mean… CWE-269
 Improper Privilege Management 		CVE-2020-29481 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
209490 2.3 LOW
Local 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen through 4.14.x. Neither xenstore implementation does any permission checks when reporting a xenstore watch event. A guest administrator can watch the root xenstored nod… CWE-862
 Missing Authorization 		CVE-2020-29480 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm