Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230941	7.5	危険	polypager	-	PolyPager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3506	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

230942	4.3	警告	polypager	-	PolyPager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3505	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

230943	5	警告	webgui	-	Plain Black WebGUI の RSSFromParent における重要な情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-3503	2012-12-20 18:52	2008-06-20	Show	GitHub Exploit DB Packet Storm

230944	5	警告	RealVNC	-	RealVNC Windows Client の vncviewer.exe におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3493	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

230945	7.5	危険	scripts24	-	Scripts24 iPost および iTGP の go.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3491	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

230946	7.5	危険	phpx	-	PHPX の includes/functions.inc.php の checkCookie 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3489	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

230947	7.5	危険	phpauctions	-	PHPAuction GPL の profile.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3487	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

230948	4.3	警告	screwturn	-	ScrewTurn Wiki におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3483	2012-12-20 18:52	2008-08-5	Show	GitHub Exploit DB Packet Storm

230949	2.6	注意	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3457	2012-12-20 18:52	2008-07-28	Show	GitHub Exploit DB Packet Storm

230950	6.4	警告	The phpMyAdmin Project	-	phpMyAdmin におけるなりすましされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-3456	2012-12-20 18:52	2008-07-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213961	7.3	HIGH Local	ghisler	total_commander	An issue was discovered in Ghisler Total Commander 9.51. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the %SYSTEMDRIV…	CWE-276 Incorrect Default Permissions	CVE-2020-17381	2024-11-21 14:07	2020-10-22	Show	GitHub Exploit DB Packet Storm

213962	6.1	MEDIUM Network	ge	s2020_firmware s2024_firmware	The affected Reason S20 Ethernet Switch is vulnerable to cross-site scripting (XSS), which may allow attackers to trick users into following a link or navigating to a page that posts a malicious Java…	-	CVE-2020-16246	2024-11-21 14:07	2020-10-21	Show	GitHub Exploit DB Packet Storm

213963	7.8	HIGH Local	microsoft	windows_10	<p>A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbi…	NVD-CWE-noinfo	CVE-2020-17022	2024-11-21 14:07	2020-10-17	Show	GitHub Exploit DB Packet Storm

213964	7.8	HIGH Local	microsoft	3d_viewer	<p>A remote code execution vulnerability exists when the Base3D rendering engine improperly handles memory.</p> <p>An attacker who successfully exploited the vulnerability would gain execution on a v…	NVD-CWE-noinfo	CVE-2020-17003	2024-11-21 14:07	2020-10-17	Show	GitHub Exploit DB Packet Storm

213965	4.7	MEDIUM Local	microsoft	.net_framework	<p>An information disclosure vulnerability exists when the .NET Framework improperly handles objects in memory. An attacker who successfully exploited the vulnerability could disclose contents of an …	NVD-CWE-noinfo	CVE-2020-16937	2024-11-21 14:07	2020-10-17	Show	GitHub Exploit DB Packet Storm

213966	7.8	HIGH Local	microsoft	365_apps 3d_viewer	<p>A remote code execution vulnerability exists when the Base3D rendering engine improperly handles memory.</p> <p>An attacker who successfully exploited the vulnerability would gain execution on a v…	NVD-CWE-noinfo	CVE-2020-16918	2024-11-21 14:07	2020-10-17	Show	GitHub Exploit DB Packet Storm

213967	5.3	MEDIUM Network	microsoft	azure_functions	<p>An elevation of privilege vulnerability exists in the way Azure Functions validate access keys.</p> <p>An unauthenticated attacker who successfully exploited this vulnerability could invoke an HTT…	CWE-863 Incorrect Authorization	CVE-2020-16904	2024-11-21 14:07	2020-10-17	Show	GitHub Exploit DB Packet Storm

213968	5.0	MEDIUM Local	microsoft	windows_server_2016 windows_10	<p>An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.</p> <p>To exploit this vulnerability, an authenticated attacker could run a special…	CWE-665 Improper Initialization	CVE-2020-16901	2024-11-21 14:07	2020-10-17	Show	GitHub Exploit DB Packet Storm

213969	7.8	HIGH Local	microsoft	visual_studio_code	<p>A remote code execution vulnerability exists in Visual Studio Code when a user is tricked into opening a malicious 'package.json' file. An attacker who successfully exploited the vulnerability cou…	NVD-CWE-noinfo	CVE-2020-17023	2024-11-21 14:07	2020-10-17	Show	GitHub Exploit DB Packet Storm

213970	7.8	HIGH Local	microsoft	network_watcher_agent	<p>An elevation of privilege vulnerability exists in Network Watcher Agent virtual machine extension for Linux. An attacker who successfully exploited this vulnerability could execute code with eleva…	NVD-CWE-noinfo	CVE-2020-16995	2024-11-21 14:07	2020-10-17	Show	GitHub Exploit DB Packet Storm