Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 2:12 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231541	4.3	警告	tendenci	-	Tendenci CMS の search.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0793	2012-12-20 18:34	2008-02-14	Show	GitHub Exploit DB Packet Storm

231542	4.3	警告	Simple Machines	-	SMF Shoutbox の sboxDB.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0775	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

231543	7.5	危険	site2nite	-	Site2Nite の default.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0771	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

231544	5	警告	SafeNet, Inc	-	SafeNet Sentinel Protection Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0760	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

231545	10	危険	サイベース	-	SQL Anywhere で使用されている Sybase MobiLink の mlsrv10.exe におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0912	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

231546	4.3	警告	schoolwires	-	Schoolwires Academic Portal の browse.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0909	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

231547	7.5	危険	schoolwires	-	browse.asp の Schoolwires Academic Portal における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0908	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

231548	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Inhalt モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0907	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

231549	7.5	危険	PHPNUKE	-	PHP-Nuke の Docum モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0906	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

231550	7.5	危険	レッドハット	-	Red Hat Directory Server で使用されている Red Hat Administration Server における管理者操作を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0893	2012-12-20 18:34	2008-04-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210281	8.8	HIGH Network	moodle	moodle	A vulnerability was found in Moodle where users with "Log in as" capability in a course context (typically, course managers) may gain access to some site administration capabilities by "logging in as…	CWE-862 Missing Authorization	CVE-2020-25629	2024-11-21 14:18	2020-12-8	Show	GitHub Exploit DB Packet Storm

210282	6.1	MEDIUM Network	moodle	moodle	The filter in the tag manager required extra sanitizing to prevent a reflected XSS risk. This affects 3.9 to 3.9.1, 3.8 to 3.8.4, 3.7 to 3.7.7, 3.5 to 3.5.13 and earlier unsupported versions. Fixed i…	-	CVE-2020-25628	2024-11-21 14:18	2020-12-8	Show	GitHub Exploit DB Packet Storm

210283	7.5	HIGH Network	moddable	moddable	Null Pointer Dereference. in xObjectBindingFromExpression at moddable/xs/sources/xsSyntaxical.c:3419 in Moddable SDK before OS200908 causes a denial of service (SEGV).	CWE-476 NULL Pointer Dereference	CVE-2020-25465	2024-11-21 14:18	2020-12-5	Show	GitHub Exploit DB Packet Storm

210284	7.5	HIGH Network	moddable	moddable	Heap buffer overflow at moddable/xs/sources/xsDebug.c in Moddable SDK before before 20200903. The top stack frame is only partially initialized because the stack overflowed while creating the frame. …	CWE-787 Out-of-bounds Write	CVE-2020-25464	2024-11-21 14:18	2020-12-5	Show	GitHub Exploit DB Packet Storm

210285	7.5	HIGH Network	moddable	moddable	Invalid Memory Access in fxUTF8Decode at moddable/xs/sources/xsCommon.c:916 in Moddable SDK before OS200908 causes a denial of service (SEGV).	NVD-CWE-Other	CVE-2020-25463	2024-11-21 14:18	2020-12-5	Show	GitHub Exploit DB Packet Storm

210286	6.5	MEDIUM Network	infinispan redhat netapp	infinispan data_grid active_iq_unified_manager	A flaw was found in infinispan 10 REST API, where authorization permissions are not checked while performing some server management operations. When authz is enabled, any user with authentication can…	CWE-862 Missing Authorization	CVE-2020-25711	2024-11-21 14:18	2020-12-4	Show	GitHub Exploit DB Packet Storm

210287	8.1	HIGH Network	cimg fedoraproject	cimg fedora	A flaw was found in CImg in versions prior to 2.9.3. Integer overflows leading to heap buffer overflows in load_pnm() can be triggered by a specially crafted input file processed by CImg, which can l…	-	CVE-2020-25693	2024-11-21 14:18	2020-12-4	Show	GitHub Exploit DB Packet Storm

210288	7.5	HIGH Network	fasterxml netapp fedoraproject quarkus apache oracle	jackson-databind oncommand_workflow_automation service_level_manager oncommand_api_services fedora quarkus iotdb webcenter_portal banking_platform utilities_framework ag…	A flaw was found in FasterXML Jackson Databind, where it did not have entity expansion secured properly. This flaw allows vulnerability to XML external entity (XXE) attacks. The highest threat from t…	CWE-611 XXE	CVE-2020-25649	2024-11-21 14:18	2020-12-4	Show	GitHub Exploit DB Packet Storm

210289	7.4	HIGH Network	hibernate debian quarkus oracle	hibernate_orm debian_linux quarkus retail_customer_management_and_segmentation_foundation communications_cloud_native_core_console	A flaw was found in hibernate-core in versions prior to and including 5.4.23.Final. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is use…	-	CVE-2020-25638	2024-11-21 14:18	2020-12-3	Show	GitHub Exploit DB Packet Storm

210290	3.2	LOW Local	qemu debian	qemu debian_linux	A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged us…	-	CVE-2020-25723	2024-11-21 14:18	2020-12-2	Show	GitHub Exploit DB Packet Storm