Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231541	7.5	危険	phpeasydata	-	PHPEasyData における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2995	2012-12-20 18:52	2008-07-3	Show	GitHub Exploit DB Packet Storm

231542	4.3	警告	phpeasydata	-	PHPEasyData におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2994	2012-12-20 18:52	2008-07-3	Show	GitHub Exploit DB Packet Storm

231543	7.5	危険	phpdmca	-	phpDMCA における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2986	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

231544	6.8	警告	tinx cms	-	TinX/cms におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2976	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

231545	4.3	警告	tinx cms	-	TinX/cms の admin/objects/obj_image.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2975	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

231546	7.5	危険	yektaweb	-	AWT YEKTA におけるセッションをハイジャックされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-2970	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

231547	5	警告	yektaweb	-	AWT YEKTA の download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2969	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

231548	7.5	危険	yektaweb	-	AWT YEKTA の rating.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2968	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

231549	4.3	警告	yektaweb	-	AWT YEKTA におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2967	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

231550	7.5	危険	researchguide	-	ResearchGuide の guide.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2964	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211231	8.1	HIGH Network	rubetek	rv-3406_firmware rv-3409_firmware rv-3411_firmware	A Cleartext Transmission issue was discovered on Rubetek RV-3406, RV-3409, and RV-3411 cameras (firmware versions v342, v339). Someone in the middle can intercept and modify the video data from the c…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-25748	2024-11-21 14:18	2020-09-25	Show	GitHub Exploit DB Packet Storm

211232	9.4	CRITICAL Network	rubetek	rv-3406_firmware rv-3409_firmware rv-3411_firmware	The Telnet service of Rubetek RV-3406, RV-3409, and RV-3411 cameras (firmware versions v342, v339) can allow a remote attacker to gain access to RTSP and ONFIV services without authentication. Thus, …	CWE-306 Missing Authentication for Critical Function	CVE-2020-25747	2024-11-21 14:18	2020-09-25	Show	GitHub Exploit DB Packet Storm

211233	4.7	MEDIUM Local	xen fedoraproject debian opensuse	xen fedora debian_linux leap	An issue was discovered in Xen through 4.14.x. There is a race condition when migrating timers between x86 HVM vCPUs. When migrating timers of x86 HVM guests between its vCPUs, the locking model used…	CWE-362 Race Condition	CVE-2020-25604	2024-11-21 14:18	2020-09-24	Show	GitHub Exploit DB Packet Storm

211234	7.8	HIGH Local	xen fedoraproject opensuse debian	xen fedora leap debian_linux	An issue was discovered in Xen through 4.14.x. There are missing memory barriers when accessing/allocating an event channel. Event channels control structures can be accessed lockless as long as the …	CWE-670 Always-Incorrect Control Flow Implementation	CVE-2020-25603	2024-11-21 14:18	2020-09-24	Show	GitHub Exploit DB Packet Storm

211235	6.0	MEDIUM Local	xen fedoraproject debian opensuse	xen fedora debian_linux leap	An issue was discovered in Xen through 4.14.x. An x86 PV guest can trigger a host OS crash when handling guest access to MSR_MISC_ENABLE. When a guest accesses certain Model Specific Registers, Xen f…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2020-25602	2024-11-21 14:18	2020-09-24	Show	GitHub Exploit DB Packet Storm

211236	5.5	MEDIUM Local	xen debian fedoraproject opensuse	xen debian_linux fedora leap	An issue was discovered in Xen through 4.14.x. There is a lack of preemption in evtchn_reset() / evtchn_destroy(). In particular, the FIFO event channel model allows guests to have a large number of …	NVD-CWE-noinfo	CVE-2020-25601	2024-11-21 14:18	2020-09-24	Show	GitHub Exploit DB Packet Storm

211237	5.5	MEDIUM Local	xen fedoraproject opensuse debian	xen fedora leap debian_linux	An issue was discovered in Xen through 4.14.x. Out of bounds event channels are available to 32-bit x86 domains. The so called 2-level event channel model imposes different limits on the number of us…	CWE-787 Out-of-bounds Write	CVE-2020-25600	2024-11-21 14:18	2020-09-24	Show	GitHub Exploit DB Packet Storm

211238	7.0	HIGH Local	xen fedoraproject opensuse debian	xen fedora leap debian_linux	An issue was discovered in Xen through 4.14.x. There are evtchn_reset() race conditions. Uses of EVTCHNOP_reset (potentially by a guest on itself) or XEN_DOMCTL_soft_reset (by itself covered by XSA-7…	CWE-119 CWE-362 Incorrect Access of Indexable Resource ('Range Error') Race Condition	CVE-2020-25599	2024-11-21 14:18	2020-09-24	Show	GitHub Exploit DB Packet Storm

211239	5.5	MEDIUM Local	xen fedoraproject opensuse	xen fedora leap	An issue was discovered in Xen 4.14.x. There is a missing unlock in the XENMEM_acquire_resource error path. The RCU (Read, Copy, Update) mechanism is a synchronisation primitive. A buggy error path i…	CWE-670 Always-Incorrect Control Flow Implementation	CVE-2020-25598	2024-11-21 14:18	2020-09-24	Show	GitHub Exploit DB Packet Storm

211240	6.5	MEDIUM Local	xen fedoraproject	xen fedora	An issue was discovered in Xen through 4.14.x. There is mishandling of the constraint that once-valid event channels may not turn invalid. Logic in the handling of event channel operations in Xen ass…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2020-25597	2024-11-21 14:18	2020-09-24	Show	GitHub Exploit DB Packet Storm