Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231901 4.3 警告 xrms - XRMS CRM における設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-3400 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
231902 6.8 警告 xrms - XRMS CRM の activities/workflow-activities.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-3399 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
231903 2.6 注意 xrms - XRMS CRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3398 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
231904 4.3 警告 runesoft - Runesoft Cerberus CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3397 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
231905 5.8 警告 webwizguide - Web Wiz Forum におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-3392 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
231906 4.3 警告 webwizguide - Web Wiz Forum におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3391 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
231907 7.5 危険 phpfootball - PHPFootball の show.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3387 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
231908 4.3 警告 snarky - Snark VisualPic におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3379 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
231909 7.5 危険 talkback - TalkBack の install/help.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3371 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
231910 7.5 危険 viart - ViArt Shop の products_rss.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3369 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210601 7.5 HIGH
Network 		nats nats_server This affects all versions of package github.com/nats-io/nats-server/server. Untrusted accounts are able to crash the server using configs that represent a service export/import cycles. Disclaimer fro… NVD-CWE-noinfo
CVE-2020-28466 2024-11-21 14:22 2021-03-7 Show GitHub Exploit DB Packet Storm
210602 8.1 HIGH
Network 		xmlhttprequest_project xmlhttprequest This affects the package xmlhttprequest before 1.7.0; all versions of package xmlhttprequest-ssl. Provided requests are sent synchronously (async=False on xhr.open), malicious user input flowing into… CWE-94
Code Injection 		CVE-2020-28502 2024-11-21 14:22 2021-03-6 Show GitHub Exploit DB Packet Storm
210603 9.1 CRITICAL
Network 		zohocorp manageengine_desktop_central Zoho ManageEngine Desktop Central before build 10.0.647 allows a single authentication secret from multiple agents to communicate with the server. CWE-287
Improper Authentication 		CVE-2020-28050 2024-11-21 14:22 2021-03-6 Show GitHub Exploit DB Packet Storm
210604 9.8 CRITICAL
Network 		cgal
fedoraproject
debian 		computational_geometry_algorithms_library
fedora
debian_linux 		A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in Nef_2/PM_io_parser.h PM_io_parser::read_vertex() Face_of… - CVE-2020-28601 2024-11-21 14:22 2021-03-5 Show GitHub Exploit DB Packet Storm
210605 7.5 HIGH
Network 		epignosishq efront A predictable seed vulnerability exists in the password reset functionality of Epignosis EfrontPro 5.2.21. By predicting the seed it is possible to generate the correct password reset 1-time token. A… CWE-335
 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) 		CVE-2020-28597 2024-11-21 14:22 2021-03-4 Show GitHub Exploit DB Packet Storm
210606 6.5 MEDIUM
Network 		slic3r
fedoraproject 		libslic3r
fedora 		An out-of-bounds read vulnerability exists in the AMF File AMFParserContext::endElement() functionality of Slic3r libslic3r 1.3.0 and Master Commit 92abbc42. A specially crafted AMF file can lead to … CWE-125
Out-of-bounds Read 		CVE-2020-28591 2024-11-21 14:22 2021-03-4 Show GitHub Exploit DB Packet Storm
210607 7.8 HIGH
Local 		saltstack
fedoraproject
debian 		salt
fedora
debian_linux 		An issue was discovered in SaltStack Salt before 3002.5. The minion's restartcheck is vulnerable to command injection via a crafted process name. This allows for a local privilege escalation by any u… CWE-77
Command Injection 		CVE-2020-28243 2024-11-21 14:22 2021-02-27 Show GitHub Exploit DB Packet Storm
210608 9.1 CRITICAL
Network 		bestit amazon_pay best it Amazon Pay Plugin before 9.4.2 for Shopware exposes Sensitive Information to an Unauthorized Actor. CWE-200
Information Exposure 		CVE-2020-28199 2024-11-21 14:22 2021-02-27 Show GitHub Exploit DB Packet Storm
210609 7.8 HIGH
Local 		openscad
fedoraproject 		openscad
fedora 		A stack-based buffer overflow vulnerability exists in the import_stl.cc:import_stl() functionality of Openscad openscad-2020.12-RC2. A specially crafted STL file can lead to code execution. An attack… CWE-787
 Out-of-bounds Write 		CVE-2020-28599 2024-11-21 14:22 2021-02-25 Show GitHub Exploit DB Packet Storm
210610 7.8 HIGH
Local 		softmaker planmaker_2021 A specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size used for the copy, whic… CWE-787
 Out-of-bounds Write 		CVE-2020-28587 2024-11-21 14:22 2021-02-24 Show GitHub Exploit DB Packet Storm