Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231921 6.4 警告 レッドハット - Red Hat Network Satellite Server の manzier.pxt における重要な情報を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-2369 2012-12-20 18:52 2008-08-13 Show GitHub Exploit DB Packet Storm
231922 6.8 警告 wr-script - WR-Meeting の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2355 2012-12-20 18:52 2008-05-20 Show GitHub Exploit DB Packet Storm
231923 5 警告 testmaker - testMaker のデータエクスポート関数におけるデータをエキスポートするアクセス権を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2008-2354 2012-12-20 18:52 2008-05-20 Show GitHub Exploit DB Packet Storm
231924 6.8 警告 smeego - Smeego の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2352 2012-12-20 18:52 2008-05-20 Show GitHub Exploit DB Packet Storm
231925 7.5 危険 WebManager Pro - CMS WebManager-Pro の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2351 2012-12-20 18:52 2008-05-20 Show GitHub Exploit DB Packet Storm
231926 7.5 危険 zomp - Zomplog における管理アクセス権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2349 2012-12-20 18:52 2008-05-20 Show GitHub Exploit DB Packet Storm
231927 10 危険 TYPO3 Association - TYPO3 用の air_filemanager エクステンションにおける任意の PHP コードされる脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2345 2012-12-20 18:52 2008-05-19 Show GitHub Exploit DB Packet Storm
231928 4.3 警告 TYPO3 Association - TYPO3 用の air_filemanager エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2344 2012-12-20 18:52 2008-05-19 Show GitHub Exploit DB Packet Storm
231929 7.5 危険 turnkey web tools - Turnkey Web Tools SunShop Shopping Cart の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2339 2012-12-20 18:52 2008-05-19 Show GitHub Exploit DB Packet Storm
231930 4.3 警告 Vastal I-Tech & Co. - Vastal I-Tech phpVID の search_results.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2335 2012-12-20 18:52 2008-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210851 4.3 MEDIUM
Network 		mozilla firefox When accepting a malicious intent from other installed apps, Firefox for Android accepted manifests from arbitrary file paths and allowed declaring webapp manifests for other origins. This could be u… NVD-CWE-Other
CVE-2020-26954 2024-11-21 14:20 2020-12-9 Show GitHub Exploit DB Packet Storm
210852 4.3 MEDIUM
Network 		mozilla firefox
firefox_esr
thunderbird 		It was possible to cause the browser to enter fullscreen mode without displaying the security UI; thus making it possible to attempt a phishing attack or otherwise confuse the user. This vulnerabilit… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2020-26953 2024-11-21 14:20 2020-12-9 Show GitHub Exploit DB Packet Storm
210853 8.8 HIGH
Network 		mozilla firefox Incorrect bookkeeping of functions inlined during JIT compilation could have led to memory corruption and a potentially exploitable crash when handling out-of-memory errors. This vulnerability affect… CWE-787
 Out-of-bounds Write 		CVE-2020-26952 2024-11-21 14:20 2020-12-9 Show GitHub Exploit DB Packet Storm
210854 6.1 MEDIUM
Network 		mozilla firefox
firefox_esr
thunderbird 		A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker already capable of exploiting an XSS vulnerability in privilege… CWE-79
Cross-site Scripting 		CVE-2020-26951 2024-11-21 14:20 2020-12-9 Show GitHub Exploit DB Packet Storm
210855 8.8 HIGH
Network 		mozilla firefox_esr
thunderbird
firefox 		In certain circumstances, the MCallGetProperty opcode can be emitted with unmet assumptions resulting in an exploitable use-after-free condition. This vulnerability affects Firefox < 82.0.3, Firefox … CWE-416
 Use After Free 		CVE-2020-26950 2024-11-21 14:20 2020-12-9 Show GitHub Exploit DB Packet Storm
210856 8.8 HIGH
Network 		katacontainers kata_containers An issue was discovered in Kata Containers through 1.11.3 and 2.x through 2.0-rc1. The runtime will execute binaries given using annotations without any kind of validation. Someone who is granted acc… NVD-CWE-noinfo
CVE-2020-27151 2024-11-21 14:20 2020-12-7 Show GitHub Exploit DB Packet Storm
210857 9.8 CRITICAL
Network 		edimax ic-3116w_firmware
ic-3140w_firmware 		A stack-based buffer-overflow exists in Edimax IP-Camera IC-3116W (v3.06) and IC-3140W (v3.07), which allows an unauthenticated, unauthorized attacker to perform remote-code-execution due to a crafte… CWE-787
 Out-of-bounds Write 		CVE-2020-26762 2024-11-21 14:20 2020-12-2 Show GitHub Exploit DB Packet Storm
210858 4.8 MEDIUM
Network 		eclipse
netapp
oracle
apache
debian 		jetty
snap_creator_framework
oncommand_system_manager
flexcube_private_banking
communications_offline_mediation_controller
communications_services_gatekeeper
communications_pricing_… 		In Eclipse Jetty version 9.4.0.RC0 to 9.4.34.v20201102, 10.0.0.alpha0 to 10.0.0.beta2, and 11.0.0.alpha0 to 11.0.0.beta2, if GZIP request body inflation is enabled and requests from different clients… NVD-CWE-noinfo
CVE-2020-27218 2024-11-21 14:20 2020-11-28 Show GitHub Exploit DB Packet Storm
210859 8.8 HIGH
Network 		cloudera data_engineering Cloudera Data Engineering (CDE) before 1.1 was vulnerable to a CSRF attack. CWE-352
 Origin Validation Error 		CVE-2020-26936 2024-11-21 14:20 2020-11-27 Show GitHub Exploit DB Packet Storm
210860 7.5 HIGH
Network 		zetetic sqlcipher Zetetic SQLCipher 4.x before 4.4.1 has a use-after-free, related to sqlcipher_codec_pragma and sqlite3Strlen30 in sqlite3.c. A remote denial of service attack can be performed. For example, a SQL inj… CWE-416
 Use After Free 		CVE-2020-27207 2024-11-21 14:20 2020-11-27 Show GitHub Exploit DB Packet Storm