Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231931	7.5	危険	phpway	-	Kostenloses Linkmanagementscript における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2301	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

231932	7.5	危険	加藤和良	-	Web Slider の Admin.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-2298	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

231933	7.5	危険	roticv	-	Rantx の admin.php における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2297	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

231934	7.5	危険	rgboard	-	Rgboard の include/bbs.lib.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2296	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

231935	4.3	警告	rgboard	-	Rgboard の rg_search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2295	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

231936	7.5	危険	tpvgames	-	MPCS の admin.php における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2293	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

231937	7.5	危険	シマンテック	-	Symantec Altiris Deployment Solution の axengine.exe における暗号化されたドメイン資格情報を推測される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-2291	2012-12-20 18:52	2008-05-14	Show	GitHub Exploit DB Packet Storm

231938	7.2	危険	シマンテック	-	Symantec Altiris Deployment Solution の Agent ユーザインターフェースにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2290	2012-12-20 18:52	2008-05-14	Show	GitHub Exploit DB Packet Storm

231939	7.2	危険	シマンテック	-	Symantec Altiris Deployment Solution の tooltip 要素における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2289	2012-12-20 18:52	2008-05-14	Show	GitHub Exploit DB Packet Storm

231940	3.6	注意	シマンテック	-	Symantec Altiris Deployment Solution におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2288	2012-12-20 18:52	2008-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210851	4.3	MEDIUM Network	mozilla	firefox	When accepting a malicious intent from other installed apps, Firefox for Android accepted manifests from arbitrary file paths and allowed declaring webapp manifests for other origins. This could be u…	NVD-CWE-Other	CVE-2020-26954	2024-11-21 14:20	2020-12-9	Show	GitHub Exploit DB Packet Storm

210852	4.3	MEDIUM Network	mozilla	firefox firefox_esr thunderbird	It was possible to cause the browser to enter fullscreen mode without displaying the security UI; thus making it possible to attempt a phishing attack or otherwise confuse the user. This vulnerabilit…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2020-26953	2024-11-21 14:20	2020-12-9	Show	GitHub Exploit DB Packet Storm

210853	8.8	HIGH Network	mozilla	firefox	Incorrect bookkeeping of functions inlined during JIT compilation could have led to memory corruption and a potentially exploitable crash when handling out-of-memory errors. This vulnerability affect…	CWE-787 Out-of-bounds Write	CVE-2020-26952	2024-11-21 14:20	2020-12-9	Show	GitHub Exploit DB Packet Storm

210854	6.1	MEDIUM Network	mozilla	firefox firefox_esr thunderbird	A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker already capable of exploiting an XSS vulnerability in privilege…	CWE-79 Cross-site Scripting	CVE-2020-26951	2024-11-21 14:20	2020-12-9	Show	GitHub Exploit DB Packet Storm

210855	8.8	HIGH Network	mozilla	firefox_esr thunderbird firefox	In certain circumstances, the MCallGetProperty opcode can be emitted with unmet assumptions resulting in an exploitable use-after-free condition. This vulnerability affects Firefox < 82.0.3, Firefox …	CWE-416 Use After Free	CVE-2020-26950	2024-11-21 14:20	2020-12-9	Show	GitHub Exploit DB Packet Storm

210856	8.8	HIGH Network	katacontainers	kata_containers	An issue was discovered in Kata Containers through 1.11.3 and 2.x through 2.0-rc1. The runtime will execute binaries given using annotations without any kind of validation. Someone who is granted acc…	NVD-CWE-noinfo	CVE-2020-27151	2024-11-21 14:20	2020-12-7	Show	GitHub Exploit DB Packet Storm

210857	9.8	CRITICAL Network	edimax	ic-3116w_firmware ic-3140w_firmware	A stack-based buffer-overflow exists in Edimax IP-Camera IC-3116W (v3.06) and IC-3140W (v3.07), which allows an unauthenticated, unauthorized attacker to perform remote-code-execution due to a crafte…	CWE-787 Out-of-bounds Write	CVE-2020-26762	2024-11-21 14:20	2020-12-2	Show	GitHub Exploit DB Packet Storm

210858	4.8	MEDIUM Network	eclipse netapp oracle apache debian	jetty snap_creator_framework oncommand_system_manager flexcube_private_banking communications_offline_mediation_controller communications_services_gatekeeper communications_pricing_…	In Eclipse Jetty version 9.4.0.RC0 to 9.4.34.v20201102, 10.0.0.alpha0 to 10.0.0.beta2, and 11.0.0.alpha0 to 11.0.0.beta2, if GZIP request body inflation is enabled and requests from different clients…	NVD-CWE-noinfo	CVE-2020-27218	2024-11-21 14:20	2020-11-28	Show	GitHub Exploit DB Packet Storm

210859	8.8	HIGH Network	cloudera	data_engineering	Cloudera Data Engineering (CDE) before 1.1 was vulnerable to a CSRF attack.	CWE-352 Origin Validation Error	CVE-2020-26936	2024-11-21 14:20	2020-11-27	Show	GitHub Exploit DB Packet Storm

210860	7.5	HIGH Network	zetetic	sqlcipher	Zetetic SQLCipher 4.x before 4.4.1 has a use-after-free, related to sqlcipher_codec_pragma and sqlite3Strlen30 in sqlite3.c. A remote denial of service attack can be performed. For example, a SQL inj…	CWE-416 Use After Free	CVE-2020-27207	2024-11-21 14:20	2020-11-27	Show	GitHub Exploit DB Packet Storm