Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231931	3.5	注意	tuxplanet	-	BilboBlog におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3301	2012-12-20 18:52	2008-07-25	Show	GitHub Exploit DB Packet Storm

231932	6	警告	socialengine	-	SE における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3298	2012-12-20 18:52	2008-07-25	Show	GitHub Exploit DB Packet Storm

231933	7.5	危険	socialengine	-	SE における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3297	2012-12-20 18:52	2008-07-25	Show	GitHub Exploit DB Packet Storm

231934	5	警告	sierra	-	SWAT におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3286	2012-12-20 18:52	2008-07-24	Show	GitHub Exploit DB Packet Storm

231935	5	警告	レッドハット	-	Red Hat Enterprise IPA および FreeIPA のデフォルト設定における Kerberos マスターキーを取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3274	2012-12-20 18:52	2008-09-10	Show	GitHub Exploit DB Packet Storm

231936	5	警告	winsoftmagic	-	WinSoftMagic WRPC Lite におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-3269	2012-12-20 18:52	2008-07-24	Show	GitHub Exploit DB Packet Storm

231937	7.5	危険	softacid	-	SoftAcid HRS Multi の picture_pic_bv.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3266	2012-12-20 18:52	2008-07-24	Show	GitHub Exploit DB Packet Storm

231938	7.5	危険	Zoph	-	Zoph における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3258	2012-12-20 18:52	2008-07-22	Show	GitHub Exploit DB Packet Storm

231939	7.5	危険	siteframe	-	Siteframe CMS の folder.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3256	2012-12-20 18:52	2008-07-22	Show	GitHub Exploit DB Packet Storm

231940	6.8	警告	precoc	-	preCMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3254	2012-12-20 18:52	2008-07-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210941	7.1	HIGH Network	redhat	openshift_container_platform	A Zip Slip vulnerability was found in the oc binary in openshift-clients where an arbitrary file write is achieved by using a specially crafted raw container image (.tar file) which contains symbolic…	CWE-59 Link Following	CVE-2020-27833	2024-11-21 14:21	2021-05-15	Show	GitHub Exploit DB Packet Storm

210942	3.3	LOW Local	imagemagick redhat fedoraproject	imagemagick enterprise_linux_desktop fedora	In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c.	-	CVE-2020-27769	2024-11-21 14:21	2021-05-15	Show	GitHub Exploit DB Packet Storm

210943	5.5	MEDIUM Local	linux debian	linux_kernel debian_linux	A vulnerability was found in Linux Kernel where in the spk_ttyio_receive_buf2() function, it would dereference spk_ttyio_synth without checking whether it is NULL or not, and may lead to a NULL-ptr d…	-	CVE-2020-27830	2024-11-21 14:21	2021-05-14	Show	GitHub Exploit DB Packet Storm

210944	7.8	HIGH Local	uclouvain fedoraproject debian	openjpeg fedora debian_linux	A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to co…	CWE-787 CWE-120 Out-of-bounds Write Classic Buffer Overflow	CVE-2020-27823	2024-11-21 14:21	2021-05-14	Show	GitHub Exploit DB Packet Storm

210945	5.5	MEDIUM Local	uclouvain redhat fedoraproject debian	openjpeg enterprise_linux fedora debian_linux	A flaw was found in OpenJPEG’s encoder in the opj_dwt_calc_explicit_stepsizes() function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow.…	CWE-125 Out-of-bounds Read	CVE-2020-27824	2024-11-21 14:21	2021-05-13	Show	GitHub Exploit DB Packet Storm

210946	7.5	HIGH Network	samba debian fedoraproject	samba debian_linux fedora	A flaw was found in samba. Spaces used in a string around a domain name (DN), while supposed to be ignored, can cause invalid DN strings with spaces to instead write a zero-byte into out-of-bounds me…	-	CVE-2020-27840	2024-11-21 14:21	2021-05-13	Show	GitHub Exploit DB Packet Storm

210947	7.8	HIGH Local	windscribe	windscribe	All versions of Windscribe VPN for Mac and Windows <= v2.02.10 contain a local privilege escalation vulnerability in the WindscribeService component. A low privilege user could leverage several openv…	CWE-269 Improper Privilege Management	CVE-2020-27518	2024-11-21 14:21	2021-05-4	Show	GitHub Exploit DB Packet Storm

210948	7.8	HIGH Local	pritunl	pritunl-client-electron	Pritunl Client v1.2.2550.20 contains a local privilege escalation vulnerability in the pritunl-service component. The attack vector is: malicious openvpn config. A local attacker could leverage the l…	CWE-269 Improper Privilege Management	CVE-2020-27519	2024-11-21 14:21	2021-04-30	Show	GitHub Exploit DB Packet Storm

210949	7.5	HIGH Network	aviatrix	openvpn	Arbitrary File Write exists in Aviatrix VPN Client 2.8.2 and earlier. The VPN service writes logs to a location that is world writable and can be leveraged to gain write access to any file on the sys…	CWE-276 Incorrect Default Permissions	CVE-2020-27569	2024-11-21 14:21	2021-04-22	Show	GitHub Exploit DB Packet Storm

210950	7.5	HIGH Network	aviatrix	controller	Insecure File Permissions exist in Aviatrix Controller 5.3.1516. Several world writable files and directories were found in the controller resource. Note: All Aviatrix appliances are fully encrypted.…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-27568	2024-11-21 14:21	2021-04-22	Show	GitHub Exploit DB Packet Storm