Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232001 7.5 危険 ZeeScripts.com - ZeeScripts Reviews Opinions Rating Posting Engine Web-Site PHP Script の comments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3669 2012-12-20 18:52 2008-08-13 Show GitHub Exploit DB Packet Storm
232002 4.3 警告 xrms - XRMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3664 2012-12-20 18:52 2008-09-5 Show GitHub Exploit DB Packet Storm
232003 5 警告 Tiki Software Community Association - TikiWiki CMS/Groupware における "パスおよび PHP の設定" を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2008-3654 2012-12-20 18:52 2008-08-4 Show GitHub Exploit DB Packet Storm
232004 10 危険 Tiki Software Community Association - TikiWiki CMS/Groupware における脆弱性 CWE-noinfo
情報不足 		CVE-2008-3653 2012-12-20 18:52 2008-08-4 Show GitHub Exploit DB Packet Storm
232005 6.5 警告 qbik - Qbik WinGate の IMAP サービスにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3606 2012-12-20 18:52 2008-08-12 Show GitHub Exploit DB Packet Storm
232006 7.5 危険 ZeeScripts.com - ZeeBuddy の bannerclick.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3604 2012-12-20 18:52 2008-08-12 Show GitHub Exploit DB Packet Storm
232007 7.5 危険 vacation rentals - Vacation Rental Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3603 2012-12-20 18:52 2008-08-12 Show GitHub Exploit DB Packet Storm
232008 7.5 危険 psychdaily - PHP-Ring Webring System の admin/wr_admin.php における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3602 2012-12-20 18:52 2008-08-12 Show GitHub Exploit DB Packet Storm
232009 7.5 危険 quicksilver forums - Quicksilver Forums の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3601 2012-12-20 18:52 2008-08-12 Show GitHub Exploit DB Packet Storm
232010 7.5 危険 psi-labs - psipuss における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3598 2012-12-20 18:52 2008-08-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210671 7.8 HIGH
Local 		exim exim Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the log directory (owned by a non-root user), a symlink or hard link attack allows overwriting crit… CWE-59
Link Following 		CVE-2020-28007 2024-11-21 14:22 2021-05-6 Show GitHub Exploit DB Packet Storm
210672 5.4 MEDIUM
Network 		online_discussion_forum_project online_discussion_forum The messaging subsystem in the Online Discussion Forum 1.0 is vulnerable to XSS in the message body. An authenticated user can send messages to arbitrary users on the system that include javascript t… CWE-79
Cross-site Scripting 		CVE-2020-28141 2024-11-21 14:22 2021-04-20 Show GitHub Exploit DB Packet Storm
210673 8.1 HIGH
Network 		cosori cs158-af_firmware A unauthenticated backdoor exists in the configuration server functionality of Cosori Smart 5.8-Quart Air Fryer CS158-AF 1.1.0. A specially crafted JSON object can lead to code execution. An attacker… NVD-CWE-Other
CVE-2020-28593 2024-11-21 14:22 2021-04-15 Show GitHub Exploit DB Packet Storm
210674 9.8 CRITICAL
Network 		cosori cs158-af_firmware A heap-based buffer overflow vulnerability exists in the configuration server functionality of the Cosori Smart 5.8-Quart Air Fryer CS158-AF 1.1.0. A specially crafted JSON object can lead to remote … CWE-787
 Out-of-bounds Write 		CVE-2020-28592 2024-11-21 14:22 2021-04-15 Show GitHub Exploit DB Packet Storm
210675 5.4 MEDIUM
Network 		lavalite lavalite Cross Site Scripting (XSS) in LavaLite 5.8.0 via the Address field. CWE-79
Cross-site Scripting 		CVE-2020-28124 2024-11-21 14:22 2021-04-15 Show GitHub Exploit DB Packet Storm
210676 6.5 MEDIUM
Network 		slic3r libslic3r An out-of-bounds read vulnerability exists in the Obj File TriangleMesh::TriangleMesh() functionality of Slic3r libslic3r 1.3.0 and Master Commit 92abbc42. A specially crafted obj file could lead to … CWE-125
Out-of-bounds Read 		CVE-2020-28590 2024-11-21 14:22 2021-04-14 Show GitHub Exploit DB Packet Storm
210677 7.8 HIGH
Local 		apple mac_os_x
macos 		An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, macOS Big Sur 11.0.… CWE-787
 Out-of-bounds Write 		CVE-2020-27952 2024-11-21 14:22 2021-04-3 Show GitHub Exploit DB Packet Storm
210678 7.8 HIGH
Local 		apple ipados
iphone_os
watchos 		This issue was addressed with improved checks. This issue is fixed in watchOS 6.3, iOS 12.5, iOS 14.3 and iPadOS 14.3, watchOS 7.2. Unauthorized code execution may lead to an authentication policy vi… NVD-CWE-noinfo
CVE-2020-27951 2024-11-21 14:22 2021-04-3 Show GitHub Exploit DB Packet Storm
210679 5.5 MEDIUM
Local 		apple mac_os_x
macos 		This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. A malicio… NVD-CWE-noinfo
CVE-2020-27949 2024-11-21 14:22 2021-04-3 Show GitHub Exploit DB Packet Storm
210680 7.8 HIGH
Local 		apple ipados
watchos
tvos
iphone_os
mac_os_x
macos 		An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in watchOS 7.2, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, i… CWE-787
 Out-of-bounds Write 		CVE-2020-27948 2024-11-21 14:22 2021-04-3 Show GitHub Exploit DB Packet Storm