Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232021 6.8 警告 Realtek Semiconductor Corp - Windows Vista 上で稼動している Realtek HD Audio Codec Drivers RTKVHDA.sys および RTKVHDA64.sys におけるレジストリキーを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1931 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
232022 7.5 危険 WordPress.org - WordPress のクッキー認証メソッドにおけるクッキーを偽造される脆弱性 CWE-287
不適切な認証 		CVE-2008-1930 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
232023 3.5 注意 The phpMyAdmin Project - phpMyAdmin における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2008-1924 2012-12-20 18:52 2008-04-22 Show GitHub Exploit DB Packet Storm
232024 10 危険 sarg - Sarg におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1922 2012-12-20 18:52 2008-05-13 Show GitHub Exploit DB Packet Storm
232025 7.5 危険 YourFreeWorld.com - YourFreeWorld Apartment Search Script の listtest.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1919 2012-12-20 18:52 2008-04-23 Show GitHub Exploit DB Packet Storm
232026 6 警告 PHP-Fusion - PHP-Fusion の submit.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1918 2012-12-20 18:52 2008-04-23 Show GitHub Exploit DB Packet Storm
232027 7.5 危険 w2b - W2B Online Banking の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1893 2012-12-20 18:52 2008-04-18 Show GitHub Exploit DB Packet Storm
232028 5 警告 Ruby-lang.org - Ruby の WEBrick におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1891 2012-12-20 18:52 2008-04-18 Show GitHub Exploit DB Packet Storm
232029 7.5 危険 xplodphp - XplodPHP AutoTutorials の viewcat.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1889 2012-12-20 18:52 2008-04-18 Show GitHub Exploit DB Packet Storm
232030 5 警告 wikepage - Wikepage Opus の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1884 2012-12-20 18:52 2008-04-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210821 8.8 HIGH
Network 		vfairs vfairs Any user logged in to a vFairs 3.3 virtual conference or event can perform SQL injection with a malicious query to the API. CWE-89
SQL Injection 		CVE-2020-26677 2024-11-21 14:20 2021-05-26 Show GitHub Exploit DB Packet Storm
210822 8.1 HIGH
Adjacent 		bluetooth mesh_profile Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device, reflecting the authentication evidence from a Provisioner, to complete authentication without posse… CWE-863
 Incorrect Authorization 		CVE-2020-26560 2024-11-21 14:20 2021-05-25 Show GitHub Exploit DB Packet Storm
210823 8.8 HIGH
Adjacent 		bluetooth mesh_profile Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device (participating in the provisioning protocol) to identify the AuthValue used given the Provisioner’s … CWE-863
 Incorrect Authorization 		CVE-2020-26559 2024-11-21 14:20 2021-05-25 Show GitHub Exploit DB Packet Storm
210824 4.2 MEDIUM
Adjacent 		bluetooth
fedoraproject
debian
linux
intel 		bluetooth_core_specification
fedora
debian_linux
linux_kernel
ax210_firmware
ax201_firmware
ax200_firmware
ac_9560_firmware
ac_9462_firmware
ac_9461_firmware
ac_9260_fir… 		Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (in the Passkey authe… CWE-287
Improper Authentication 		CVE-2020-26558 2024-11-21 14:20 2021-05-25 Show GitHub Exploit DB Packet Storm
210825 7.5 HIGH
Adjacent 		bluetooth mesh_profile Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device (without possession of the AuthValue used in the provisioning protocol) to determine the AuthValue via a brute… CWE-287
Improper Authentication 		CVE-2020-26557 2024-11-21 14:20 2021-05-25 Show GitHub Exploit DB Packet Storm
210826 7.5 HIGH
Adjacent 		bluetooth mesh_profile
bluetooth_core_specification 		Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device, able to conduct a successful brute-force attack on an insufficiently random AuthValue before the provisioning… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2020-26556 2024-11-21 14:20 2021-05-25 Show GitHub Exploit DB Packet Storm
210827 5.4 MEDIUM
Adjacent 		bluetooth
fedoraproject
intel 		bluetooth_core_specification
fedora
ax210_firmware
ax201_firmware
ax200_firmware
ac_9560_firmware
ac_9462_firmware
ac_9461_firmware
ac_9260_firmware
ac_8265_firmware
ac_… 		Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing witho… CWE-863
 Incorrect Authorization 		CVE-2020-26555 2024-11-21 14:20 2021-05-25 Show GitHub Exploit DB Packet Storm
210828 5.7 MEDIUM
Physics 		nordicsemi nrf52840_firmware Nordic Semiconductor nRF52840 devices through 2020-10-19 have improper protection against physical side channels. The flash read-out protection (APPROTECT) can be bypassed by injecting a fault during… CWE-203
 Information Exposure Through Discrepancy 		CVE-2020-27211 2024-11-21 14:20 2021-05-21 Show GitHub Exploit DB Packet Storm
210829 7.0 HIGH
Local 		st stm32cubel4_firmware STMicroelectronics STM32L4 devices through 2020-10-19 have incorrect access control. The flash read-out protection (RDP) can be degraded from RDP level 2 (no access via debug interface) to level 1 (l… CWE-74
Injection 		CVE-2020-27212 2024-11-21 14:20 2021-05-21 Show GitHub Exploit DB Packet Storm
210830 6.8 MEDIUM
Physics 		solokeys
nitrokey 		solo_firmware
somu_firmware
fido2_firmware 		The flash read-out protection (RDP) level is not enforced during the device initialization phase of the SoloKeys Solo 4.0.0 & Somu and the Nitrokey FIDO2 token. This allows an adversary to downgrade … CWE-326
Inadequate Encryption Strength 		CVE-2020-27208 2024-11-21 14:20 2021-05-21 Show GitHub Exploit DB Packet Storm