Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232031	7.5	危険	yektaweb	-	AWT YEKTA の rating.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2968	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

232032	4.3	警告	yektaweb	-	AWT YEKTA におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2967	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

232033	7.5	危険	researchguide	-	ResearchGuide の guide.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2964	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

232034	2.6	注意	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2960	2012-12-20 18:52	2008-06-23	Show	GitHub Exploit DB Packet Storm

232035	5.8	警告	Edgewall Software	-	Trac の検索スクリプトにおけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2008-2951	2012-12-20 18:52	2008-07-27	Show	GitHub Exploit DB Packet Storm

232036	7.5	危険	freedesktop.org	-	Poppler の libpoppler における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-2950	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

232037	7.5	危険	サン・マイクロシステムズ	-	Sun Java System Access Manager および Sun Java System Identity Server における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-2945	2012-12-20 18:52	2008-06-26	Show	GitHub Exploit DB Packet Storm

232038	4.9	警告	レッドハット	-	RHEL などの Linux kernel の utrace サポートにおけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2008-2944	2012-12-20 18:52	2008-06-2	Show	GitHub Exploit DB Packet Storm

232039	7.5	危険	レッドハット	-	Red Hat adminutil におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2932	2012-12-20 18:52	2008-09-10	Show	GitHub Exploit DB Packet Storm

232040	7.5	危険	Wafer	-	Webmatic における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2925	2012-12-20 18:52	2008-06-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210821	8.8	HIGH Network	vfairs	vfairs	Any user logged in to a vFairs 3.3 virtual conference or event can perform SQL injection with a malicious query to the API.	CWE-89 SQL Injection	CVE-2020-26677	2024-11-21 14:20	2021-05-26	Show	GitHub Exploit DB Packet Storm

210822	8.1	HIGH Adjacent	bluetooth	mesh_profile	Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device, reflecting the authentication evidence from a Provisioner, to complete authentication without posse…	CWE-863 Incorrect Authorization	CVE-2020-26560	2024-11-21 14:20	2021-05-25	Show	GitHub Exploit DB Packet Storm

210823	8.8	HIGH Adjacent	bluetooth	mesh_profile	Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device (participating in the provisioning protocol) to identify the AuthValue used given the Provisioner’s …	CWE-863 Incorrect Authorization	CVE-2020-26559	2024-11-21 14:20	2021-05-25	Show	GitHub Exploit DB Packet Storm

210824	4.2	MEDIUM Adjacent	bluetooth fedoraproject debian linux intel	bluetooth_core_specification fedora debian_linux linux_kernel ax210_firmware ax201_firmware ax200_firmware ac_9560_firmware ac_9462_firmware ac_9461_firmware ac_9260_fir…	Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (in the Passkey authe…	CWE-287 Improper Authentication	CVE-2020-26558	2024-11-21 14:20	2021-05-25	Show	GitHub Exploit DB Packet Storm

210825	7.5	HIGH Adjacent	bluetooth	mesh_profile	Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device (without possession of the AuthValue used in the provisioning protocol) to determine the AuthValue via a brute…	CWE-287 Improper Authentication	CVE-2020-26557	2024-11-21 14:20	2021-05-25	Show	GitHub Exploit DB Packet Storm

210826	7.5	HIGH Adjacent	bluetooth	mesh_profile bluetooth_core_specification	Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device, able to conduct a successful brute-force attack on an insufficiently random AuthValue before the provisioning…	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-26556	2024-11-21 14:20	2021-05-25	Show	GitHub Exploit DB Packet Storm

210827	5.4	MEDIUM Adjacent	bluetooth fedoraproject intel	bluetooth_core_specification fedora ax210_firmware ax201_firmware ax200_firmware ac_9560_firmware ac_9462_firmware ac_9461_firmware ac_9260_firmware ac_8265_firmware ac_…	Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing witho…	CWE-863 Incorrect Authorization	CVE-2020-26555	2024-11-21 14:20	2021-05-25	Show	GitHub Exploit DB Packet Storm

210828	5.7	MEDIUM Physics	nordicsemi	nrf52840_firmware	Nordic Semiconductor nRF52840 devices through 2020-10-19 have improper protection against physical side channels. The flash read-out protection (APPROTECT) can be bypassed by injecting a fault during…	CWE-203 Information Exposure Through Discrepancy	CVE-2020-27211	2024-11-21 14:20	2021-05-21	Show	GitHub Exploit DB Packet Storm

210829	7.0	HIGH Local	st	stm32cubel4_firmware	STMicroelectronics STM32L4 devices through 2020-10-19 have incorrect access control. The flash read-out protection (RDP) can be degraded from RDP level 2 (no access via debug interface) to level 1 (l…	CWE-74 Injection	CVE-2020-27212	2024-11-21 14:20	2021-05-21	Show	GitHub Exploit DB Packet Storm

210830	6.8	MEDIUM Physics	solokeys nitrokey	solo_firmware somu_firmware fido2_firmware	The flash read-out protection (RDP) level is not enforced during the device initialization phase of the SoloKeys Solo 4.0.0 & Somu and the Nitrokey FIDO2 token. This allows an adversary to downgrade …	CWE-326 Inadequate Encryption Strength	CVE-2020-27208	2024-11-21 14:20	2021-05-21	Show	GitHub Exploit DB Packet Storm