Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232031 7.5 危険 wogan may - LiteNews の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3507 2012-12-20 18:52 2008-08-7 Show GitHub Exploit DB Packet Storm
232032 7.5 危険 polypager - PolyPager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3506 2012-12-20 18:52 2008-08-6 Show GitHub Exploit DB Packet Storm
232033 4.3 警告 polypager - PolyPager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3505 2012-12-20 18:52 2008-08-6 Show GitHub Exploit DB Packet Storm
232034 5 警告 webgui - Plain Black WebGUI の RSSFromParent における重要な情報を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-3503 2012-12-20 18:52 2008-06-20 Show GitHub Exploit DB Packet Storm
232035 5 警告 RealVNC - RealVNC Windows Client の vncviewer.exe におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-3493 2012-12-20 18:52 2008-08-6 Show GitHub Exploit DB Packet Storm
232036 7.5 危険 scripts24 - Scripts24 iPost および iTGP の go.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3491 2012-12-20 18:52 2008-08-6 Show GitHub Exploit DB Packet Storm
232037 7.5 危険 phpx - PHPX の includes/functions.inc.php の checkCookie 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3489 2012-12-20 18:52 2008-08-6 Show GitHub Exploit DB Packet Storm
232038 7.5 危険 phpauctions - PHPAuction GPL の profile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3487 2012-12-20 18:52 2008-08-6 Show GitHub Exploit DB Packet Storm
232039 4.3 警告 screwturn - ScrewTurn Wiki におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3483 2012-12-20 18:52 2008-08-5 Show GitHub Exploit DB Packet Storm
232040 2.6 注意 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3457 2012-12-20 18:52 2008-07-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210941 7.1 HIGH
Network 		redhat openshift_container_platform A Zip Slip vulnerability was found in the oc binary in openshift-clients where an arbitrary file write is achieved by using a specially crafted raw container image (.tar file) which contains symbolic… CWE-59
Link Following 		CVE-2020-27833 2024-11-21 14:21 2021-05-15 Show GitHub Exploit DB Packet Storm
210942 3.3 LOW
Local 		imagemagick
redhat
fedoraproject 		imagemagick
enterprise_linux_desktop
fedora 		In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c. - CVE-2020-27769 2024-11-21 14:21 2021-05-15 Show GitHub Exploit DB Packet Storm
210943 5.5 MEDIUM
Local 		linux
debian 		linux_kernel
debian_linux 		A vulnerability was found in Linux Kernel where in the spk_ttyio_receive_buf2() function, it would dereference spk_ttyio_synth without checking whether it is NULL or not, and may lead to a NULL-ptr d… - CVE-2020-27830 2024-11-21 14:21 2021-05-14 Show GitHub Exploit DB Packet Storm
210944 7.8 HIGH
Local 		uclouvain
fedoraproject
debian 		openjpeg
fedora
debian_linux 		A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to co… CWE-787
CWE-120
 Out-of-bounds Write
Classic Buffer Overflow 		CVE-2020-27823 2024-11-21 14:21 2021-05-14 Show GitHub Exploit DB Packet Storm
210945 5.5 MEDIUM
Local 		uclouvain
redhat
fedoraproject
debian 		openjpeg
enterprise_linux
fedora
debian_linux 		A flaw was found in OpenJPEG’s encoder in the opj_dwt_calc_explicit_stepsizes() function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow.… CWE-125
Out-of-bounds Read 		CVE-2020-27824 2024-11-21 14:21 2021-05-13 Show GitHub Exploit DB Packet Storm
210946 7.5 HIGH
Network 		samba
debian
fedoraproject 		samba
debian_linux
fedora 		A flaw was found in samba. Spaces used in a string around a domain name (DN), while supposed to be ignored, can cause invalid DN strings with spaces to instead write a zero-byte into out-of-bounds me… - CVE-2020-27840 2024-11-21 14:21 2021-05-13 Show GitHub Exploit DB Packet Storm
210947 7.8 HIGH
Local 		windscribe windscribe All versions of Windscribe VPN for Mac and Windows <= v2.02.10 contain a local privilege escalation vulnerability in the WindscribeService component. A low privilege user could leverage several openv… CWE-269
 Improper Privilege Management 		CVE-2020-27518 2024-11-21 14:21 2021-05-4 Show GitHub Exploit DB Packet Storm
210948 7.8 HIGH
Local 		pritunl pritunl-client-electron Pritunl Client v1.2.2550.20 contains a local privilege escalation vulnerability in the pritunl-service component. The attack vector is: malicious openvpn config. A local attacker could leverage the l… CWE-269
 Improper Privilege Management 		CVE-2020-27519 2024-11-21 14:21 2021-04-30 Show GitHub Exploit DB Packet Storm
210949 7.5 HIGH
Network 		aviatrix openvpn Arbitrary File Write exists in Aviatrix VPN Client 2.8.2 and earlier. The VPN service writes logs to a location that is world writable and can be leveraged to gain write access to any file on the sys… CWE-276
Incorrect Default Permissions  		CVE-2020-27569 2024-11-21 14:21 2021-04-22 Show GitHub Exploit DB Packet Storm
210950 7.5 HIGH
Network 		aviatrix controller Insecure File Permissions exist in Aviatrix Controller 5.3.1516. Several world writable files and directories were found in the controller resource. Note: All Aviatrix appliances are fully encrypted.… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-27568 2024-11-21 14:21 2021-04-22 Show GitHub Exploit DB Packet Storm