Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232191	10	危険	webbiscuits	-	WebBiscuits Software Events Calendar の panel/common/theme/default/header_setup.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-4673	2012-12-20 18:52	2008-10-22	Show	GitHub Exploit DB Packet Storm

232192	4.3	警告	WordPress.org	-	WPMU の wp-admin/wp-blogs.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4671	2012-12-20 18:52	2008-10-22	Show	GitHub Exploit DB Packet Storm

232193	9.3	危険	qvod	-	QVOD Player の QvodInsert.QvodCtrl.1 ActiveX コンポーネントにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4664	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232194	4.3	警告	TYPO3 Association	-	TYPO3 用の Page Improvements エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4661	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232195	7.5	危険	TYPO3 Association	-	TYPO3 用の M1 Intern エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4660	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232196	7.5	危険	TYPO3 Association	-	TYPO3 用の Mannschaftsliste エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4659	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232197	7.5	危険	TYPO3 Association	-	TYPO3 用の JobControl エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4658	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232198	7.5	危険	TYPO3 Association	-	TYPO3 用の Econda エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4657	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232199	7.5	危険	TYPO3 Association	-	TYPO3 用の Frontend Users View エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4656	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232200	7.5	危険	TYPO3 Association	-	TYPO3 用の Simple survey エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4655	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210981	9.8	CRITICAL Network	cdatatec cdata	72408a_firmware 9008a_firmware 9016a_firmware 92408a_firmware 92416a_firmware 9288_firmware 97016_firmware 97024p_firmware 97028p_firmware 97042p_firmware 97084p_firmwar…	An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN,…	CWE-78 OS Command	CVE-2020-29056	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

210982	5.9	MEDIUM Network	cdatatec	72408a_firmware 9008a_firmware 9016a_firmware 92408a_firmware 92416a_firmware 9288_firmware 97016_firmware 97024p_firmware 97028p_firmware 97042p_firmware 97084p_firmwar…	An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN,…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-29055	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

210983	9.8	CRITICAL Network	cdatatec	72408a_firmware 9008a_firmware 9016a_firmware 92408a_firmware 92416a_firmware 9288_firmware 97016_firmware 97024p_firmware 97028p_firmware 97042p_firmware 97084p_firmwar…	An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN,…	CWE-522 Insufficiently Protected Credentials	CVE-2020-29054	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

210984	9.8	CRITICAL Network	karenderia_multiple_restaurant_system_project	karenderia_multiple_restaurant_system	A SQL injection vulnerability was discovered in Karenderia Multiple Restaurant System, affecting versions 5.4.2 and below. The vulnerability allows for an unauthenticated attacker to perform various …	CWE-89 SQL Injection	CVE-2020-28994	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

210985	5.5	MEDIUM Local	musl-libc debian fedoraproject oracle	musl debian_linux fedora graalvm	In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access (buffer overflow).	CWE-787 Out-of-bounds Write	CVE-2020-28928	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

210986	8.8	HIGH Local	xen	xen	An issue was discovered in Xen through 4.14.x allowing x86 HVM guest OS users to cause a denial of service (stack corruption), cause a data leak, or possibly gain privileges because of an off-by-one …	CWE-787 CWE-193 Out-of-bounds Write Off-by-one Error	CVE-2020-29040	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

210987	6.1	MEDIUM Network	seeddms	seeddms	Open redirect in SeedDMS 6.0.13 via the dropfolderfileform1 parameter to out/out.AddDocument.php.	CWE-601 Open Redirect	CVE-2020-28726	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

210988	9.8	CRITICAL Network	misp	misp	MISP before 2.4.135 lacks an ACL check, related to app/Controller/GalaxyElementsController.php and app/Model/GalaxyElement.php.	CWE-862 Missing Authorization	CVE-2020-29006	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

210989	5.4	MEDIUM Network	mediawiki	mediawiki	The PollNY extension for MediaWiki through 1.35 allows XSS via an answer option for a poll question, entered during Special:CreatePoll or Special:UpdatePoll.	CWE-79 Cross-site Scripting	CVE-2020-29003	2024-11-21 14:23	2020-11-24	Show	GitHub Exploit DB Packet Storm

210990	4.8	MEDIUM Network	mediawiki	mediawiki	includes/CologneBlueTemplate.php in the CologneBlue skin for MediaWiki through 1.35 allows XSS via a qbfind message supplied by an administrator.	CWE-79 Cross-site Scripting	CVE-2020-29002	2024-11-21 14:23	2020-11-24	Show	GitHub Exploit DB Packet Storm