Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232301 7.5 危険 rfaah - Cars & Vehicle の page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4172 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
232302 4.3 警告 pro2col - Pro2col Stingray FTS の verify_login.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4168 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
232303 7.5 危険 zanfi solutions - Zanfi CMS lite および Jaw Portal の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4159 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
232304 6.8 警告 zanfi solutions - Zanfi CMS lite の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4158 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
232305 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech phpVID の groups.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4157 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
232306 7.5 危険 razorecommerce - RazorCommerce Shopping Cart の category_search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4143 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
232307 7.5 危険 x10media - x10Media x10 Automatic MP3 Script における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4141 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
232308 10 危険 technote - Technote の skin_shop/standard/3_plugin_twindow/twindow_notice.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4138 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
232309 7.8 危険 s60 - Nokia E90 Communicator および Nseries N82 上で稼動している Symbian OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4135 2012-12-20 18:52 2008-09-19 Show GitHub Exploit DB Packet Storm
232310 7.5 危険 phprealty - phpRealty の manager/static/view.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4134 2012-12-20 18:52 2008-09-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211501 5.5 MEDIUM
Local 		gnu
netapp
oracle
debian 		glibc
ontap_select_deploy_administration_utility
a250_firmware
500f_firmware
h410c_firmware
h300s_firmware
h500s_firmware
h700s_firmware
h300e_firmware
h500e_firmware
h7… 		The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, and IBM1399 encodings, fails t… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-27618 2024-11-21 14:21 2021-02-27 Show GitHub Exploit DB Packet Storm
211502 7.5 HIGH
Network 		restify-paginate_project restify-paginate The restify-paginate package 0.0.5 for Node.js allows remote attackers to cause a Denial-of-Service by omitting the HTTP Host header. A Restify-based web service would crash with an uncaught exceptio… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-27543 2024-11-21 14:21 2021-02-26 Show GitHub Exploit DB Packet Storm
211503 7.5 HIGH
Network 		redhat jboss_fuse
openshift_application_runtimes
undertow 		A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a … - CVE-2020-27782 2024-11-21 14:21 2021-02-24 Show GitHub Exploit DB Packet Storm
211504 5.5 MEDIUM
Local 		libxls_project libxls An issue was discovered in libxls before and including 1.6.1 when reading Microsoft Excel files. A NULL pointer dereference vulnerability exists when parsing XLS cells in libxls/xls2csv.c:199. It cou… - CVE-2020-27819 2024-11-21 14:21 2021-02-23 Show GitHub Exploit DB Packet Storm
211505 3.3 LOW
Local 		imagemagick
debian 		imagemagick
debian_linux 		In ImageMagick, there is an outside the range of representable values of type 'unsigned int' at MagickCore/quantum-private.h. This flaw affects ImageMagick versions prior to 7.0.9-0. - CVE-2020-27768 2024-11-21 14:21 2021-02-23 Show GitHub Exploit DB Packet Storm
211506 8.8 HIGH
Network 		solarwinds network_performance_monitor This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor 2020 HF1, NPM: 2020.2. Authentication is required to exploit this… - CVE-2020-27869 2024-11-21 14:21 2021-02-12 Show GitHub Exploit DB Packet Storm
211507 9.8 CRITICAL
Network 		qognify ocularis This vulnerability allows remote attackers to execute arbitrary code on affected installations of Qognify Ocularis 5.9.0.395. Authentication is not required to exploit this vulnerability. The specifi… - CVE-2020-27868 2024-11-21 14:21 2021-02-12 Show GitHub Exploit DB Packet Storm
211508 6.8 MEDIUM
Adjacent 		netgear ac2100_firmware
ac2400_firmware
ac2600_firmware
r6700_firmware
r6800_firmware
r6900_firmware
r7200_firmware
r7350_firmware
r7400_firmware
r7450_firmware
r6220_firmware 		This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020… - CVE-2020-27867 2024-11-21 14:21 2021-02-12 Show GitHub Exploit DB Packet Storm
211509 8.8 HIGH
Adjacent 		netgear ac2100_firmware
ac2400_firmware
ac2600_firmware
r6700_firmware
r6800_firmware
r6900_firmware
r7200_firmware
r7350_firmware
r7400_firmware
r7450_firmware
r6220_firmware 		This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020,… - CVE-2020-27866 2024-11-21 14:21 2021-02-12 Show GitHub Exploit DB Packet Storm
211510 8.8 HIGH
Adjacent 		dlink dap-1860_firmware This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1860 firmware version 1.04B03 WiFi extenders. Authentication is not required to … - CVE-2020-27865 2024-11-21 14:21 2021-02-12 Show GitHub Exploit DB Packet Storm