Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232351	9.3	危険	ultrashareware	-	Ultra Shareware Ultra Office Control の Ultra.OfficeControl ActiveX コントロールにおけるクライアントシステムに任意のファイルを強制ダウンロードされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-3879	2012-12-20 18:52	2008-09-2	Show	GitHub Exploit DB Packet Storm

232352	9.3	危険	ultrashareware	-	Ultra Shareware Ultra Office Control の Ultra.OfficeControl ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-3878	2012-12-20 18:52	2008-09-2	Show	GitHub Exploit DB Packet Storm

232353	10	危険	トレンドマイクロ	-	Trend Micro OfficeScan のサーバにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-3862	2012-12-20 18:52	2008-10-22	Show	GitHub Exploit DB Packet Storm

232354	7.5	危険	phpmyrealty	-	phpMyRealty PMR における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3861	2012-12-20 18:52	2008-08-29	Show	GitHub Exploit DB Packet Storm

232355	5	警告	Pluck CMS	-	Windows 上で稼動する Pluck CMS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3851	2012-12-20 18:52	2008-08-27	Show	GitHub Exploit DB Packet Storm

232356	4.9	警告	レッドハット	-	Fedora 上で稼動している Linux カーネルの utrace サブシステム用の特定の Fedora パッチにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-3832	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

232357	5	警告	swfdec	-	Swfdec におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3796	2012-12-20 18:52	2008-08-27	Show	GitHub Exploit DB Packet Storm

232358	6.8	警告	VideoLAN	-	VLC Media Player の modules/access/mms/mmstu.c 関数における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2008-3794	2012-12-20 18:52	2008-08-26	Show	GitHub Exploit DB Packet Storm

232359	6.8	警告	PicturesPro	-	PICTURESPRO Photo Cart における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3788	2012-12-20 18:52	2008-08-26	Show	GitHub Exploit DB Packet Storm

232360	4.3	警告	PicturesPro	-	PICTURESPRO Photo Cart の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3786	2012-12-20 18:52	2008-08-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211521	7.8	HIGH Local	foxitsoftware	foxit_studio_photo	This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Studio Photo 3.6.6.922. User interaction is required to exploit this vulnerability in t…	CWE-125 Out-of-bounds Read	CVE-2020-27855	2024-11-21 14:21	2021-02-10	Show	GitHub Exploit DB Packet Storm

211522	6.5	MEDIUM Adjacent	netgear	ac2100_firmware ac2400_firmware ac2600_firmware r6700_firmware r6800_firmware r6900_firmware r7200_firmware r7350_firmware r7400_firmware r7450_firmware r6220_firmware	This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R7450 1.2.0.62_1.0.1 routers. Authentication is not required to exploit thi…	CWE-863 Incorrect Authorization	CVE-2020-27873	2024-11-21 14:21	2021-02-5	Show	GitHub Exploit DB Packet Storm

211523	8.8	HIGH Adjacent	netgear	ac2100_firmware ac2400_firmware ac2600_firmware r6700_firmware r6800_firmware r6900_firmware r7200_firmware r7350_firmware r7400_firmware r7450_firmware r6220_firmware	This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7450 1.2.0.62_1.0.1 routers. Authentication is not required to exploit this vulnera…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-27872	2024-11-21 14:21	2021-02-5	Show	GitHub Exploit DB Packet Storm

211524	7.5	HIGH Network	honeywell	opc_ua_tunneller	The affected product has uncontrolled resource consumption issues, which may allow an attacker to cause a denial-of-service condition on the OPC UA Tunneller (versions prior to 6.3.0.8233).	CWE-400 Uncontrolled Resource Consumption	CVE-2020-27295	2024-11-21 14:21	2021-01-27	Show	GitHub Exploit DB Packet Storm

211525	9.1	CRITICAL Network	honeywell	opc_ua_tunneller	The affected product is vulnerable to an out-of-bounds read, which may allow an attacker to obtain and disclose sensitive data information or cause the device to crash on the OPC UA Tunneller (versio…	CWE-125 Out-of-bounds Read	CVE-2020-27299	2024-11-21 14:21	2021-01-27	Show	GitHub Exploit DB Packet Storm

211526	9.8	CRITICAL Network	honeywell	opc_ua_tunneller	The affected product is vulnerable to a heap-based buffer overflow, which may allow an attacker to manipulate memory with controlled values and remotely execute code on the OPC UA Tunneller (versions…	CWE-787 Out-of-bounds Write	CVE-2020-27297	2024-11-21 14:21	2021-01-27	Show	GitHub Exploit DB Packet Storm

211527	7.8	HIGH Local	uclouvain debian	openjpeg debian_linux	A heap-buffer overflow was found in the way openjpeg2 handled certain PNG format files. An attacker could use this flaw to cause an application crash or in some cases execute arbitrary code with the …	-	CVE-2020-27814	2024-11-21 14:21	2021-01-27	Show	GitHub Exploit DB Packet Storm

211528	6.1	MEDIUM Network	wftpserver	wing_ftp_server	An XSS issue was discovered in Wing FTP 6.4.4. An arbitrary IFRAME element can be included in the help pages via a crafted link, leading to the execution of (sandboxed) arbitrary HTML and JavaScript …	CWE-79 Cross-site Scripting	CVE-2020-27735	2024-11-21 14:21	2021-01-27	Show	GitHub Exploit DB Packet Storm

211529	9.8	CRITICAL Network	ibm	infosphere_information_server	IBM InfoSphere Information Server 8.5.0.0 is affected by deserialization of untrusted data which could allow remote unauthenticated attackers to execute arbitrary code. NOTE: This vulnerability only …	CWE-502 Deserialization of Untrusted Data	CVE-2020-27583	2024-11-21 14:21	2021-01-27	Show	GitHub Exploit DB Packet Storm

211530	7.5	HIGH Network	company	cs-c2shw_firmware	Denial of Service vulnerability in Rostelecom CS-C2SHW 5.0.082.1. AgentGreen service has a bug in parsing broadcast discovery UDP packet. Sending a packet of too small size will lead to an attempt of…	CWE-787 Out-of-bounds Write	CVE-2020-27541	2024-11-21 14:21	2021-01-27	Show	GitHub Exploit DB Packet Storm