Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 12:22 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232791	7.5	危険	webportal	-	WebPortal CMS の download.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4345	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

232792	6	警告	vacilanda	-	Drupal 用の Brilliant Gallery モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4338	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

232793	7.5	危険	phpocs	-	phpOCS の library/pagefunctions.inc.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4331	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

232794	5.8	警告	ViewVC	-	ViewVC の lib/viewvc.py におけるブラウザにコンテンツを誤って解釈させる脆弱性	CWE-noinfo 情報不足	CVE-2008-4325	2012-12-20 18:52	2008-06-4	Show	GitHub Exploit DB Packet Storm

232795	10	危険	project-observer	-	Observer における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4318	2012-12-20 18:52	2008-09-29	Show	GitHub Exploit DB Packet Storm

232796	9	危険	phpCollab	-	phpCollab の installation/setup.php における include/settings.php に任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2008-4305	2012-12-20 18:52	2008-12-23	Show	GitHub Exploit DB Packet Storm

232797	10	危険	phpCollab	-	phpCollab の general/login.php における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2008-4304	2012-12-20 18:52	2008-12-23	Show	GitHub Exploit DB Packet Storm

232798	6.8	警告	phpCollab	-	phpCollab における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4303	2012-12-20 18:52	2008-12-23	Show	GitHub Exploit DB Packet Storm

232799	6.5	警告	rianxosencabos cms	-	Rianxosencabos CMS の Admin Control Panel におけるユーザの権限を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-4245	2012-12-20 18:52	2008-09-25	Show	GitHub Exploit DB Packet Storm

232800	7.5	危険	webcms	-	webCMS Portal Edition の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4185	2012-12-20 18:52	2008-09-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211801	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoService parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authen…	CWE-89 SQL Injection	CVE-2020-27243	2024-11-21 14:20	2021-05-11	Show	GitHub Exploit DB Packet Storm

211802	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoLocation parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authe…	CWE-89 SQL Injection	CVE-2020-27242	2024-11-21 14:20	2021-05-11	Show	GitHub Exploit DB Packet Storm

211803	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	An exploitable SQL injection vulnerability exists in ‘manageServiceStocks.jsp’ page of OpenClinic GA 5.173.3. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authe…	CWE-89 SQL Injection	CVE-2020-27232	2024-11-21 14:20	2021-05-11	Show	GitHub Exploit DB Packet Storm

211804	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	A number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findDistrict parameter in ‘‘patientslist.do’ page is vulnerable to aut…	CWE-89 SQL Injection	CVE-2020-27231	2024-11-21 14:20	2021-05-11	Show	GitHub Exploit DB Packet Storm

211805	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	A number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findSector parameter in ‘‘patientslist.do’ page is vulnerable to authe…	CWE-89 SQL Injection	CVE-2020-27230	2024-11-21 14:20	2021-05-11	Show	GitHub Exploit DB Packet Storm

211806	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	A number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findPersonID parameter in ‘‘patientslist.do’ page is vulnerable to aut…	CWE-89 SQL Injection	CVE-2020-27229	2024-11-21 14:20	2021-05-11	Show	GitHub Exploit DB Packet Storm

211807	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	An exploitable SQL injection vulnerability exists in ‘quickFile.jsp’ page of OpenClinic GA 5.173.3. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated H…	CWE-89 SQL Injection	CVE-2020-27226	2024-11-21 14:20	2021-05-11	Show	GitHub Exploit DB Packet Storm

211808	9.8	CRITICAL Network	openclinic_ga_project	openclinic_ga	An exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3. The serialnumber parameter in the getAssets.jsp page is vulnerable to unauthenticated SQL injection…	CWE-89 SQL Injection	CVE-2020-27241	2024-11-21 14:20	2021-04-20	Show	GitHub Exploit DB Packet Storm

211809	9.8	CRITICAL Network	openclinic_ga_project	openclinic_ga	An exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3. The componentStatus parameter in the getAssets.jsp page is vulnerable to unauthenticated SQL inject…	CWE-89 SQL Injection	CVE-2020-27240	2024-11-21 14:20	2021-04-20	Show	GitHub Exploit DB Packet Storm

211810	8.1	HIGH Network	siemens	nucleus_net nucleus_source_code	A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5…	CWE-787 Out-of-bounds Write	CVE-2020-27009	2024-11-21 14:20	2021-04-23	Show	GitHub Exploit DB Packet Storm