Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232941	7.5	危険	raven-worx	-	Joomla! 用の liveticker モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6148	2012-12-20 19:10	2009-02-16	Show	GitHub Exploit DB Packet Storm

232942	7.5	危険	Web-Empowered Church Team	-	TYPO3 用の WEC Discussion Forum エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6145	2012-12-20 19:10	2009-02-16	Show	GitHub Exploit DB Packet Storm

232943	4.3	警告	Web-Empowered Church Team	-	TYPO3 用の WEC Discussion Forum エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6144	2012-12-20 19:10	2009-02-16	Show	GitHub Exploit DB Packet Storm

232944	5	警告	webbiscuits	-	WebBiscuits Modules Controller の faqsupport/wce.download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6139	2012-12-20 19:10	2009-02-13	Show	GitHub Exploit DB Packet Storm

232945	7.5	危険	webbiscuits	-	WebBiscuits Modules Controller の adminhead.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6138	2012-12-20 19:10	2009-02-13	Show	GitHub Exploit DB Packet Storm

232946	7.5	危険	socialengine	-	SocialEngine における CRLF インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2008-6121	2012-12-20 19:10	2009-02-11	Show	GitHub Exploit DB Packet Storm

232947	7.5	危険	socialengine	-	SocialEngine の profile_comments.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6120	2012-12-20 19:10	2009-02-11	Show	GitHub Exploit DB Packet Storm

232948	7.5	危険	pilotgroup	-	PG Job Site Pro の homepage.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6117	2012-12-20 19:10	2009-02-11	Show	GitHub Exploit DB Packet Storm

232949	7.5	危険	prozilla	-	Prozilla Hosting Index の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6115	2012-12-20 19:10	2009-02-11	Show	GitHub Exploit DB Packet Storm

232950	4.3	警告	SemanticScuttle	-	SemanticScuttle におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6113	2012-12-20 19:10	2009-02-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211921	2.8	LOW Local	oracle opensuse	vm_virtualbox leap	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily expl…	NVD-CWE-noinfo	CVE-2020-2909	2024-11-21 14:26	2020-04-15	Show	GitHub Exploit DB Packet Storm

211922	8.2	HIGH Local	oracle opensuse	vm_virtualbox leap	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily expl…	CWE-20 CWE-787 CWE-681 Improper Input Validation Out-of-bounds Write Incorrect Conversion between Numeric Types	CVE-2020-2908	2024-11-21 14:26	2020-04-15	Show	GitHub Exploit DB Packet Storm

211923	7.5	HIGH Local	oracle opensuse	vm_virtualbox leap	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Difficult t…	CWE-20 CWE-843 Improper Input Validation Type Confusion	CVE-2020-2907	2024-11-21 14:26	2020-04-15	Show	GitHub Exploit DB Packet Storm

211924	6.5	MEDIUM Network	oracle	peoplesoft_enterprise_scm_purchasing	Vulnerability in the PeopleSoft Enterprise SCM Purchasing product of Oracle PeopleSoft (component: Supplier Change). The supported version that is affected is 9.2. Easily exploitable vulnerability al…	NVD-CWE-noinfo	CVE-2020-2906	2024-11-21 14:26	2020-04-15	Show	GitHub Exploit DB Packet Storm

211925	8.2	HIGH Local	oracle opensuse	vm_virtualbox leap	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily expl…	NVD-CWE-noinfo	CVE-2020-2905	2024-11-21 14:26	2020-04-15	Show	GitHub Exploit DB Packet Storm

211926	4.9	MEDIUM Network	oracle fedoraproject canonical netapp	mysql fedora ubuntu_linux snapcenter oncommand_workflow_automation oncommand_insight active_iq_unified_manager	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privi…	NVD-CWE-noinfo	CVE-2020-2904	2024-11-21 14:26	2020-04-15	Show	GitHub Exploit DB Packet Storm

211927	4.9	MEDIUM Network	oracle fedoraproject canonical netapp	mysql fedora ubuntu_linux snapcenter oncommand_workflow_automation oncommand_insight active_iq_unified_manager	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Connection Handling). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows …	NVD-CWE-noinfo	CVE-2020-2903	2024-11-21 14:26	2020-04-15	Show	GitHub Exploit DB Packet Storm

211928	8.8	HIGH Local	oracle opensuse	vm_virtualbox leap	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily expl…	CWE-787 Out-of-bounds Write	CVE-2020-2902	2024-11-21 14:26	2020-04-15	Show	GitHub Exploit DB Packet Storm

211929	4.9	MEDIUM Network	oracle fedoraproject canonical netapp	mysql fedora ubuntu_linux snapcenter oncommand_workflow_automation oncommand_insight active_iq_unified_manager	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privi…	NVD-CWE-noinfo	CVE-2020-2901	2024-11-21 14:26	2020-04-15	Show	GitHub Exploit DB Packet Storm

211930	3.7	LOW Network	oracle	graalvm	Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle GraalVM (component: Tools). Supported versions that are affected are 19.3.1 and 20.0.0. Difficult to exploit vulnerability all…	NVD-CWE-noinfo	CVE-2020-2900	2024-11-21 14:26	2020-04-15	Show	GitHub Exploit DB Packet Storm