Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246481 7.5 危険 GNU Project - GNU m4 の maketemp 関数 におけるマクロ展開を誘発される脆弱性 CWE-DesignError
CVE-2008-1687 2012-06-26 16:02 2008-04-9 Show GitHub Exploit DB Packet Storm
246482 6.8 警告 elearningforce - Joomla! の Online FlashQuiz コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1682 2012-06-26 16:02 2008-04-4 Show GitHub Exploit DB Packet Storm
246483 5 警告 futurenuke - PHP-Nuke Platinum における設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-1680 2012-06-26 16:02 2008-04-3 Show GitHub Exploit DB Packet Storm
246484 7.8 危険 ヒューレット・パッカード
eps		 - HP OVIS の EPS Probe Builder の Probe Builder Service におけるプロセスを kill される脆弱性 CWE-189
数値処理の問題 		CVE-2008-1667 2012-06-26 16:02 2008-07-28 Show GitHub Exploit DB Packet Storm
246485 4.6 警告 freedesktop.org - PolicyKit の grant helper におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2008-1658 2012-06-26 16:02 2008-03-31 Show GitHub Exploit DB Packet Storm
246486 7.5 危険 アドビシステムズ - Adobe ColdFusion における CFC メソッドを呼び出される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1656 2012-06-26 16:02 2008-04-8 Show GitHub Exploit DB Packet Storm
246487 9.3 危険 chilkat software - ChilkatHttp.dll の ChilkatHttp.ChilkatHttp.1 ActiveX コントロールにおける任意のファイルを上書きされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-1647 2012-06-26 16:02 2008-04-2 Show GitHub Exploit DB Packet Storm
246488 7.5 危険 arnos toolbox
WordPress.org		 - WordPress の WP-Download プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1646 2012-06-26 16:02 2008-04-2 Show GitHub Exploit DB Packet Storm
246489 7.5 危険 efestech - EfesTECH Video の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1641 2012-06-26 16:02 2008-04-2 Show GitHub Exploit DB Packet Storm
246490 7.5 危険 emedia office gmbh - CuteFlow における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1632 2012-06-26 16:02 2008-04-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
218651 7.5 HIGH
Network 		mikrotik routeros The SSH daemon on MikroTik routers through v6.44.3 could allow remote attackers to generate CPU activity, trigger refusal of new authorized connections, and cause a reboot via connect and write syste… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-10364 2024-11-21 13:55 2020-03-24 Show GitHub Exploit DB Packet Storm
218652 9.1 CRITICAL
Network 		hashicorp vault HashiCorp Vault and Vault Enterprise versions 0.11.0 through 1.3.3 may, under certain circumstances, have existing nested-path policies grant access to Namespaces created after-the-fact. Fixed in 1.3… NVD-CWE-noinfo
CVE-2020-10661 2024-11-21 13:55 2020-03-23 Show GitHub Exploit DB Packet Storm
218653 5.3 MEDIUM
Network 		hashicorp vault HashiCorp Vault and Vault Enterprise versions 0.9.0 through 1.3.3 may, under certain circumstances, have an Entity's Group membership inadvertently include Groups the Entity no longer has permissions… CWE-276
Incorrect Default Permissions  		CVE-2020-10660 2024-11-21 13:55 2020-03-23 Show GitHub Exploit DB Packet Storm
218654 7.5 HIGH
Network 		torproject
opensuse 		tor
leap
backports_sle 		Tor before 0.3.5.10, 0.4.x before 0.4.1.9, and 0.4.2.x before 0.4.2.7 allows remote attackers to cause a Denial of Service (memory leak), aka TROVE-2020-004. This occurs in circpad_setup_machine_on_c… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2020-10593 2024-11-21 13:55 2020-03-23 Show GitHub Exploit DB Packet Storm
218655 7.5 HIGH
Network 		torproject
opensuse 		tor
leap
backports 		Tor before 0.3.5.10, 0.4.x before 0.4.1.9, and 0.4.2.x before 0.4.2.7 allows remote attackers to cause a Denial of Service (CPU consumption), aka TROVE-2020-002. NVD-CWE-noinfo
CVE-2020-10592 2024-11-21 13:55 2020-03-23 Show GitHub Exploit DB Packet Storm
218656 6.5 MEDIUM
Network 		tesla model_3_web_interface The driving interface of Tesla Model 3 vehicles in any release before 2020.4.10 allows Denial of Service to occur due to improper process separation, which allows attackers to disable the speedometer… NVD-CWE-noinfo
CVE-2020-10558 2024-11-21 13:55 2020-03-21 Show GitHub Exploit DB Packet Storm
218657 7.1 HIGH
Local 		deltaww delta_industrial_automation_dopsoft Delta Industrial Automation DOPSoft, Version 4.00.08.15 and prior. Multiple out-of-bounds read vulnerabilities may be exploited by processing specially crafted project files, which may allow an attac… CWE-125
Out-of-bounds Read 		CVE-2020-10597 2024-11-21 13:55 2020-03-21 Show GitHub Exploit DB Packet Storm
218658 7.8 HIGH
Local 		cmsmadesimple cms_made_simple The Filemanager in CMS Made Simple 2.2.13 allows remote code execution via a .php.jpegd JPEG file, as demonstrated by m1_files[] to admin/moduleinterface.php. The file should be sent as application/o… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-10682 2024-11-21 13:55 2020-03-20 Show GitHub Exploit DB Packet Storm
218659 5.4 MEDIUM
Network 		cmsmadesimple cms_made_simple The Filemanager in CMS Made Simple 2.2.13 has stored XSS via a .pxd file, as demonstrated by m1_files[] to admin/moduleinterface.php. CWE-79
Cross-site Scripting 		CVE-2020-10681 2024-11-21 13:55 2020-03-20 Show GitHub Exploit DB Packet Storm
218660 7.5 HIGH
Network 		canon oce_colorwave_500_firmware The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to authentication bypass on the page /home.jsp. An unauthenticated attacker able to connect to the device's we… CWE-287
Improper Authentication 		CVE-2020-10669 2024-11-21 13:55 2020-03-20 Show GitHub Exploit DB Packet Storm