Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246931 7.5 危険 bitlbee - BitlBee における既存のアカウントを "再作成" される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3920 2012-06-26 16:02 2008-09-4 Show GitHub Exploit DB Packet Storm
246932 5.8 警告 Django Software Foundation - Django の管理アプリケーションにおけるデータを削除される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-3909 2012-06-26 16:02 2008-09-4 Show GitHub Exploit DB Packet Storm
246933 3.5 注意 trixbox
Digium		 - Asterisk Open Source における有効なユーザ名を列挙される脆弱性 CWE-200
情報漏えい 		CVE-2008-3903 2012-06-26 16:02 2008-09-4 Show GitHub Exploit DB Packet Storm
246934 2.1 注意 マイクロソフト
freed0m		 - DiskCryptor における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-3897 2012-06-26 16:02 2008-09-3 Show GitHub Exploit DB Packet Storm
246935 2.1 注意 GNU Project - Grub Legacy における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-3896 2012-06-26 16:02 2008-09-3 Show GitHub Exploit DB Packet Storm
246936 7.5 危険 Google - Google Apps 用の SAML SSO サービス におけるユーザになりすまされる脆弱性 CWE-287
不適切な認証 		CVE-2008-3891 2012-06-26 16:02 2008-09-3 Show GitHub Exploit DB Packet Storm
246937 7.2 危険 Advanced Micro Devices (AMD)
FreeBSD		 - amd64 プラットフォーム上の FreeBSD のカーネルにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3890 2012-06-26 16:02 2008-09-3 Show GitHub Exploit DB Packet Storm
246938 7.5 危険 ASP indir - Mini-NUKE Freehost の members.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3888 2012-06-26 16:02 2008-09-2 Show GitHub Exploit DB Packet Storm
246939 6 警告 dotProject - dotProject の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3887 2012-06-26 16:02 2008-09-2 Show GitHub Exploit DB Packet Storm
246940 4.3 警告 dotProject - dotProject の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3886 2012-06-26 16:02 2008-09-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
220041 7.8 HIGH
Local 		apple mac_os_x
tvos
iphone_os
watchos
ipados 		An issue existed within the path validation logic for symlinks. This issue was addressed with improved path sanitization. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 1… CWE-59
Link Following 		CVE-2020-10003 2024-11-21 13:54 2020-12-9 Show GitHub Exploit DB Packet Storm
220042 5.5 MEDIUM
Local 		apple mac_os_x
tvos
itunes
iphone_os
watchos
icloud
ipados 		A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, tvOS 14.2, iTunes 12.11 for Wi… NVD-CWE-noinfo
CVE-2020-10002 2024-11-21 13:54 2020-12-9 Show GitHub Exploit DB Packet Storm
220043 7.3 HIGH
Local 		acronis true_image Acronis True Image 2021 fails to properly set ACLs of the C:\ProgramData\Acronis directory. Because some privileged processes are executed from the C:\ProgramData\Acronis, an unprivileged user can ac… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-10140 2024-11-21 13:54 2020-10-21 Show GitHub Exploit DB Packet Storm
220044 7.8 HIGH
Local 		acronis true_image Acronis True Image 2021 includes an OpenSSL component that specifies an OPENSSLDIR variable as a subdirectory within C:\jenkins_agent\. Acronis True Image contains a privileged service that uses this… CWE-665
 Improper Initialization 		CVE-2020-10139 2024-11-21 13:54 2020-10-21 Show GitHub Exploit DB Packet Storm
220045 7.8 HIGH
Local 		acronis cyber_protect
cyber_backup 		Acronis Cyber Backup 12.5 and Cyber Protect 15 include an OpenSSL component that specifies an OPENSSLDIR variable as a subdirectory within C:\jenkins_agent\. Acronis Cyber Backup and Cyber Protect co… CWE-665
 Improper Initialization 		CVE-2020-10138 2024-11-21 13:54 2020-10-21 Show GitHub Exploit DB Packet Storm
220046 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		<p>An elevation of privilege vulnerability exists when the Windows Storage Services improperly handle file operations. An attacker who successfully exploited this vulnerability could gain elevated pr… NVD-CWE-noinfo
CVE-2020-0764 2024-11-21 13:54 2020-10-17 Show GitHub Exploit DB Packet Storm
220047 5.5 MEDIUM
Local 		microsoft windows_10
windows_7
windows_server_2012
windows_server_2016
windows_rt_8.1
windows_server_2008
windows_8.1
windows_server_2019 		Microsoft Graphics Component Denial of Service Vulnerability NVD-CWE-noinfo
CVE-2020-0921 2024-11-21 13:54 2020-09-12 Show GitHub Exploit DB Packet Storm
220048 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		<p>An elevation of privilege vulnerability exists when the Microsoft Store Runtime improperly handles memory.</p> <p>To exploit this vulnerability, an attacker would first have to gain execution on t… NVD-CWE-noinfo
CVE-2020-0766 2024-11-21 13:54 2020-09-12 Show GitHub Exploit DB Packet Storm
220049 7.8 HIGH
Local 		microsoft windows_10
windows_server_2012
windows_server_2016
windows_rt_8.1
windows_8.1
windows_server_2019 		<p>An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run process… NVD-CWE-noinfo
CVE-2020-0998 2024-11-21 13:54 2020-09-12 Show GitHub Exploit DB Packet Storm
220050 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		<p>A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary c… CWE-787
 Out-of-bounds Write 		CVE-2020-0997 2024-11-21 13:54 2020-09-12 Show GitHub Exploit DB Packet Storm