Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246961 7.5 危険 bdigital web solutions - WebStudio eHotel の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5293 2012-06-26 16:03 2008-12-1 Show GitHub Exploit DB Packet Storm
246962 7.5 危険 fuzzylime - FuzzyLime の code/track.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5291 2012-06-26 16:03 2008-12-1 Show GitHub Exploit DB Packet Storm
246963 6.4 警告 ghh - GHH File Upload Manager におけるアップロードされたファイルを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5283 2012-06-26 16:03 2008-11-28 Show GitHub Exploit DB Packet Storm
246964 6.8 警告 dmitry baryshev - ksquirrel-libs の kernel/kls_hdr/fmt_codec_hdr.cpp におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5263 2012-06-26 16:03 2009-02-26 Show GitHub Exploit DB Packet Storm
246965 7.5 危険 devil - DevIL の src-IL/src/il_hdr.c の iGetHdrHeader 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5262 2012-06-26 16:03 2009-01-13 Show GitHub Exploit DB Packet Storm
246966 9.3 危険 アクシスコミュニケーションズ - AXIS Camera Control の CamImage.CamImage.1 ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5260 2012-06-26 16:03 2009-01-26 Show GitHub Exploit DB Packet Storm
246967 9.3 危険 DivX - DivX Web Player における整数符号化エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2008-5259 2012-06-26 16:03 2009-04-16 Show GitHub Exploit DB Packet Storm
246968 7.5 危険 aspportal - ASPPortal の content/forums/reply.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5268 2012-06-26 16:03 2008-11-28 Show GitHub Exploit DB Packet Storm
246969 6.8 警告 experts - Experts の answer.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5267 2012-06-26 16:03 2008-11-28 Show GitHub Exploit DB Packet Storm
246970 7.5 危険 airvae - Airvae Commerce における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5223 2012-06-26 16:03 2008-11-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219291 8.8 HIGH
Network 		castel nextgen_dvr_firmware Castel NextGen DVR v1.0.0 is vulnerable to privilege escalation through the Adminstrator/Users/Edit/:UserId functionality. Adminstrator/Users/Edit/:UserId fails to check that the request was submitte… CWE-862
 Missing Authorization 		CVE-2020-11679 2024-11-21 13:58 2020-06-5 Show GitHub Exploit DB Packet Storm
219292 9.8 CRITICAL
Network 		microfocus service_management_automation Incorrect Authorization vulnerability in Micro Focus Container Deployment Foundation component affects products: - Hybrid Cloud Management. Versions 2018.05 to 2019.11. - ArcSight Investigate. versio… CWE-863
 Incorrect Authorization 		CVE-2020-11844 2024-11-21 13:58 2020-05-30 Show GitHub Exploit DB Packet Storm
219293 8.8 HIGH
Network 		vivotek cc9381-hv_firmware
fd9360-h_firmware
fd9368-htv_firmware
fd9380-h_firmware
fd9388-htv_firmware
ib9360-h_firmware
ib9368-ht_firmware
ib9380-h_firmware
ib9388-ht_firmware
it9… 		VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and before XXXXX-VVTK-0XXXX_Beta2) allows an authenticated user to upload and execute a script (with resultant execution of OS commands). For … CWE-78
OS Command  		CVE-2020-11950 2024-11-21 13:58 2020-05-28 Show GitHub Exploit DB Packet Storm
219294 6.5 MEDIUM
Network 		vivotek cc9381-hv_firmware
fd9360-h_firmware
fd9368-htv_firmware
fd9380-h_firmware
fd9388-htv_firmware
ib9360-h_firmware
ib9368-ht_firmware
ib9380-h_firmware
ib9388-ht_firmware
it9… 		testserver.cgi of the web service on VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and before XXXXX-VVTK-0XXXX_Beta2) allows an authenticated user to obtain arbitrary files from a camera's… NVD-CWE-noinfo
CVE-2020-11949 2024-11-21 13:58 2020-05-28 Show GitHub Exploit DB Packet Storm
219295 9.8 CRITICAL
Network 		panasonic eluga_ray_530_firmware
eluga_ray_600_firmware
p110_firmware
eluga_z1_pro_firmware
eluga_x1_firmware
eluga_x1_pro_firmware 		Panasonic P110, Eluga Z1 Pro, Eluga X1, and Eluga X1 Pro devices through 2020-04-10 have Insecure Permissions. NOTE: the vendor states that all affected products are at "End-of-software-support." CWE-276
Incorrect Default Permissions  		CVE-2020-11716 2024-11-21 13:58 2020-05-20 Show GitHub Exploit DB Packet Storm
219296 8.8 HIGH
Network 		ifax
avantfax 		hylafax
avantfax 		sendfax.php in iFAX AvantFAX before 3.3.6 and HylaFAX Enterprise Web Interface before 0.2.5 allows authenticated Command Injection. CWE-78
OS Command  		CVE-2020-11766 2024-11-21 13:58 2020-05-20 Show GitHub Exploit DB Packet Storm
219297 9.8 CRITICAL
Network 		panasonic p99_firmware Panasonic P99 devices through 2020-04-10 have Incorrect Access Control. NOTE: the vendor states that all affected products are at "End-of-software-support." NVD-CWE-noinfo
CVE-2020-11715 2024-11-21 13:58 2020-05-20 Show GitHub Exploit DB Packet Storm
219298 7.8 HIGH
Local 		sourcefabric newscoop Because of Unrestricted Upload of a File with a Dangerous Type, Sourcefabric Newscoop 4.4.7 allows an authenticated user to execute arbitrary PHP code (and sometimes terminal commands) on a server by… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-11807 2024-11-21 13:58 2020-05-20 Show GitHub Exploit DB Packet Storm
219299 6.1 MEDIUM
Network 		microfocus service_manager Cross Site Scripting vulnerability in Micro Focus Service Manager product. Affecting versions 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, 9.63. The vulnerability could be exploited to allow remote attackers … CWE-79
Cross-site Scripting 		CVE-2020-11845 2024-11-21 13:58 2020-05-20 Show GitHub Exploit DB Packet Storm
219300 6.5 MEDIUM
Adjacent 		netgear rbs50y_firmware
srr60_firmware
srs60_firmware 		An issue was discovered on NETGEAR Orbi Tri-Band Business WiFi Add-on Satellite (SRS60) AC3000 V2.5.1.106, Outdoor Satellite (RBS50Y) V2.5.1.106, and Pro Tri-Band Business WiFi Router (SRR60) AC3000 … NVD-CWE-noinfo
CVE-2020-11550 2024-11-21 13:58 2020-05-19 Show GitHub Exploit DB Packet Storm