Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
246991	7.5	危険	ezonescripts	-	Adult Banner Exchange Website の click.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6101	2012-06-26 16:10	2009-02-10	Show	GitHub Exploit DB Packet Storm

246992	6.8	警告	berlios	-	Discussion Forums 2k における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6100	2012-06-26 16:10	2009-02-10	Show	GitHub Exploit DB Packet Storm

246993	4.3	警告	celoxis	-	Celoxis Technologies Celoxis の user.do におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6094	2012-06-26 16:10	2009-02-9	Show	GitHub Exploit DB Packet Storm

246994	6.8	警告	bmforum	-	BMForum の plugins.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6091	2012-06-26 16:10	2009-02-9	Show	GitHub Exploit DB Packet Storm

246995	4.3	警告	camera life	-	Camera Life の topic.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6087	2012-06-26 16:10	2009-02-6	Show	GitHub Exploit DB Packet Storm

246996	7.5	危険	camera life	-	Camera Life の album.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6086	2012-06-26 16:10	2009-02-6	Show	GitHub Exploit DB Packet Storm

246997	6.8	警告	matteoiammarrone	-	Iamma Simple Gallery の pages/download.php における任意の PHP コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6084	2012-06-26 16:10	2009-02-6	Show	GitHub Exploit DB Packet Storm

246998	7.5	危険	Drupal	-	Drupal 用の EveryBlog モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6137	2012-06-26 16:10	2008-10-8	Show	GitHub Exploit DB Packet Storm

246999	5	警告	codecall Joomla!	-	Joomla! の ionfiles コンポーネントの download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6080	2012-06-26 16:10	2009-02-6	Show	GitHub Exploit DB Packet Storm

247000	10	危険	Enlightenment	-	imlib2 における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2008-6079	2012-06-26 16:10	2009-02-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219081	7.8	HIGH Local	sun-denshi	universal_forensic_extraction_device_firmware	Cellebrite UFED 5.0 to 7.5.0.845 implements local operating system policies that can be circumvented to obtain a command prompt via the Windows file dialog that is reachable via the Certificate-Based…	CWE-269 Improper Privilege Management	CVE-2020-12798	2024-11-21 14:00	2020-05-16	Show	GitHub Exploit DB Packet Storm

219082	9.8	CRITICAL Network	eq-3	homematic_ccu2_firmware ccu3_firmware	eQ-3 Homematic Central Control Unit (CCU)2 through 2.51.6 and CCU3 through 3.51.6 allow Remote Code Execution in the JSON API Method ReGa.runScript, by unauthenticated attackers with access to the we…	CWE-276 Incorrect Default Permissions	CVE-2020-12834	2024-11-21 14:00	2020-05-16	Show	GitHub Exploit DB Packet Storm

219083	6.1	MEDIUM Network	redhat	interchange	XSS in the admin help system admin/help.html and admin/quicklinks.html in Interchange 4.7.0 through 5.11.x allows remote attackers to steal credentials or data via browser JavaScript.	CWE-79 Cross-site Scripting	CVE-2020-12685	2024-11-21 14:00	2020-05-16	Show	GitHub Exploit DB Packet Storm

219084	5.4	MEDIUM Network	rcos	submitty	Submitty through 20.04.01 allows XSS via upload of an SVG document, as demonstrated by an attack by a Student against a Teaching Fellow.	CWE-79 Cross-site Scripting	CVE-2020-12882	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm

219085	7.5	HIGH Network	veritas	aptare	Veritas APTARE versions prior to 10.4 allowed sensitive information to be accessible without authentication.	CWE-306 Missing Authentication for Critical Function	CVE-2020-12877	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm

219086	7.5	HIGH Network	veritas	aptare	Veritas APTARE versions prior to 10.4 allowed remote users to access several unintended files on the server. This vulnerability only impacts Windows server deployments.	CWE-863 Incorrect Authorization	CVE-2020-12876	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm

219087	6.3	MEDIUM Network	veritas	aptare	Veritas APTARE versions prior to 10.4 did not perform adequate authorization checks. An authenticated user could gain unauthorized access to sensitive information or functionality by manipulating spe…	CWE-863 Incorrect Authorization	CVE-2020-12875	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm

219088	9.8	CRITICAL Network	veritas	aptare	Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when specific authentication credentials were provided to the server.	CWE-287 Improper Authentication	CVE-2020-12874	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm

219089	6.1	MEDIUM Network	progress	moveit_automation	An issue was discovered in Progress MOVEit Automation Web Admin. A Web Admin application endpoint failed to adequately sanitize malicious input, which could allow an unauthenticated attacker to execu…	CWE-79 Cross-site Scripting	CVE-2020-12677	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm

219090	6.5	MEDIUM Adjacent	alberta tracetogether health gov	abtracetogether tracetogether covidsafe protego_safe	The COVIDSafe (Australia) app 1.0 and 1.1 for iOS allows a remote attacker to crash the app, and consequently interfere with COVID-19 contact tracing, via a Bluetooth advertisement containing manufac…	NVD-CWE-noinfo	CVE-2020-12717	2024-11-21 14:00	2020-05-14	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed