Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
247161	9.3	危険	マイクロソフト AVG Technologies	-	AVG Anti-Virus における HTML ドキュメント内のマルウェアの検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5522	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

247162	9.3	危険	マイクロソフト free-av	-	Avira AntiVir における HTML 文書内のマルウェアの検知を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5521	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

247163	9.4	危険	マイクロソフト Apache Software Foundation	-	Apache Geronimo Application Server の Web 管理コンソールにおけるファイルを任意のディレクトリにアップロードされる脆弱性	CWE-22 パス・トラバーサル	CVE-2008-5518	2012-06-26 16:03	2009-04-17	Show	GitHub Exploit DB Packet Storm

247164	7.5	危険	Git project	-	gitweb の Web インターフェースにおける任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-5517	2012-06-26 16:03	2009-01-13	Show	GitHub Exploit DB Packet Storm

247165	9.3	危険	マイクロソフトアンラボ	-	AhnLab V3 における HTML ドキュメント内のマルウェアの検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5520	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

247166	7.5	危険	bandsitecms	-	BandSite CMS における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-5497	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

247167	7.5	危険	Joomla! digitalgreys	-	Joomla! の contactinfo コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5494	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

247168	7.5	危険	clip-share	-	ClipShare の channel_detail.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5489	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

247169	7.5	危険	e-topbiz	-	E-topbiz Domain Shop の admin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5488	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

247170	5	警告	5e5	-	Teamtek Universal FTP Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-5431	2012-06-26 16:03	2008-12-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219511	9.8	CRITICAL Network	mono	monox	MonoX through 5.1.40.5152 allows remote code execution via HTML5Upload.ashx or Pages/SocialNetworking/lng/en-US/PhotoGallery.aspx because of deserialization in ModuleGallery.HTML5Upload, ModuleGaller…	CWE-502 Deserialization of Untrusted Data	CVE-2020-12471	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

219512	7.2	HIGH Network	mono	monox	MonoX through 5.1.40.5152 allows administrators to execute arbitrary code by modifying an ASPX template.	CWE-552 Files or Directories Accessible to External Parties	CVE-2020-12470	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

219513	6.5	MEDIUM Network	intelliants	subrion	admin/blocks.php in Subrion CMS through 4.2.1 allows PHP Object Injection (with resultant file deletion) via serialized data in the subpages value within a block to blocks/edit.	CWE-502 Deserialization of Untrusted Data	CVE-2020-12469	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

219514	7.8	HIGH Local	intelliants	subrion	Subrion CMS 4.2.1 allows CSV injection via a phrase value within a language. This is related to phrases/add/ and languages/download/.	NVD-CWE-Other	CVE-2020-12468	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

219515	6.5	MEDIUM Network	intelliants	subrion	Subrion CMS 4.2.1 allows session fixation via an alphanumeric value in a session cookie.	CWE-384 Session Fixation	CVE-2020-12467	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

219516	7.2	HIGH Network	mono	monox	MonoX through 5.1.40.5152 allows admins to execute arbitrary programs by reconfiguring the Converter Executable setting from ffmpeg.exe to a different program.	NVD-CWE-noinfo	CVE-2020-12473	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

219517	5.4	MEDIUM Network	mono	monox	MonoX through 5.1.40.5152 allows stored XSS via User Status, Blog Comments, or Blog Description.	CWE-79 Cross-site Scripting	CVE-2020-12472	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

219518	6.7	MEDIUM Local	linux netapp	linux_kernel cloud_backup steelstore_cloud_integrated_storage hci_storage_nodes aff_a700s active_iq_unified_manager hci_compute_node solidfire_\&_hci_storage_node solidfir…	usb_sg_cancel in drivers/usb/core/message.c in the Linux kernel before 5.6.8 has a use-after-free because a transfer occurs without a reference, aka CID-056ad39ee925.	CWE-416 Use After Free	CVE-2020-12464	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

219519	6.7	MEDIUM Local	linux netapp	linux_kernel cloud_backup steelstore_cloud_integrated_storage solidfire_\&_hci_management_node active_iq_unified_manager hci_compute_node solidfire_baseboard_management_controll…	An array overflow was discovered in mt76_add_fragment in drivers/net/wireless/mediatek/mt76/dma.c in the Linux kernel before 5.5.10, aka CID-b102f0c522cf. An oversized packet with too many rx fragmen…	CWE-120 Classic Buffer Overflow	CVE-2020-12465	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

219520	6.1	MEDIUM Network	ninjaforms	ninja_forms	The ninja-forms plugin before 3.4.24.2 for WordPress allows CSRF with resultant XSS.	CWE-352 Origin Validation Error	CVE-2020-12462	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm