Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
247201 8.5 危険 freeSSHd - freeSSHd の SFTP におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2573 2012-06-26 16:02 2008-06-6 Show GitHub Exploit DB Packet Storm
247202 4.3 警告 fourtwosevenbb - 427BB におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2561 2012-06-26 16:02 2008-06-6 Show GitHub Exploit DB Packet Storm
247203 7.5 危険 fourtwosevenbb - 427BB の showpost.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2560 2012-06-26 16:02 2008-06-6 Show GitHub Exploit DB Packet Storm
247204 7.5 危険 Borland Software Corporation - Borland Interbase における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-2559 2012-06-26 16:02 2008-06-5 Show GitHub Exploit DB Packet Storm
247205 5 警告 creloaded - CRE Loaded におけるクッキーを傍受される脆弱性 CWE-310
暗号の問題 		CVE-2008-2558 2012-06-26 16:02 2008-06-5 Show GitHub Exploit DB Packet Storm
247206 4.3 警告 creloaded - CRE Loaded におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2557 2012-06-26 16:02 2008-06-5 Show GitHub Exploit DB Packet Storm
247207 7.5 危険 easyway - EasyWay CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2555 2012-06-26 16:02 2008-06-5 Show GitHub Exploit DB Packet Storm
247208 7.5 危険 bp blog - BP Blog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2554 2012-06-26 16:02 2008-06-5 Show GitHub Exploit DB Packet Storm
247209 5 警告 Digium - Asterisk Addons の ooh323 チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-2543 2012-06-26 16:02 2008-06-5 Show GitHub Exploit DB Packet Storm
247210 7.5 危険 fkrauthan - Phoenix View CMS Pre Alpha2 における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2535 2012-06-26 16:02 2008-06-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219871 7.8 HIGH
Local 		foxitsoftware phantompdf
reader 		This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the … CWE-843
Type Confusion 		CVE-2020-10889 2024-11-21 13:56 2020-04-23 Show GitHub Exploit DB Packet Storm
219872 7.5 HIGH
Network 		git-scm
debian
canonical
fedoraproject 		git
debian_linux
ubuntu_linux
fedora 		Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an attacker. This bug is similar to CVE-2020-5260(GHSA-qm7j-c969-7j4q… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-11008 2024-11-21 13:56 2020-04-22 Show GitHub Exploit DB Packet Storm
219873 8.8 HIGH
Network 		vestacp vesta_control_panel An elevation of privilege in Vesta Control Panel through 0.9.8-26 allows an attacker to gain root system access from the admin account via v-change-user-password (aka the user password change script). NVD-CWE-noinfo
CVE-2020-10787 2024-11-21 13:56 2020-04-22 Show GitHub Exploit DB Packet Storm
219874 8.8 HIGH
Network 		vestacp vesta_control_panel A remote command execution in Vesta Control Panel through 0.9.8-26 allows any authenticated user to execute arbitrary commands on the system via cron jobs. CWE-863
 Incorrect Authorization 		CVE-2020-10786 2024-11-21 13:56 2020-04-22 Show GitHub Exploit DB Packet Storm
219875 8.8 HIGH
Network 		tortoise_orm_project tortoise_orm In Tortoise ORM before versions 0.15.23 and 0.16.6, various forms of SQL injection have been found for MySQL and when filtering or doing mass-updates on char/text fields. SQLite & PostgreSQL are only… CWE-89
SQL Injection 		CVE-2020-11010 2024-11-21 13:56 2020-04-21 Show GitHub Exploit DB Packet Storm
219876 5.4 MEDIUM
Network 		zulip zulip_server Zulip Server before 2.1.3 allows XSS via a Markdown link, with resultant account takeover. CWE-79
Cross-site Scripting 		CVE-2020-10935 2024-11-21 13:56 2020-04-21 Show GitHub Exploit DB Packet Storm
219877 8.8 HIGH
Network 		sophos anti-virus_for_sophos_central
anti-virus_for_sophos_home 		Mac Endpoint for Sophos Central before 9.9.6 and Mac Endpoint for Sophos Home before 2.2.6 allow Privilege Escalation. CWE-59
Link Following 		CVE-2020-10947 2024-11-21 13:56 2020-04-17 Show GitHub Exploit DB Packet Storm
219878 7.5 HIGH
Network 		ftpdmin_project ftpdmin A buffer overflow vulnerability in FTPDMIN 0.96 allows attackers to crash the server via a crafted packet. CWE-120
Classic Buffer Overflow 		CVE-2020-10813 2024-11-21 13:56 2020-04-17 Show GitHub Exploit DB Packet Storm
219879 6.5 MEDIUM
Network 		shopizer shopizer In Shopizer before version 2.11.0, using API or Controller based versions negative quantity is not adequately validated hence creating incorrect shopping cart and order total. This vulnerability make… CWE-20
 Improper Input Validation  		CVE-2020-11007 2024-11-21 13:56 2020-04-17 Show GitHub Exploit DB Packet Storm
219880 4.7 MEDIUM
Network 		westerndigital ibi
my_cloud_home 		Western Digital My Cloud Home and ibi devices before 2.2.0 allow clickjacking on sign-in pages. CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2020-10951 2024-11-21 13:56 2020-04-16 Show GitHub Exploit DB Packet Storm