Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
247221 4.3 警告 brown bear software - Brown Bear Software Calcium の Calcium40.pl におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2507 2012-06-26 16:02 2008-05-29 Show GitHub Exploit DB Packet Storm
247222 7.5 危険 emule - eMule X-Ray の Web サーバにおけるメモリ破損を誘発される脆弱性 CWE-399
リソース管理の問題 		CVE-2008-2502 2012-06-26 16:02 2008-05-29 Show GitHub Exploit DB Packet Storm
247223 4.3 警告 badongo - Campus Bulletin Board の post3/Book.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2493 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
247224 7.5 危険 badongo - Campus Bulletin Board における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2492 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
247225 9.3 危険 ebay - eBay Enhanced Picture Uploader ActiveX コントロールにおける任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2008-2475 2012-06-26 16:02 2009-06-9 Show GitHub Exploit DB Packet Storm
247226 6.5 警告 beaussier - RoomPHPlanning の admin/userform.php における新規に admin アカウントを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2488 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
247227 10 危険 emule - eMule Plus における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2008-2486 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
247228 6.8 警告 badongo - phpFix における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2479 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
247229 6.8 警告 entertainmentscript - EntertainmentScript の page.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2459 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
247230 4.3 警告 4shared - Starsgames Control Panel の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2458 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219981 7.2 HIGH
Network 		acyba acymailing Acyba AcyMailing before 6.9.2 mishandles file uploads by admins. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-10934 2024-11-21 13:56 2020-03-25 Show GitHub Exploit DB Packet Storm
219982 7.5 HIGH
Network 		memcached memcached Memcached 1.6.x before 1.6.2 allows remote attackers to cause a denial of service (daemon crash) via a crafted binary protocol header to try_read_command_binary in memcached.c. CWE-120
Classic Buffer Overflow 		CVE-2020-10931 2024-11-21 13:56 2020-03-25 Show GitHub Exploit DB Packet Storm
219983 9.8 CRITICAL
Network 		rconfig rconfig rConfig before 3.9.5 allows command injection by sending a crafted GET request to lib/crud/search.crud.php since the nodeId parameter is passed directly to the exec function without being escaped. CWE-78
OS Command  		CVE-2020-10879 2024-11-21 13:56 2020-03-24 Show GitHub Exploit DB Packet Storm
219984 7.5 HIGH
Network 		zebra fx9500_firmware Motorola FX9500 devices allow remote attackers to conduct absolute path traversal attacks, as demonstrated by PL/SQL Server Pages files such as /include/viewtagdb.psp. CWE-22
Path Traversal 		CVE-2020-10875 2024-11-21 13:56 2020-03-24 Show GitHub Exploit DB Packet Storm
219985 7.5 HIGH
Network 		motorola fx9500-41324d41-us_firmware
fx9500-41324d41-ww_firmware
fx9500-81324d41-us_firmware
fx9500-81324d41-ww_firmware 		Motorola FX9500 devices allow remote attackers to read database files. CWE-306
Missing Authentication for Critical Function 		CVE-2020-10874 2024-11-21 13:56 2020-03-24 Show GitHub Exploit DB Packet Storm
219986 5.3 MEDIUM
Network 		openwrt luci In OpenWrt LuCI git-20.x, remote unauthenticated attackers can retrieve the list of installed packages and services. NOTE: the vendor disputes the significance of this report because, for instances r… CWE-200
Information Exposure 		CVE-2020-10871 2024-11-21 13:56 2020-03-24 Show GitHub Exploit DB Packet Storm
219987 5.5 MEDIUM
Local 		zim-wiki zim Zim through 0.72.1 creates temporary directories with predictable names. A malicious user could predict and create Zim's temporary directories and prevent other users from being able to start Zim, re… CWE-330
 Use of Insufficiently Random Values 		CVE-2020-10870 2024-11-21 13:56 2020-03-24 Show GitHub Exploit DB Packet Storm
219988 8.8 HIGH
Network 		codeigniter codeigniter CodeIgniter through 4.0.0 allows remote attackers to gain privileges via a modified Email ID to the "Select Role of the User" page. NOTE: A contributor to the CodeIgniter framework argues that the is… CWE-269
 Improper Privilege Management 		CVE-2020-10793 2024-11-21 13:56 2020-03-24 Show GitHub Exploit DB Packet Storm
219989 4.8 MEDIUM
Network 		nagios nagios_xi Nagios XI 5.6.11 allows XSS via the account/main.php theme parameter. CWE-79
Cross-site Scripting 		CVE-2020-10821 2024-11-21 13:56 2020-03-23 Show GitHub Exploit DB Packet Storm
219990 4.8 MEDIUM
Network 		nagios nagios_xi Nagios XI 5.6.11 allows XSS via the includes/components/ldap_ad_integration/ password parameter. CWE-79
Cross-site Scripting 		CVE-2020-10820 2024-11-21 13:56 2020-03-23 Show GitHub Exploit DB Packet Storm