Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
247661 9.3 危険 マイクロソフト
ClamAV		 - ClamAV における HTML ドキュメント内のマルウェアの検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5525 2012-06-26 16:03 2008-12-12 Show GitHub Exploit DB Packet Storm
247662 9.3 危険 マイクロソフト
AVAST Software s.r.o.		 - avast! antivirus における HTML ドキュメント内のマルウェアの検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5523 2012-06-26 16:03 2008-12-12 Show GitHub Exploit DB Packet Storm
247663 9.3 危険 マイクロソフト
AVG Technologies		 - AVG Anti-Virus における HTML ドキュメント内のマルウェアの検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5522 2012-06-26 16:03 2008-12-12 Show GitHub Exploit DB Packet Storm
247664 9.3 危険 マイクロソフト
free-av		 - Avira AntiVir における HTML 文書内のマルウェアの検知を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5521 2012-06-26 16:03 2008-12-12 Show GitHub Exploit DB Packet Storm
247665 9.4 危険 マイクロソフト
Apache Software Foundation		 - Apache Geronimo Application Server の Web 管理コンソールにおけるファイルを任意のディレクトリにアップロードされる脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5518 2012-06-26 16:03 2009-04-17 Show GitHub Exploit DB Packet Storm
247666 7.5 危険 Git project - gitweb の Web インターフェースにおける任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5517 2012-06-26 16:03 2009-01-13 Show GitHub Exploit DB Packet Storm
247667 9.3 危険 マイクロソフト
アンラボ		 - AhnLab V3 における HTML ドキュメント内のマルウェアの検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5520 2012-06-26 16:03 2008-12-12 Show GitHub Exploit DB Packet Storm
247668 7.5 危険 bandsitecms - BandSite CMS における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-5497 2012-06-26 16:03 2008-12-12 Show GitHub Exploit DB Packet Storm
247669 7.5 危険 Joomla!
digitalgreys		 - Joomla! の contactinfo コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5494 2012-06-26 16:03 2008-12-12 Show GitHub Exploit DB Packet Storm
247670 7.5 危険 clip-share - ClipShare の channel_detail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5489 2012-06-26 16:03 2008-12-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211911 9.8 CRITICAL
Network 		mozilla firefox The lifecycle of IPC Actors allows managed actors to outlive their manager actors; and the former must ensure that they are not attempting to use a dead actor they have a reference to. Such a check w… CWE-416
 Use After Free 		CVE-2020-26972 2024-11-21 14:20 2021-01-7 Show GitHub Exploit DB Packet Storm
211912 8.8 HIGH
Network 		mozilla firefox_esr
thunderbird
firefox 		Certain blit values provided by the user were not properly constrained leading to a heap buffer overflow on some video drivers. This vulnerability affects Firefox < 84, Thunderbird < 78.6, and Firefo… CWE-787
 Out-of-bounds Write 		CVE-2020-26971 2024-11-21 14:20 2021-01-7 Show GitHub Exploit DB Packet Storm
211913 6.1 MEDIUM
Network 		formstone formstone Formstone <=1.4.16 is vulnerable to a Reflected Cross-Site Scripting (XSS) vulnerability caused by improper validation of user supplied input in the upload-target.php and upload-chunked.php files. A … CWE-79
Cross-site Scripting 		CVE-2020-26768 2024-11-21 14:20 2021-01-7 Show GitHub Exploit DB Packet Storm
211914 5.3 MEDIUM
Network 		redlion crimson An attacker could send a specially crafted message to Crimson 3.1 (Build versions prior to 3119.001) that could leak arbitrary memory locations. CWE-404
 Improper Resource Shutdown or Release 		CVE-2020-27283 2024-11-21 14:20 2021-01-7 Show GitHub Exploit DB Packet Storm
211915 7.5 HIGH
Network 		redlion crimson A NULL pointer deference vulnerability has been identified in the protocol converter. An attacker could send a specially crafted packet that could reboot the device running Crimson 3.1 (Build version… CWE-476
 NULL Pointer Dereference 		CVE-2020-27279 2024-11-21 14:20 2021-01-7 Show GitHub Exploit DB Packet Storm
211916 9.1 CRITICAL
Network 		redlion crimson The default configuration of Crimson 3.1 (Build versions prior to 3119.001) allows a user to be able to read and modify the database without authentication. CWE-306
Missing Authentication for Critical Function 		CVE-2020-27285 2024-11-21 14:20 2021-01-7 Show GitHub Exploit DB Packet Storm
211917 9.8 CRITICAL
Network 		clickhouse-driver_project clickhouse-driver clickhouse-driver before 0.1.5 allows a malicious clickhouse server to trigger a crash or execute arbitrary code (on a database client) via a crafted server response, due to a buffer overflow. CWE-120
Classic Buffer Overflow 		CVE-2020-26759 2024-11-21 14:20 2021-01-6 Show GitHub Exploit DB Packet Storm
211918 9.8 CRITICAL
Network 		gdatasoftware g_data An issue was discovered in G-Data before 25.5.9.25 using Symbolic links, it is possible to abuse the infected-file restore mechanism to achieve arbitrary write that leads to elevation of privileges. CWE-59
Link Following 		CVE-2020-27172 2024-11-21 14:20 2020-12-29 Show GitHub Exploit DB Packet Storm
211919 5.9 MEDIUM
Network 		arista eos In EVPN VxLAN setups in Arista EOS, specific malformed packets can lead to incorrect MAC to IP bindings and as a result packets can be incorrectly forwarded across VLAN boundaries. This can result in… NVD-CWE-noinfo
CVE-2020-26569 2024-11-21 14:20 2020-12-29 Show GitHub Exploit DB Packet Storm
211920 8.8 HIGH
Network 		user_registration_\&_login_and_user_management_system_with_admin_panel_project user_registration_\&_login_and_user_management_system_with_admin_panel A Cross Site Request Forgery (CSRF) vulnerability exists in the loginsystem page in PHPGurukul User Registration & Login and User Management System With Admin Panel 2.1. CWE-352
 Origin Validation Error 		CVE-2020-26766 2024-11-21 14:20 2020-12-26 Show GitHub Exploit DB Packet Storm