Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
247671	10	危険	8pussy	-	Octopussy における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2008-6566	2012-06-26 16:10	2009-03-31	Show	GitHub Exploit DB Packet Storm

247672	9.3	危険	Cerulean Studios	-	Trillian の XML 解析におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-6563	2012-06-26 16:10	2009-03-31	Show	GitHub Exploit DB Packet Storm

247673	10	危険	Aztech Group Ltd	-	Aztech ADSL2/2+ 4-port ルータの cgi-bin/script における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2008-6554	2012-06-26 16:10	2009-03-30	Show	GitHub Exploit DB Packet Storm

247674	5.1	警告	e-vision	-	e-Vision CMS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6551	2012-06-26 16:10	2009-03-30	Show	GitHub Exploit DB Packet Storm

247675	4.3	警告	davidbourrier	-	Glossaire の glossaire.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6550	2012-06-26 16:10	2009-03-29	Show	GitHub Exploit DB Packet Storm

247676	7.5	危険	formencode	-	python-formencode の schema.py におけるアクセス制限を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6547	2012-06-26 16:10	2009-03-29	Show	GitHub Exploit DB Packet Storm

247677	10	危険	alecwh	-	phpns における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2008-6546	2012-06-26 16:10	2009-03-29	Show	GitHub Exploit DB Packet Storm

247678	7.5	危険	comscripts	-	Web Server Creator Web Portal の news/include/createdb.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6545	2012-06-26 16:10	2009-03-29	Show	GitHub Exploit DB Packet Storm

247679	7.5	危険	comscripts	-	ComScripts TEAM Quick Classifieds における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6543	2012-06-26 16:10	2009-03-29	Show	GitHub Exploit DB Packet Storm

247680	4.6	警告	DNN	-	DotNetNuke の Skin Manager における "サーバ側のアプリケーションのロジック" を実行される脆弱性	CWE-noinfo 情報不足	CVE-2008-6542	2012-06-26 16:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219581	8.8	HIGH Network	webtoffee	import_export_wordpress_users	The users-customers-import-export-for-wp-woocommerce plugin before 1.3.9 for WordPress allows subscribers to import administrative accounts via CSV.	CWE-269 Improper Privilege Management	CVE-2020-12074	2024-11-21 13:59	2020-04-23	Show	GitHub Exploit DB Packet Storm

219582	8.8	HIGH Network	cyberchimps	gutenberg_\&_elementor_templates_importer_for_responsive	The responsive-add-ons plugin before 2.2.7 for WordPress has incorrect access control for wp-admin/admin-ajax.php?action= requests.	NVD-CWE-Other	CVE-2020-12073	2024-11-21 13:59	2020-04-23	Show	GitHub Exploit DB Packet Storm

219583	4.8	MEDIUM Network	anchorcms	anchor	Anchor 0.12.7 allows admins to cause XSS via crafted post content.	CWE-79 Cross-site Scripting	CVE-2020-12071	2024-11-21 13:59	2020-04-23	Show	GitHub Exploit DB Packet Storm

219584	7.5	HIGH Network	teeworlds opensuse fedoraproject debian canonical	teeworlds leap backports_sle fedora debian_linux ubuntu_linux	CServer::SendMsg in engine/server/server.cpp in Teeworlds 0.7.x before 0.7.5 allows remote attackers to shut down the server.	CWE-20 Improper Input Validation	CVE-2020-12066	2024-11-21 13:59	2020-04-23	Show	GitHub Exploit DB Packet Storm

219585	7.5	HIGH Network	linuxfoundation canonical	ceph ubuntu_linux	An issue was discovered in Ceph through 13.2.9. A POST request with an invalid tagging XML can crash the RGW process by triggering a NULL pointer exception.	CWE-476 NULL Pointer Dereference	CVE-2020-12059	2024-11-21 13:59	2020-04-22	Show	GitHub Exploit DB Packet Storm

219586	7.5	HIGH Network	mediawiki	mediawiki	The CentralAuth extension through REL1_34 for MediaWiki allows remote attackers to obtain sensitive hidden account information via an api.php?action=query&meta=globaluserinfo&guiuser= request. In oth…	NVD-CWE-noinfo	CVE-2020-12051	2024-11-21 13:59	2020-04-22	Show	GitHub Exploit DB Packet Storm

219587	7.5	HIGH Network	evenroute	iqrouter_firmware	In the web-panel in IQrouter through 3.3.1, remote attackers can read system logs because of Incorrect Access Control. Note: The vendor claims that this vulnerability can only occur on a brand-new ne…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2020-11968	2024-11-21 13:59	2020-04-21	Show	GitHub Exploit DB Packet Storm

219588	9.8	CRITICAL Network	evenroute	iqrouter_firmware	In IQrouter through 3.3.1, remote attackers can control the device (restart network, reboot, upgrade, reset) because of Incorrect Access Control. Note: The vendor claims that this vulnerability can o…	CWE-862 Missing Authorization	CVE-2020-11967	2024-11-21 13:59	2020-04-21	Show	GitHub Exploit DB Packet Storm

219589	9.8	CRITICAL Network	evenroute	iqrouter_firmware	In IQrouter through 3.3.1, the Lua function reset_password in the web-panel allows remote attackers to change the root password arbitrarily. Note: The vendor claims that this vulnerability can only o…	CWE-521 Weak Password Requirements	CVE-2020-11966	2024-11-21 13:59	2020-04-21	Show	GitHub Exploit DB Packet Storm

219590	9.8	CRITICAL Network	evenroute	iqrouter_firmware	In IQrouter through 3.3.1, there is a root user without a password, which allows attackers to gain full remote access via SSH. Note: The vendor claims that this vulnerability can only occur on a bran…	CWE-287 Improper Authentication	CVE-2020-11965	2024-11-21 13:59	2020-04-21	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed