Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248231	9	危険	アバイア	-	Avaya CM の Web 管理インターフェースにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5709	2012-06-26 16:03	2008-10-8	Show	GitHub Exploit DB Packet Storm

248232	7.5	危険	ASP indir	-	Iltaweb Alisveris Sistemi の urunler.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5707	2012-06-26 16:03	2008-12-24	Show	GitHub Exploit DB Packet Storm

248233	7.6	危険	gpsdrive	-	gpsdrive-scripts の src/unit_test.c における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-5704	2012-06-26 16:03	2008-12-22	Show	GitHub Exploit DB Packet Storm

248234	6.2	警告	gpsdrive	-	gpsdrive-scripts における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-5703	2012-06-26 16:03	2008-12-22	Show	GitHub Exploit DB Packet Storm

248235	4	警告	fdgroup	-	FDI OLIB7 WebView におけるファイルから重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5678	2012-06-26 16:03	2008-12-18	Show	GitHub Exploit DB Packet Storm

248236	9.4	危険	darkwet	-	Darkwet Network webcamXP の HTTP サーバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-5674	2012-06-26 16:03	2008-12-18	Show	GitHub Exploit DB Packet Storm

248237	6.8	警告	GNOME Project	-	Vinagre の vinagre_utils_show_error 関数におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2008-5660	2012-06-26 16:03	2008-12-17	Show	GitHub Exploit DB Packet Storm

248238	7.5	危険	AlstraSoft	-	AlstraSoft Web Host Directory のログインディレクトリにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5650	2012-06-26 16:03	2008-12-17	Show	GitHub Exploit DB Packet Storm

248239	10	危険	AlstraSoft	-	AlstraSoft Article Manager Pro の admin/admin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5649	2012-06-26 16:03	2008-12-17	Show	GitHub Exploit DB Packet Storm

248240	7.5	危険	DeltaScripts	-	DeltaScripts PHP Shop の admin/login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5648	2012-06-26 16:03	2008-12-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219951	7.5	HIGH Network	redhat	keycloak	A vulnerability was found in keycloak, where path traversal using URL-encoded path segments in the request is possible because the resources endpoint applies a transformation of the url path to the f…	CWE-22 Path Traversal	CVE-2020-14366	2024-11-21 14:03	2020-11-10	Show	GitHub Exploit DB Packet Storm

219952	7.8	HIGH Local	foxitsoftware	foxit_reader	Foxit Reader before 10.0 allows Remote Command Execution via the app.opencPDFWebPage JavsScript API. An attacker can execute local files and bypass the security dialog.	NVD-CWE-noinfo	CVE-2020-14425	2024-11-21 14:03	2020-11-3	Show	GitHub Exploit DB Packet Storm

219953	5.5	MEDIUM Local	samba opensuse fedoraproject debian	samba leap fedora debian_linux	A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing…	CWE-476 NULL Pointer Dereference	CVE-2020-14323	2024-11-21 14:03	2020-10-30	Show	GitHub Exploit DB Packet Storm

219954	3.1	LOW Network	oracle	retail_customer_management_and_segmentation_foundation	Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications (component: Segment). Supported versions that are affected are 18.0 and 19.0. …	NVD-CWE-noinfo	CVE-2020-14731	2024-11-21 14:03	2020-10-22	Show	GitHub Exploit DB Packet Storm

219955	4.9	MEDIUM Network	oracle netapp fedoraproject	mysql oncommand_workflow_automation snapcenter_server oncommand_insight active_iq_unified_manager fedora	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easi…	NVD-CWE-noinfo	CVE-2020-14672	2024-11-21 14:03	2020-10-22	Show	GitHub Exploit DB Packet Storm

219956	6.6	MEDIUM Network	spice_project redhat canonical debian opensuse	spice enterprise_linux ubuntu_linux debian_linux enterprise_linux_eus leap enterprise_linux_aus openstack enterprise_linux_tus enterprise_linux_update_services_for_sap_solu…	Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system, before spice-0.14.2-1. Both the SPICE client (spice-gtk) and server are affe…	CWE-120 Classic Buffer Overflow	CVE-2020-14355	2024-11-21 14:03	2020-10-8	Show	GitHub Exploit DB Packet Storm

219957	8.8	HIGH Local	dpdk opensuse canonical	data_plane_development_kit leap ubuntu_linux	A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A flawed bounds checking in the copy_data function leads to a buffer overflow allowing an attacker in a virtual machine to wri…	-	CVE-2020-14374	2024-11-21 14:03	2020-10-1	Show	GitHub Exploit DB Packet Storm

219958	3.3	LOW Local	dpdk opensuse canonical	data_plane_development_kit leap ubuntu_linux	An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc` function can lead to large amounts of CPU cycles being eaten up in a long running loop. An attacker could c…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2020-14378	2024-11-21 14:03	2020-10-1	Show	GitHub Exploit DB Packet Storm

219959	7.1	HIGH Local	dpdk canonical opensuse	data_plane_development_kit ubuntu_linux leap	A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A complete lack of validation of attacker-controlled parameters can lead to a buffer over read. The results of the over read a…	-	CVE-2020-14377	2024-11-21 14:03	2020-10-1	Show	GitHub Exploit DB Packet Storm

219960	7.8	HIGH Local	dpdk opensuse canonical	data_plane_development_kit leap ubuntu_linux	A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A lack of bounds checking when copying iv_data from the VM guest memory into host memory can lead to a large buffer overflow. …	CWE-120 Classic Buffer Overflow	CVE-2020-14376	2024-11-21 14:03	2020-10-1	Show	GitHub Exploit DB Packet Storm