Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248571 4.3 警告 elinestudio - ESC におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2861 2012-06-26 16:02 2008-06-25 Show GitHub Exploit DB Packet Storm
248572 7.5 危険 aj square - AJSquare AJ Auction Pro Web の category.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2860 2012-06-26 16:02 2008-06-25 Show GitHub Exploit DB Packet Storm
248573 5 警告 AlstraSoft - AlstraSoft AskMe Pro における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-2857 2012-06-26 16:02 2008-06-25 Show GitHub Exploit DB Packet Storm
248574 7.5 危険 easy webstore - Easy Webstore の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2853 2012-06-26 16:02 2008-06-25 Show GitHub Exploit DB Packet Storm
248575 7.5 危険 boatscripts - BoatScripts Classifieds の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2846 2012-06-26 16:02 2008-06-25 Show GitHub Exploit DB Packet Storm
248576 7.5 危険 carscripts - Carscripts Classifieds の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2844 2012-06-26 16:02 2008-06-25 Show GitHub Exploit DB Packet Storm
248577 7.5 危険 doitlive - doITLive CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2843 2012-06-26 16:02 2008-06-25 Show GitHub Exploit DB Packet Storm
248578 4.3 警告 doitlive - doITLive CMS の edit/showmedia.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2842 2012-06-26 16:02 2008-06-25 Show GitHub Exploit DB Packet Storm
248579 6.8 警告 exerocms - Exero CMS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2840 2012-06-26 16:02 2008-06-24 Show GitHub Exploit DB Packet Storm
248580 7.5 危険 cms.brdconcept - CMS-BRD の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2837 2012-06-26 16:02 2008-06-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209871 8.2 HIGH
Network 		oracle customer_relationship_management_technical_foundation Vulnerability in the Oracle CRM Technical Foundation product of Oracle E-Business Suite (component: Preferences). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerabil… NVD-CWE-noinfo
CVE-2020-2881 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
209872 8.2 HIGH
Network 		oracle learning_management Vulnerability in the Oracle Learning Management product of Oracle E-Business Suite (component: OTA Training Activities). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easi… NVD-CWE-noinfo
CVE-2020-2880 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
209873 8.2 HIGH
Network 		oracle scripting Vulnerability in the Oracle Scripting product of Oracle E-Business Suite (component: Miscellaneous). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulne… NVD-CWE-noinfo
CVE-2020-2879 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
209874 8.2 HIGH
Network 		oracle isupport Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Mail). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthentica… NVD-CWE-noinfo
CVE-2020-2878 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
209875 8.2 HIGH
Network 		oracle partner_management Vulnerability in the Oracle Partner Management product of Oracle E-Business Suite (component: Attribute Admin Setup). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulner… NVD-CWE-noinfo
CVE-2020-2877 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
209876 8.2 HIGH
Network 		oracle marketing Vulnerability in the Oracle Marketing product of Oracle E-Business Suite (component: Marketing Administration). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploi… NVD-CWE-noinfo
CVE-2020-2876 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
209877 4.7 MEDIUM
Network 		oracle
fedoraproject
debian 		mysql_connector\/j
fedora
debian_linux 		Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 8.0.14 and prior and 5.1.48 and prior. Difficult to exploit vulnerabil… NVD-CWE-noinfo
CVE-2020-2875 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
209878 8.2 HIGH
Network 		oracle email_center Vulnerability in the Oracle Email Center product of Oracle E-Business Suite (component: Customer Search). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allo… NVD-CWE-noinfo
CVE-2020-2874 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
209879 8.2 HIGH
Network 		oracle customer_interaction_history Vulnerability in the Oracle Customer Interaction History product of Oracle E-Business Suite (component: Outcome-Result). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easi… NVD-CWE-noinfo
CVE-2020-2873 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm
209880 8.2 HIGH
Network 		oracle isupport Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Profile). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthent… NVD-CWE-noinfo
CVE-2020-2872 2024-11-21 14:26 2020-04-15 Show GitHub Exploit DB Packet Storm