Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248611 7.5 危険 dcfm blog - DCFM Blog の comments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2671 2012-06-26 16:02 2008-06-11 Show GitHub Exploit DB Packet Storm
248612 5.1 警告 SUSE - SUSE openSUSE および他のプラットフォーム上の Courier Authentication Library における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2667 2012-06-26 16:02 2008-07-7 Show GitHub Exploit DB Packet Storm
248613 6.8 警告 Preben Bjorn Biermann Madsen - CMSimple の cmsimple/cms.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2650 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
248614 7.5 危険 don3 - DesktopOnNet における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2649 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
248615 7.5 危険 brim-project - Brim における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2645 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
248616 4.3 警告 アドビシステムズ - 複数の Adobe 製品の Flex History Management 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2640 2012-06-26 16:02 2008-06-17 Show GitHub Exploit DB Packet Storm
248617 10 危険 1-script - 1Book の guestbook.php における任意の PHP コードをアップロードされる脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2638 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
248618 4.3 警告 F5 Networks - F5 FirePass SSL VPN におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2637 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
248619 9.3 危険 barad dur - BitKinex におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2635 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
248620 7.5 危険 bearrivernet.net - I-Pos Internet Pay Online Store の index.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2634 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213171 6.1 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite through 7.10.4 allows XSS via the app loading mechanism (the PATH_INFO to the /appsuite URI). CWE-79
Cross-site Scripting 		CVE-2020-24701 2024-11-21 14:15 2021-01-12 Show GitHub Exploit DB Packet Storm
213172 5.4 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite through 7.10.3 allows SSRF because GET requests are sent to arbitrary domain names with an initial autoconfig. substring. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-24700 2024-11-21 14:15 2021-01-12 Show GitHub Exploit DB Packet Storm
213173 7.5 HIGH
Network 		dlink dsl-2888a_firmware An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55. The One Touch application discloses sensitive information, such as the hashed admin login password and … CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-24577 2024-11-21 14:15 2021-01-8 Show GitHub Exploit DB Packet Storm
213174 7.8 HIGH
Local 		arm arm_compiler Arm Compiler 5 through 5.06u6 has an error in a stack protection feature designed to help spot stack-based buffer overflows in local arrays. When this feature is enabled, a protected function writes … CWE-787
CWE-770
 Out-of-bounds Write
 Allocation of Resources Without Limits or Throttling 		CVE-2020-24658 2024-11-21 14:15 2020-12-25 Show GitHub Exploit DB Packet Storm
213175 9.8 CRITICAL
Network 		abb symphony_\+_historian
symphony_\+_operations 		The affected versions of S+ Operations (version 2.1 SP1 and earlier) used an approach for user authentication which relies on validation at the client node (client-side authentication). This is not a… CWE-669
 Incorrect Resource Transfer Between Spheres 		CVE-2020-24683 2024-11-21 14:15 2020-12-23 Show GitHub Exploit DB Packet Storm
213176 7.0 HIGH
Local 		abb symphony_\+_historian
symphony_\+_operations 		In S+ Operations and S+ Historian, the passwords of internal users (not Windows Users) are encrypted but improperly stored in a database. CWE-522
 Insufficiently Protected Credentials 		CVE-2020-24680 2024-11-21 14:15 2020-12-23 Show GitHub Exploit DB Packet Storm
213177 9.8 CRITICAL
Network 		abb symphony_\+_historian
symphony_\+_operations 		A S+ Operations and S+ Historian service is subject to a DoS by special crafted messages. An attacker might use this flaw to make it crash or even execute arbitrary code on the machine where the serv… CWE-20
 Improper Input Validation  		CVE-2020-24679 2024-11-21 14:15 2020-12-23 Show GitHub Exploit DB Packet Storm
213178 8.8 HIGH
Network 		abb symphony_\+_historian
symphony_\+_operations 		An authenticated user might execute malicious code under the user context and take control of the system. S+ Operations or S+ Historian database is affected by multiple vulnerabilities such as the po… NVD-CWE-noinfo
CVE-2020-24678 2024-11-21 14:15 2020-12-23 Show GitHub Exploit DB Packet Storm
213179 8.8 HIGH
Network 		abb symphony_\+_historian
symphony_\+_operations 		Vulnerabilities in the S+ Operations and S+ Historian web applications can lead to a possible code execution and privilege escalation, redirect the user somewhere else or download unwanted data. CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2020-24677 2024-11-21 14:15 2020-12-23 Show GitHub Exploit DB Packet Storm
213180 7.8 HIGH
Local 		abb symphony_\+_historian
symphony_\+_operations 		In Symphony Plus Operations and Symphony Plus Historian, some services can be vulnerable to privilege escalation attacks. An unprivileged (but authenticated) user could execute arbitrary code and res… NVD-CWE-noinfo
CVE-2020-24676 2024-11-21 14:15 2020-12-23 Show GitHub Exploit DB Packet Storm