Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251471	7.5	危険	Wafer	-	Webmatic の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4808	2012-03-27 18:42	2011-07-8	Show	GitHub Exploit DB Packet Storm

251472	3.5	注意	IBM	-	IBM WCM におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2010-4807	2012-03-27 18:42	2011-04-3	Show	GitHub Exploit DB Packet Storm

251473	10	危険	mojolicious	-	Mojolicious における詳細不明な脆弱性	CWE-20 不適切な入力確認	CVE-2010-4803	2012-03-27 18:42	2011-05-2	Show	GitHub Exploit DB Packet Storm

251474	10	危険	mojolicious	-	Mojolicious の Commands.pm における詳細不明な脆弱性	CWE-20 不適切な入力確認	CVE-2010-4802	2012-03-27 18:42	2011-05-2	Show	GitHub Exploit DB Packet Storm

251475	6	警告	baconmap	-	BaconMap の admin/updatelist.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4801	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

251476	7.5	危険	baconmap	-	BaconMap の doadd.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4800	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

251477	6.8	警告	Chipmunk Scripts	-	Chipmunk Pwngame における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4799	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

251478	6.8	警告	OrangeHRM	-	OrangeHRM におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4798	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

251479	7.5	危険	truworthit	-	Truworth Flex Timesheet のログインフォームにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4797	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

251480	7.5	危険	phpyun	-	PHPYun における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4796	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
202511	8.8	HIGH Network	citrix	xendesktop xenapp virtual_apps_and_desktops	An unprivileged Windows user on the VDA can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hotfix CTX285344 …	CWE-269 Improper Privilege Management	CVE-2020-8269	2024-11-21 14:38	2020-11-16	Show	GitHub Exploit DB Packet Storm

202512	8.1	HIGH Network	nextcloud	nextcloud_server	Insufficient protection of the server-side encryption keys in Nextcloud Server 19.0.1 allowed an attacker to replace the encryption keys.	CWE-522 Insufficiently Protected Credentials	CVE-2020-8259	2024-11-21 14:38	2020-11-16	Show	GitHub Exploit DB Packet Storm

202513	4.4	MEDIUM Local	nextcloud	nextcloud_server	Insufficient protection of the server-side encryption keys in Nextcloud Server 19.0.1 allowed an attacker to replace the public key to decrypt them later on.	CWE-522 Insufficiently Protected Credentials	CVE-2020-8152	2024-11-21 14:38	2020-11-16	Show	GitHub Exploit DB Packet Storm

202514	5.3	MEDIUM Network	oneidentity	password_manager	An issue was discovered in One Identity Password Manager 5.8. An attacker could enumerate valid answers for a user. It is possible for an attacker to detect a valid answer based on the HTTP response …	CWE-203 Information Exposure Through Discrepancy	CVE-2020-7962	2024-11-21 14:38	2020-11-14	Show	GitHub Exploit DB Packet Storm

202515	6.7	MEDIUM Local	lenovo	notebook_firmware	A potential vulnerability in the SMI callback function used in the VariableServiceSmm driver in some Lenovo Notebook models may allow arbitrary code execution.	NVD-CWE-noinfo	CVE-2020-8354	2024-11-21 14:38	2020-11-12	Show	GitHub Exploit DB Packet Storm

202516	6.7	MEDIUM Local	lenovo	thinkcentre_m80t_firmware thinkcentre_m80s_firmware thinkcentre_m90t_firmware thinkcentre_m90s_firmware thinkcentre_m910z_firmware thinkcentre_m920s_firmware thinkcentre_m920t_firmw…	Prior to August 10, 2020, some Lenovo Desktop and Workstation systems were shipped with the Embedded Host Based Configuration (EHBC) feature of Intel AMT enabled. This could allow an administrative u…	NVD-CWE-noinfo	CVE-2020-8353	2024-11-21 14:38	2020-11-12	Show	GitHub Exploit DB Packet Storm

202517	2.4	LOW Physics	lenovo	thinkcentre_e73_firmware thinkcentre_m73_firmware qitian_4500_firmware qitian_b4550_firmware qitian_m4550_firmware thinkcentre_m4500k_firmware thinkcentre_m4500t_firmware thinkce…	In some Lenovo Desktop models, the Configuration Change Detection BIOS setting failed to detect SATA configuration changes.	NVD-CWE-noinfo	CVE-2020-8352	2024-11-21 14:38	2020-11-12	Show	GitHub Exploit DB Packet Storm

202518	7.5	HIGH Network	json8-merge-patch_project	json8-merge-patch	Prototype pollution vulnerability in json8-merge-patch npm package < 1.0.3 may allow attackers to inject or modify methods and properties of the global object constructor.	CWE-20 Improper Input Validation	CVE-2020-8268	2024-11-21 14:38	2020-11-10	Show	GitHub Exploit DB Packet Storm

202519	4.1	MEDIUM Local	nextcloud	nextcloud_server	A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker to downgrade the encryption scheme and break the integrity of encrypted files.	CWE-311 Missing Encryption of Sensitive Data	CVE-2020-8150	2024-11-21 14:38	2020-11-10	Show	GitHub Exploit DB Packet Storm

202520	5.3	MEDIUM Network	nextcloud	nextcloud_server	A wrong generation of the passphrase for the encrypted block in Nextcloud Server 19.0.1 allowed an attacker to overwrite blocks in a file.	CWE-347 Improper Verification of Cryptographic Signature	CVE-2020-8133	2024-11-21 14:38	2020-11-10	Show	GitHub Exploit DB Packet Storm