Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258691 6.8 警告 VMware - 複数の VMware 製品における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1361 2010-09-13 15:55 2008-03-17 Show GitHub Exploit DB Packet Storm
258692 7.1 危険 VMware - 複数の VMware 製品の Virtual Machine Communication Interface (VMCI) におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-1340 2010-09-13 15:55 2008-03-17 Show GitHub Exploit DB Packet Storm
258693 6.9 警告 VMware - 複数の VMware 製品におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0923 2010-09-13 15:54 2008-02-26 Show GitHub Exploit DB Packet Storm
258694 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPI.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2882 2010-09-13 15:46 2010-08-24 Show GitHub Exploit DB Packet Storm
258695 9.3 危険 アドビシステムズ - Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2881 2010-09-13 15:46 2010-08-24 Show GitHub Exploit DB Packet Storm
258696 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPI.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2880 2010-09-13 15:45 2010-08-24 Show GitHub Exploit DB Packet Storm
258697 9.3 危険 アドビシステムズ - Adobe Shockwave Player の TextXtra.x32 モジュールにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2879 2010-09-13 15:45 2010-08-24 Show GitHub Exploit DB Packet Storm
258698 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPIX.dll における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2878 2010-09-13 15:45 2010-08-24 Show GitHub Exploit DB Packet Storm
258699 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2877 2010-09-13 15:45 2010-08-24 Show GitHub Exploit DB Packet Storm
258700 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2876 2010-09-13 15:44 2010-08-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214311 8.8 HIGH
Network 		eyoucms eyoucms Cross Site Request Forgery (CSRF) vulnerability exists in EyouCMS 1.3.6 that can add an htm page to execute the js code via login.php?m=admin&c=Filemanager&a=newfile&lang=cn. CWE-352
 Origin Validation Error 		CVE-2020-20642 2024-11-21 14:12 2021-08-20 Show GitHub Exploit DB Packet Storm
214312 6.5 MEDIUM
Network 		axiosys bento4 An issue was discovered in Bento4 v1.5.1.0. There is a heap-buffer-overflow in AP4_Dec3Atom::AP4_Dec3Atom at Ap4Dec3Atom.cpp, leading to a denial of service (program crash), as demonstrated by mp42aa… CWE-787
 Out-of-bounds Write 		CVE-2020-21066 2024-11-21 14:12 2021-08-14 Show GitHub Exploit DB Packet Storm
214313 5.4 MEDIUM
Network 		domainmod domainmod A cross site scripting (XSS) vulnerability in the /segments/edit.php component of Domainmod 4.13 allows attackers to execute arbitrary web scripts or HTML via the Segment Name parameter. CWE-79
Cross-site Scripting 		CVE-2020-20990 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
214314 4.3 MEDIUM
Network 		domainmod domainmod A cross-site request forgery (CSRF) in /admin/maintenance/ of Domainmod 4.13 allows attackers to arbitrarily delete logs. CWE-352
 Origin Validation Error 		CVE-2020-20989 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
214315 5.4 MEDIUM
Network 		domainmod domainmod A cross site scripting (XSS) vulnerability in the /domains/cost-by-owner.php component of Domainmod 4.13 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the "or Exp… CWE-79
Cross-site Scripting 		CVE-2020-20988 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
214316 7.5 HIGH
Network 		metinfo metinfo A SQL injection in the /admin/?n=logs&c=index&a=dolist component of Metinfo 7.0 allows attackers to access sensitive database information. CWE-89
SQL Injection 		CVE-2020-20981 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
214317 9.8 CRITICAL
Network 		8cms ljcms An arbitrary file upload vulnerability in the move_uploaded_file() function of LJCMS v4.3 allows attackers to execute arbitrary code. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-20979 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
214318 5.4 MEDIUM
Network 		ukcms ukcms A stored cross site scripting (XSS) vulnerability in index.php/legend/6.html of UK CMS v1.1.10 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the Comments section. CWE-79
Cross-site Scripting 		CVE-2020-20977 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
214319 9.8 CRITICAL
Network 		gxlcms gxlcms In \lib\admin\action\dataaction.class.php in Gxlcms v1.1, SQL Injection exists via the $filename parameter. CWE-89
SQL Injection 		CVE-2020-20975 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
214320 6.5 MEDIUM
Network 		maccms maccms An arbitrary file deletion vulnerability exists within Maccms10. CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2020-21363 2024-11-21 14:12 2021-08-12 Show GitHub Exploit DB Packet Storm