Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225761 6.8 警告 sql-ledger - SQL-Ledger の am.pl におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-3580 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
225762 10 危険 tatsuhiro tsujikawa - aria の DHTRoutingTableDeserializer.cc におけるバッファオーバーフローの脆弱性 CWE-noinfo
情報不足 		CVE-2009-3575 2012-12-20 19:28 2009-10-7 Show GitHub Exploit DB Packet Storm
225763 9.3 危険 tony million - Tuniac におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-3574 2012-12-20 19:28 2009-10-6 Show GitHub Exploit DB Packet Storm
225764 2.6 注意 xerver - Xerver HTTP Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3562 2012-12-20 19:28 2009-10-5 Show GitHub Exploit DB Packet Storm
225765 5 警告 xerver - Xerver HTTP Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3561 2012-12-20 19:28 2009-10-5 Show GitHub Exploit DB Packet Storm
225766 2.1 注意 レッドハット - Red Hat JBoss Enterprise Application Platform の Twiddle における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-3554 2012-12-20 19:28 2009-12-9 Show GitHub Exploit DB Packet Storm
225767 5 警告 Wireshark - Wireshark の SMB 解析子におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2009-3551 2012-12-20 19:28 2009-10-26 Show GitHub Exploit DB Packet Storm
225768 5 警告 Wireshark - Wireshark の Paltalk 解析子におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-3549 2012-12-20 19:28 2009-10-26 Show GitHub Exploit DB Packet Storm
225769 5 警告 xerver - Xerver HTTP Server における Web ページに対するソースコードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-3544 2012-12-20 19:28 2009-10-5 Show GitHub Exploit DB Packet Storm
225770 7.5 危険 phpgenealogy - PHPGenealogy の CoupleDB.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3541 2012-12-20 19:28 2009-10-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198361 7.5 HIGH
Network 		git
git-scm
debian
canonical
fedoraproject
opensuse 		git
debian_linux
ubuntu_linux
fedora
leap 		Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an attacker. Git uses external "credential helper" programs to store … CWE-522
 Insufficiently Protected Credentials 		CVE-2020-5260 2024-11-21 14:33 2020-04-15 Show GitHub Exploit DB Packet Storm
198362 3.7 LOW
Network 		tendermint tendermint Tendermint before versions 0.33.3, 0.32.10, and 0.31.12 has a denial-of-service vulnerability. Tendermint does not limit the number of P2P connection requests. For each p2p connection, it allocates X… CWE-787
 Out-of-bounds Write 		CVE-2020-5303 2024-11-21 14:33 2020-04-11 Show GitHub Exploit DB Packet Storm
198363 6.5 MEDIUM
Network 		mh-wikibot_project mh-wikibot MH-WikiBot (an IRC Bot for interacting with the Miraheze API), had a bug that allowed any unprivileged user to access the steward commands on the IRC interface by impersonating the Nickname used by a… CWE-269
 Improper Privilege Management 		CVE-2020-5302 2024-11-21 14:33 2020-04-8 Show GitHub Exploit DB Packet Storm
198364 5.3 MEDIUM
Network 		ory hydra In Hydra (an OAuth2 Server and OpenID Certified™ OpenID Connect Provider written in Go), before version 1.4.0+oryOS.17, when using client authentication method 'private_key_jwt' [1], OpenId specifica… CWE-294
Authentication Bypass by Capture-replay  		CVE-2020-5300 2024-11-21 14:33 2020-04-7 Show GitHub Exploit DB Packet Storm
198365 7.8 HIGH
Local 		dell latitude_7202_firmware Dell Latitude 7202 Rugged Tablet BIOS versions prior to A28 contain a UAF vulnerability in EFI_BOOT_SERVICES in system management mode. A local unauthenticated attacker may exploit this vulnerability… CWE-416
 Use After Free 		CVE-2020-5348 2024-11-21 14:33 2020-04-4 Show GitHub Exploit DB Packet Storm
198366 7.5 HIGH
Network 		dell emc_isilon_onefs Dell EMC Isilon OneFS versions 8.2.2 and earlier contain a denial of service vulnerability. SmartConnect had an error condition that may be triggered to loop, using CPU and potentially preventing oth… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-5347 2024-11-21 14:33 2020-04-4 Show GitHub Exploit DB Packet Storm
198367 3.5 LOW
Network 		viewvc viewvc ViewVC before versions 1.1.28 and 1.2.1 has a XSS vulnerability in CVS show_subdir_lastmod support. The impact of this vulnerability is mitigated by the need for an attacker to have commit privileges… CWE-79
Cross-site Scripting 		CVE-2020-5283 2024-11-21 14:33 2020-04-3 Show GitHub Exploit DB Packet Storm
198368 6.5 MEDIUM
Network 		ctfd rctf In RedpwnCTF before version 2.3, there is a session fixation vulnerability in exploitable through the `#token=$ssid` hash when making a request to the `/verify` endpoint. An attacker team could poten… CWE-384
 Session Fixation 		CVE-2020-5290 2024-11-21 14:33 2020-04-2 Show GitHub Exploit DB Packet Storm
198369 9.8 CRITICAL
Network 		dell idrac7_firmware
idrac8_firmware
idrac9_firmware 		Dell EMC iDRAC7, iDRAC8 and iDRAC9 versions prior to 2.65.65.65, 2.70.70.70, 4.00.00.00 contain a stack-based buffer overflow vulnerability. An unauthenticated remote attacker may exploit this vulner… CWE-787
 Out-of-bounds Write 		CVE-2020-5344 2024-11-21 14:33 2020-04-1 Show GitHub Exploit DB Packet Storm
198370 8.8 HIGH
Network 		leantime leantime Leantime before versions 2.0.15 and 2.1-beta3 has a SQL Injection vulnerability. The impact is high. Malicious users/attackers can execute arbitrary SQL queries negatively affecting the confidentiali… CWE-89
SQL Injection 		CVE-2020-5292 2024-11-21 14:33 2020-04-1 Show GitHub Exploit DB Packet Storm