Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225881 6.8 警告 Ubercart - Drupal 用の Ubercart モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-4773 2012-12-20 19:28 2009-11-18 Show GitHub Exploit DB Packet Storm
225882 4.3 警告 Ubercart - Drupal 用の Ubercart モジュールにおける重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-4772 2012-12-20 19:28 2009-11-18 Show GitHub Exploit DB Packet Storm
225883 5 警告 Ubercart - Drupal 用の Ubercart モジュールにおける不特定の "複製操作" を誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4771 2012-12-20 19:28 2009-11-18 Show GitHub Exploit DB Packet Storm
225884 9 危険 Codeorigin - Sysax Multi Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4790 2012-12-20 19:28 2010-04-22 Show GitHub Exploit DB Packet Storm
225885 7.2 危険 tukeva - TUKEVA Password Reminder における資格情報を発見される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-4781 2012-12-20 19:28 2010-04-21 Show GitHub Exploit DB Packet Storm
225886 7.5 危険 robert garrigos - NukeHall における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4779 2012-12-20 19:28 2010-04-21 Show GitHub Exploit DB Packet Storm
225887 4.3 警告 Plohni - Plohni Shoutbox の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4767 2012-12-20 19:28 2010-04-20 Show GitHub Exploit DB Packet Storm
225888 5 警告 yasirpro - YP Portal MS-Pro Surumu におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4766 2012-12-20 19:28 2010-04-13 Show GitHub Exploit DB Packet Storm
225889 6.8 警告 phpmyvisites - phpMyVisites に使用されている ClickHeat プラグインにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-4763 2012-12-20 19:28 2010-03-30 Show GitHub Exploit DB Packet Storm
225890 5 警告 Winn GuestBook - Winn ASP Guestbook におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4760 2012-12-20 19:28 2010-03-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197861 7.8 HIGH
Local 		f5 nginx_controller In NGINX Controller 3.0.0-3.4.0, recovery code required to change a user's password is transmitted and stored in the database in plain text, which allows an attacker who can intercept the database co… CWE-312
CWE-319
CWE-522
 Cleartext Storage of Sensitive Information
Cleartext Transmission of Sensitive Information
 Insufficiently Protected Credentials 		CVE-2020-5899 2024-11-21 14:34 2020-07-2 Show GitHub Exploit DB Packet Storm
197862 4.3 MEDIUM
Network 		f5 big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_application_acceleration_manager
big-ip_application_security_manager
big-ip_domain_name_system
 In version 11.6.1-11.6.5.2 of the BIG-IP system Configuration utility Network > WCCP page, the system does not sanitize all user-provided data before display. CWE-79
Cross-site Scripting 		CVE-2020-5905 2024-11-21 14:34 2020-07-2 Show GitHub Exploit DB Packet Storm
197863 8.8 HIGH
Network 		f5 big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_application_acceleration_manager
big-ip_application_security_manager
big-ip_domain_name_system
 In BIG-IP versions 15.0.0-15.1.0.3, 14.1.0-14.1.2.5, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, a cross-site request forgery (CSRF) vulnerability in the Traffic Management User Interface (TMUI), also referred… CWE-352
 Origin Validation Error 		CVE-2020-5904 2024-11-21 14:34 2020-07-2 Show GitHub Exploit DB Packet Storm
197864 6.1 MEDIUM
Network 		f5 big-ip_local_traffic_manager
big-ip_advanced_firewall_manager
big-ip_application_acceleration_manager
big-ip_analytics
big-ip_access_policy_manager
big-ip_application_security_manager<… 		In BIG-IP versions 15.0.0-15.1.0.3, 14.1.0-14.1.2.5, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, a Cross-Site Scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility. CWE-79
Cross-site Scripting 		CVE-2020-5903 2024-11-21 14:34 2020-07-2 Show GitHub Exploit DB Packet Storm
197865 9.8 CRITICAL
Network 		f5 big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_advanced_web_application_firewall
big-ip_analytics
big-ip_application_acceleration_manager
big-ip_application_secur… 		In BIG-IP versions 15.0.0-15.1.0.3, 14.1.0-14.1.2.5, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, the Traffic Management User Interface (TMUI), also referred to as the Configuration utility… CWE-22
Path Traversal 		CVE-2020-5902 2024-11-21 14:34 2020-07-2 Show GitHub Exploit DB Packet Storm
197866 8.8 HIGH
Network 		f5 nginx_controller In versions 3.0.0-3.4.0, 2.0.0-2.9.0, and 1.0.1, there is insufficient cross-site request forgery (CSRF) protections for the NGINX Controller user interface. CWE-352
 Origin Validation Error 		CVE-2020-5900 2024-11-21 14:34 2020-07-1 Show GitHub Exploit DB Packet Storm
197867 4.4 MEDIUM
Local 		nvidia
canonical 		virtual_gpu
ubuntu_linux 		NVIDIA Virtual GPU Manager and the guest drivers contain a vulnerability in vGPU plugin, in which there is the potential to execute privileged operations, which may lead to denial of service. This af… NVD-CWE-noinfo
CVE-2020-5973 2024-11-21 14:34 2020-07-1 Show GitHub Exploit DB Packet Storm
197868 7.1 HIGH
Local 		nvidia virtual_gpu_manager NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, in which local pointer variables are not initialized and may be freed later, which may lead to tampering or denial of service. … CWE-763
 Release of Invalid Pointer or Reference 		CVE-2020-5972 2024-11-21 14:34 2020-07-1 Show GitHub Exploit DB Packet Storm
197869 7.8 HIGH
Local 		nvidia virtual_gpu_manager NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, in which the software reads from a buffer by using buffer access mechanisms such as indexes or pointers that reference memory l… CWE-125
Out-of-bounds Read 		CVE-2020-5971 2024-11-21 14:34 2020-07-1 Show GitHub Exploit DB Packet Storm
197870 7.1 HIGH
Local 		nvidia virtual_gpu_manager NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, in which an input data size is not validated, which may lead to tampering or denial of service. This affects vGPU version 8.x (… CWE-20
 Improper Input Validation  		CVE-2020-5970 2024-11-21 14:34 2020-07-1 Show GitHub Exploit DB Packet Storm