Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225941 5 警告 The Tor Project - Tor におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-0936 2012-12-20 19:10 2009-03-17 Show GitHub Exploit DB Packet Storm
225942 4.3 警告 ProcessOne - ejabberd におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0934 2012-12-20 19:10 2009-03-17 Show GitHub Exploit DB Packet Storm
225943 7.5 危険 roman bogorodskiy - nForum における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0882 2012-12-20 19:10 2009-03-12 Show GitHub Exploit DB Packet Storm
225944 5 警告 wesnoth - Wesnoth の src/terrain_translation.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0878 2012-12-20 19:10 2009-03-12 Show GitHub Exploit DB Packet Storm
225945 4.3 警告 tangocms - TangoCMS の admincp コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0862 2012-12-20 19:10 2009-02-18 Show GitHub Exploit DB Packet Storm
225946 6.8 警告 stewart howe - CelerBB の login.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-0853 2012-12-20 19:10 2009-03-9 Show GitHub Exploit DB Packet Storm
225947 5 警告 stewart howe - CelerBB の showme.php における "予約情報" を取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-0852 2012-12-20 19:10 2009-03-9 Show GitHub Exploit DB Packet Storm
225948 6.8 警告 stewart howe - CelerBB における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0851 2012-12-20 19:10 2009-03-9 Show GitHub Exploit DB Packet Storm
225949 7.8 危険 UMN - MapServer の mapser における任意のファイルの存在を特定される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0843 2012-12-20 19:10 2009-03-31 Show GitHub Exploit DB Packet Storm
225950 4.3 警告 UMN - MapServer の mapserv における任意の無効な .map ファイルを読み取られる脆弱性 CWE-200
情報漏えい 		CVE-2009-0842 2012-12-20 19:10 2009-03-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198391 5.3 MEDIUM
Network 		ibm content_navigator IBM Content Navigator 3.0CD could disclose sensitive information to an unauthenticated user which could be used to aid in further attacks against the system. IBM X-Force ID: 177080. CWE-200
Information Exposure 		CVE-2020-4309 2024-11-21 14:32 2020-03-25 Show GitHub Exploit DB Packet Storm
198392 8.8 HIGH
Network 		ibm content_navigator IBM Content Navigator 3.0CD does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 175559. CWE-613
 Insufficient Session Expiration 		CVE-2020-4253 2024-11-21 14:32 2020-03-25 Show GitHub Exploit DB Packet Storm
198393 6.3 MEDIUM
Network 		ibm datapower_gateway IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.8 could allow an authenticated user to bypass security restrictions, and continue to access the server even after authentication certificates have be… CWE-287
Improper Authentication 		CVE-2020-4205 2024-11-21 14:32 2020-03-19 Show GitHub Exploit DB Packet Storm
198394 4.9 MEDIUM
Network 		ibm datapower_gateway IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.8 could potentially disclose highly sensitive information to a privileged user due to improper access controls. IBM X-Force ID: 174956. NVD-CWE-noinfo
CVE-2020-4203 2024-11-21 14:32 2020-03-19 Show GitHub Exploit DB Packet Storm
198395 4.3 MEDIUM
Network 		ibm tivoli_netcool\/omnibus IBM Tivoli Netcool/OMNIbus 8.1.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trust… CWE-352
 Origin Validation Error 		CVE-2020-4199 2024-11-21 14:32 2020-03-18 Show GitHub Exploit DB Packet Storm
198396 3.8 LOW
Local 		vmware horizon_client
workstation 		VMware Workstation (15.x before 15.5.2) and Horizon Client for Windows (5.x and prior before 5.4.0) contain a denial-of-service vulnerability due to a heap-overflow issue in Cortado Thinprint. Attack… CWE-787
 Out-of-bounds Write 		CVE-2020-3951 2024-11-21 14:32 2020-03-18 Show GitHub Exploit DB Packet Storm
198397 7.8 HIGH
Local 		vmware fusion
horizon_client
remote_console 		VMware Fusion (11.x before 11.5.2), VMware Remote Console for Mac (11.x and prior before 11.0.1) and Horizon Client for Mac (5.x and prior before 5.4.0) contain a privilege escalation vulnerability d… CWE-269
 Improper Privilege Management 		CVE-2020-3950 2024-11-21 14:32 2020-03-18 Show GitHub Exploit DB Packet Storm
198398 7.8 HIGH
Local 		vmware workstation
fusion 		Linux Guest VMs running on VMware Workstation (15.x before 15.5.2) and Fusion (11.x before 11.5.2) contain a local privilege escalation vulnerability due to improper file permissions in Cortado Thinp… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-3948 2024-11-21 14:32 2020-03-17 Show GitHub Exploit DB Packet Storm
198399 8.8 HIGH
Local 		vmware workstation
fusion 		VMware Workstation (15.x before 15.5.2) and Fusion (11.x before 11.5.2) contain a use-after vulnerability in vmnetdhcp. Successful exploitation of this issue may lead to code execution on the host fr… CWE-416
 Use After Free 		CVE-2020-3947 2024-11-21 14:32 2020-03-17 Show GitHub Exploit DB Packet Storm
198400 5.4 MEDIUM
Network 		ibm infosphere_information_server IBM InfoSphere Information Server 11.5 and 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended func… CWE-79
Cross-site Scripting 		CVE-2020-4162 2024-11-21 14:32 2020-03-10 Show GitHub Exploit DB Packet Storm