Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225961 7.5 危険 ZNC - ZNC におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2658 2012-12-20 19:10 2009-08-4 Show GitHub Exploit DB Packet Storm
225962 9.3 危険 sorcerersoftware - Sorcerer Software MultiMedia Jukebox におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-2650 2012-12-20 19:10 2009-07-30 Show GitHub Exploit DB Packet Storm
225963 6.8 警告 rich white - School Data Navigator の app_and_readme/navigator/index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2641 2012-12-20 19:10 2009-07-28 Show GitHub Exploit DB Packet Storm
225964 7.5 危険 prosmdr - ProSMDR の login.aspx における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2612 2012-12-20 19:10 2009-07-27 Show GitHub Exploit DB Packet Storm
225965 3.5 注意 scott courtney - Drupal 用の Links Package モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2610 2012-12-20 19:10 2009-06-25 Show GitHub Exploit DB Packet Storm
225966 7.5 危険 pinme - Joomla! 用の com_pinboard コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2607 2012-12-20 19:10 2009-07-27 Show GitHub Exploit DB Packet Storm
225967 6.8 警告 traidnt - Traidnt Up の adminquery.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2605 2012-12-20 19:10 2009-07-27 Show GitHub Exploit DB Packet Storm
225968 7.5 危険 zenhelpdesk - Zen Help Desk の adminlogin.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2604 2012-12-20 19:10 2009-07-27 Show GitHub Exploit DB Packet Storm
225969 5 警告 r2newsletter - R2 Newsletter におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2602 2012-12-20 19:10 2009-07-27 Show GitHub Exploit DB Packet Storm
225970 7.5 危険 radscripts - RadCLASSIFIEDS Gold の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2599 2012-12-20 19:10 2009-07-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199381 8.1 HIGH
Network 		dces_project dces An issue was discovered in the dces crate through 2020-12-09 for Rust. The World type is marked as Send but lacks bounds on its EntityStore and ComponentStore. CWE-77
Command Injection 		CVE-2020-36459 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
199382 8.1 HIGH
Network 		lexer_project lexer An issue was discovered in the lexer crate through 2020-11-10 for Rust. For ReaderResult<T, E>, there is an implementation of Sync with a trait bound of T: Send, E: Send. CWE-362
Race Condition 		CVE-2020-36458 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
199383 8.1 HIGH
Network 		lever_project lever An issue was discovered in the lever crate before 0.1.1 for Rust. AtomicBox<T> implements the Send and Sync traits for all types T. CWE-77
Command Injection 		CVE-2020-36457 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
199384 8.1 HIGH
Network 		toolshed_project toolshed An issue was discovered in the toolshed crate through 2020-11-15 for Rust. In CopyCell<T>, the Send trait lacks bounds on the contained type. CWE-77
Command Injection 		CVE-2020-36456 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
199385 8.1 HIGH
Network 		brokenlamp slock An issue was discovered in the slock crate through 2020-11-17 for Rust. Slock<T> unconditionally implements Send and Sync. CWE-77
Command Injection 		CVE-2020-36455 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
199386 8.1 HIGH
Network 		parc_project parc An issue was discovered in the parc crate through 2020-11-14 for Rust. LockWeak<T> has an unconditional implementation of Send without trait bounds on T. CWE-362
Race Condition 		CVE-2020-36454 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
199387 8.1 HIGH
Network 		scottqueue_project scottqueue An issue was discovered in the scottqueue crate through 2020-11-15 for Rust. There are unconditional implementations of Send and Sync for Queue<T>. NVD-CWE-noinfo
CVE-2020-36453 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
199388 9.8 CRITICAL
Network 		array-tools_project array-tools An issue was discovered in the array-tools crate before 0.3.2 for Rust. FixedCapacityDequeLike::clone() has a drop of uninitialized memory. CWE-908
 Use of Uninitialized Resource 		CVE-2020-36452 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
199389 8.1 HIGH
Network 		rcu_cell_project rcu_cell An issue was discovered in the rcu_cell crate through 2020-11-14 for Rust. There are unconditional implementations of Send and Sync for RcuCell<T>. CWE-77
Command Injection 		CVE-2020-36451 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
199390 8.1 HIGH
Network 		bunch_project bunch An issue was discovered in the bunch crate through 2020-11-12 for Rust. There are unconditional implementations of Send and Sync for Bunch<T>. CWE-77
Command Injection 		CVE-2020-36450 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm