Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225971 7.5 危険 templateplaza - Joomla! 用の tpdugg コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4628 2012-12-20 19:28 2010-01-18 Show GitHub Exploit DB Packet Storm
225972 7.5 危険 phpnagios - phpNagios の menu.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4626 2012-12-20 19:28 2010-01-18 Show GitHub Exploit DB Packet Storm
225973 7.5 危険 Tamlyn Creative Pty - Joomla! 用の bfsurvey コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4625 2012-12-20 19:28 2010-01-18 Show GitHub Exploit DB Packet Storm
225974 7.5 危険 Plohni - Advanced Comment System における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4623 2012-12-20 19:28 2010-01-18 Show GitHub Exploit DB Packet Storm
225975 7.5 危険 tourismscripts - Tourism Script Bus Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4618 2012-12-20 19:28 2010-01-18 Show GitHub Exploit DB Packet Storm
225976 7.5 危険 tourismscripts - Tourism Script Accommodation Hotel Booking Portal Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4617 2012-12-20 19:28 2010-01-18 Show GitHub Exploit DB Packet Storm
225977 7.2 危険 south river technologies - South River Technologies WebDrive におけるサービスを停止される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4606 2012-12-20 19:28 2010-01-13 Show GitHub Exploit DB Packet Storm
225978 5 警告 The phpMyAdmin Project - phpMyAdmin の scripts/setup.php におけるクロスサイトリクエストフォージェリ (CSRF) 攻撃を実行される脆弱性 CWE-DesignError
CVE-2009-4605 2012-12-20 19:28 2010-01-15 Show GitHub Exploit DB Packet Storm
225979 5 警告 SAP - SAP Kernel の sapstartsrv.exe におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4603 2012-12-20 19:28 2010-01-12 Show GitHub Exploit DB Packet Storm
225980 4.3 警告 zeeways - Zeeways ZeeJobsite の basic_search_result.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4601 2012-12-20 19:28 2010-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212361 7.8 HIGH
Local 		siemens license_management_utility A vulnerability has been identified in License Management Utility (LMU) (All versions < V2.4). The lmgrd service of the affected application is executed with local SYSTEM privileges on the server whi… - CVE-2020-10056 2024-11-21 13:54 2020-09-10 Show GitHub Exploit DB Packet Storm
212362 7.8 HIGH
Local 		siemens simatic_rtls_locating_manager A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). Multiple services of the affected application are executed with SYSTEM privileges while the call path is… CWE-428
 Unquoted Search Path or Element 		CVE-2020-10051 2024-11-21 13:54 2020-09-10 Show GitHub Exploit DB Packet Storm
212363 7.8 HIGH
Local 		siemens simatic_rtls_locating_manager A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). The directory of service executables of the affected application could allow a local attacker to include… CWE-276
Incorrect Default Permissions  		CVE-2020-10050 2024-11-21 13:54 2020-09-10 Show GitHub Exploit DB Packet Storm
212364 7.3 HIGH
Local 		siemens simatic_rtls_locating_manager A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). The start-stop scripts for the services of the affected application could allow a local attacker to incl… CWE-276
Incorrect Default Permissions  		CVE-2020-10049 2024-11-21 13:54 2020-09-10 Show GitHub Exploit DB Packet Storm
212365 7.6 HIGH
Physics 		ncr aptra_xfs NCR SelfServ ATMs running APTRA XFS 05.01.00 do not properly validate softare updates for the bunch note acceptor (BNA), enabling an attacker with physical access to internal ATM components to restar… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-10126 2024-11-21 13:54 2020-08-22 Show GitHub Exploit DB Packet Storm
212366 7.6 HIGH
Physics 		ncr aptra_xfs NCR SelfServ ATMs running APTRA XFS 04.02.01 and 05.01.00 implement 512-bit RSA certificates to validate bunch note acceptor (BNA) software updates, which can be broken by an attacker with physical a… CWE-326
Inadequate Encryption Strength 		CVE-2020-10125 2024-11-21 13:54 2020-08-22 Show GitHub Exploit DB Packet Storm
212367 7.1 HIGH
Physics 		ncr aptra_xfs NCR SelfServ ATMs running APTRA XFS 05.01.00 do not encrypt, authenticate, or verify the integrity of messages between the BNA and the host computer, which could allow an attacker with physical acces… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-10124 2024-11-21 13:54 2020-08-22 Show GitHub Exploit DB Packet Storm
212368 5.3 MEDIUM
Physics 		ncr aptra_xfs The currency dispenser of NCR SelfSev ATMs running APTRA XFS 05.01.00 or earlier does not adequately authenticate session key generation requests from the host computer, allowing an attacker with phy… CWE-287
Improper Authentication 		CVE-2020-10123 2024-11-21 13:54 2020-08-22 Show GitHub Exploit DB Packet Storm
212369 9.8 CRITICAL
Network 		siemens desigo_consumption_control_compact
desigo_consumption_control 		A vulnerability has been identified in Desigo CC (V4.x), Desigo CC (V3.x), Desigo CC Compact (V4.x), Desigo CC Compact (V3.x). Affected applications are delivered with a 3rd party component (BIRT) th… CWE-94
Code Injection 		CVE-2020-10055 2024-11-21 13:54 2020-08-15 Show GitHub Exploit DB Packet Storm
212370 8.8 HIGH
Network 		siemens sicam_mmu_firmware
sicam_sgu_firmware
sicam_t_firmware 		A vulnerability has been identified in SICAM MMU (All versions < V2.05), SICAM SGU (All versions), SICAM T (All versions < V2.18). An error in the challenge-response procedure could allow an attacker… CWE-294
Authentication Bypass by Capture-replay  		CVE-2020-10045 2024-11-21 13:54 2020-07-14 Show GitHub Exploit DB Packet Storm