Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226031 4.3 警告 phpgroupware - phpGroupWare の login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4416 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
226032 7.5 危険 phpgroupware - phpGroupWare におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4415 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
226033 6.8 警告 phpgroupware - phpGroupWare の phpgwapi /inc/class.auth_sql.inc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4414 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
226034 5 警告 pps.jussieu - Polipo の client.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2009-4413 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
226035 6 警告 s9y - Serendipity における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2009-4412 2012-12-20 19:28 2009-12-21 Show GitHub Exploit DB Packet Storm
226036 3.7 注意 xfs - XFS acl の setfacl および getfacl コマンドにおける任意のファイルなど対する ACL を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4411 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
226037 4.3 警告 pyforum - PyForum および zForum の models.parser におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4408 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
226038 6.8 警告 pyforum - PyForum などにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-4407 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
226039 4.3 警告 rumbacms - Rumba XML の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4403 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
226040 7.5 危険 sql-ledger - SQL-Ledger の初期設定における管理操作を実行される脆弱性 CWE-16
環境設定 		CVE-2009-4402 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200021 6.5 MEDIUM
Network 		cisco jabber A vulnerability in Cisco Jabber software could allow an authenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper validation of message contents. An… CWE-20
 Improper Input Validation  		CVE-2020-3498 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
200022 6.8 MEDIUM
Adjacent 		cisco rv340w_firmware
rv340_firmware
rv345_firmware
rv345p_firmware 		Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute ar… CWE-20
 Improper Input Validation  		CVE-2020-3453 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
200023 4.7 MEDIUM
Network 		cisco rv340w_firmware
rv340_firmware
rv345_firmware
rv345p_firmware 		Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute ar… CWE-20
 Improper Input Validation  		CVE-2020-3451 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
200024 6.5 MEDIUM
Network 		cisco asyncos A vulnerability in the web-based management interface of Cisco AsyncOS software for Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), and Cisco Web Security App… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-3547 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
200025 5.3 MEDIUM
Network 		cisco asyncos A vulnerability in the web-based management interface of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to access sensitive informatio… CWE-20
 Improper Input Validation  		CVE-2020-3546 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
200026 6.7 MEDIUM
Local 		cisco firepower_extensible_operating_system A vulnerability in Cisco FXOS Software could allow an authenticated, local attacker with administrative credentials to cause a buffer overflow condition. The vulnerability is due to incorrect bounds … CWE-787
 Out-of-bounds Write 		CVE-2020-3545 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
200027 5.3 MEDIUM
Network 		cisco webex_training A vulnerability in Cisco Webex Training could allow an authenticated, remote attacker to join a password-protected meeting without providing the meeting password. The vulnerability is due to improper… CWE-20
 Improper Input Validation  		CVE-2020-3542 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
200028 4.4 MEDIUM
Local 		cisco webex_meetings
webex_teams 		A vulnerability in the media engine component of Cisco Webex Meetings Client for Windows, Cisco Webex Meetings Desktop App for Windows, and Cisco Webex Teams for Windows could allow an authenticated,… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-3541 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
200029 5.7 MEDIUM
Network 		cisco jabber A vulnerability in Cisco Jabber for Windows software could allow an authenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper validation of message … CWE-200
Information Exposure 		CVE-2020-3537 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
200030 8.4 HIGH
Local 		cisco ios_xr A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local attacker to execute that command, even though administrative privilege… CWE-863
 Incorrect Authorization 		CVE-2020-3530 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm