Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226081 7.5 危険 XOOPS - XOOPS における脆弱性 CWE-noinfo
情報不足 		CVE-2009-3963 2012-12-20 19:28 2009-10-26 Show GitHub Exploit DB Packet Storm
226082 7.5 危険 vivaprograms - VivaPrograms Infinity の cp/profile.php における管理アカウントを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3949 2012-12-20 19:28 2009-11-16 Show GitHub Exploit DB Packet Storm
226083 9.3 危険 tandberg - Tandberg MXP の FTP サービスにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3947 2012-12-20 19:28 2009-11-16 Show GitHub Exploit DB Packet Storm
226084 2.1 注意 サン・マイクロシステムズ - Sun xVM VirtualBox および Sun VirtualBox の Guest Additions におけるゲスト OS 上でサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-3940 2012-12-20 19:28 2009-11-13 Show GitHub Exploit DB Packet Storm
226085 6.8 警告 freedesktop.org - Abiword pdftoabw utility で使用される Poppler におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3938 2012-12-20 19:28 2009-11-13 Show GitHub Exploit DB Packet Storm
226086 4.9 警告 サン・マイクロシステムズ - Sun OpenSolaris の Solaris TCP ソケットにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3937 2012-12-20 19:28 2009-11-13 Show GitHub Exploit DB Packet Storm
226087 5 警告 Webkit - Google Chrome で使用されている WebKit におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3933 2012-12-20 19:28 2009-10-27 Show GitHub Exploit DB Packet Storm
226088 9.3 危険 raven software
punkbuster		 - Soldier of Fortune II で使用される pbsv.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3924 2012-12-20 19:28 2009-11-9 Show GitHub Exploit DB Packet Storm
226089 7.5 危険 サン・マイクロシステムズ - Sun VDI の VirtualBox Web サービスにおける不特定のアクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2009-3923 2012-12-20 19:28 2009-11-3 Show GitHub Exploit DB Packet Storm
226090 5 警告 Sean Robertson - Drupal 用の crmngp モジュールの管理ページにおけるログ情報を読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3920 2012-12-20 19:28 2009-11-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211291 4.3 MEDIUM
Network 		dnnsoftware dotnetnuke There is an information disclosure issue in DNN (formerly DotNetNuke) 9.5 within the built-in Activity-Feed/Messaging/Userid/ Message Center module. A registered user is able to enumerate any file in… CWE-330
CWE-639
 Use of Insufficiently Random Values
 Authorization Bypass Through User-Controlled Key 		CVE-2020-11585 2024-11-21 13:58 2020-04-7 Show GitHub Exploit DB Packet Storm
211292 8.8 HIGH
Adjacent 		pulsesecure pulse_connect_secure
pulse_policy_secure 		An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet in tncc.jar, executed on macOS, Linux, and Solaris clients when a Host Checker policy is enforced, la… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2020-11582 2024-11-21 13:58 2020-04-7 Show GitHub Exploit DB Packet Storm
211293 8.1 HIGH
Network 		pulsesecure pulse_connect_secure
pulse_policy_secure 		An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet in tncc.jar, executed on macOS, Linux, and Solaris clients when a Host Checker policy is enforced, al… CWE-78
OS Command  		CVE-2020-11581 2024-11-21 13:58 2020-04-7 Show GitHub Exploit DB Packet Storm
211294 9.1 CRITICAL
Network 		pulsesecure pulse_connect_secure
pulse_policy_secure 		An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet in tncc.jar, executed on macOS, Linux, and Solaris clients when a Host Checker policy is enforced, ac… CWE-295
Improper Certificate Validation  		CVE-2020-11580 2024-11-21 13:58 2020-04-7 Show GitHub Exploit DB Packet Storm
211295 9.8 CRITICAL
Network 		projectworlds official_car_rental_system Project Worlds Official Car Rental System 1 is vulnerable to multiple SQL injection issues, as demonstrated by the email and parameters (account.php), uname and pass parameters (login.php), and id pa… CWE-89
SQL Injection 		CVE-2020-11545 2024-11-21 13:58 2020-04-7 Show GitHub Exploit DB Packet Storm
211296 7.2 HIGH
Network 		projectworlds official_car_rental_system An issue was discovered in Project Worlds Official Car Rental System 1. It allows the admin user to run commands on the server with their account because the upload section on the file-manager page c… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-11544 2024-11-21 13:58 2020-04-7 Show GitHub Exploit DB Packet Storm
211297 7.8 HIGH
Local 		malwarebytes adwcleaner An Untrusted Search Path vulnerability in Malwarebytes AdwCleaner 8.0.3 could cause arbitrary code execution with SYSTEM privileges when a malicious DLL library is loaded. CWE-426
 Untrusted Search Path 		CVE-2020-11507 2024-11-21 13:58 2020-04-7 Show GitHub Exploit DB Packet Storm
211298 6.0 MEDIUM
Local 		linux
canonical 		linux_kernel
ubuntu_linux 		An issue was discovered in the Linux kernel through 5.6.2. mpol_parse_str in mm/mempolicy.c has a stack-based out-of-bounds write because an empty nodelist is mishandled during mount option parsing, … CWE-787
 Out-of-bounds Write 		CVE-2020-11565 2024-11-21 13:58 2020-04-6 Show GitHub Exploit DB Packet Storm
211299 9.8 CRITICAL
Network 		gpac gpac An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box. audio_sample_entry_Read in isomedia/box_code_base.c does not properly decide when to make gf_isom_box_del calls. This le… CWE-416
 Use After Free 		CVE-2020-11558 2024-11-21 13:58 2020-04-6 Show GitHub Exploit DB Packet Storm
211300 9.8 CRITICAL
Network 		search_meter_project search_meter The Search Meter plugin through 2.13.2 for WordPress allows user input introduced in the search bar to be any formula. The attacker could achieve remote code execution via CSV injection if a wp-admin… CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2020-11548 2024-11-21 13:58 2020-04-5 Show GitHub Exploit DB Packet Storm