Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226091 4.3 警告 Virtue Netz - Virtue News Manager の news_detail.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2020 2012-12-20 19:10 2009-06-9 Show GitHub Exploit DB Packet Storm
226092 7.5 危険 Virtue Netz - Virtue News Manager の news_detail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2019 2012-12-20 19:10 2009-06-9 Show GitHub Exploit DB Packet Storm
226093 7.5 危険 Virtue Netz - Virtue Book Store の products.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2017 2012-12-20 19:10 2009-06-9 Show GitHub Exploit DB Packet Storm
226094 7.5 危険 Virtue Netz - Virtue Shopping Mall の products.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2016 2012-12-20 19:10 2009-06-9 Show GitHub Exploit DB Packet Storm
226095 1.9 注意 サン・マイクロシステムズ - Sun OpenSolaris の idmap におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-2012 2012-12-20 19:10 2009-06-4 Show GitHub Exploit DB Packet Storm
226096 4.4 警告 Debian
Xfig project		 - Xfig における任意のファイルを読み取られる脆弱性 CWE-59
リンク解釈の問題 		CVE-2009-1962 2012-12-20 19:10 2009-06-7 Show GitHub Exploit DB Packet Storm
226097 5 警告 strongSwan - strongSWAN の charon デーモンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1958 2012-12-20 19:10 2009-06-7 Show GitHub Exploit DB Packet Storm
226098 5 警告 strongSwan - strongSWAN の charon デーモンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1957 2012-12-20 19:10 2009-06-7 Show GitHub Exploit DB Packet Storm
226099 6.8 警告 propertymaxpro - PropertyMax Pro FREE の管理ログイン機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1952 2012-12-20 19:10 2009-06-5 Show GitHub Exploit DB Packet Storm
226100 4.3 警告 propertymaxpro - PropertyMax Pro FREE の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1951 2012-12-20 19:10 2009-06-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197841 7.5 HIGH
Network 		sonicwall sma1000_firmware A vulnerability in the SonicWall SMA1000 HTTP Extraweb server allows an unauthenticated remote attacker to cause HTTP server crash which leads to Denial of Service. This vulnerability affected SMA100… CWE-444
HTTP Request Smuggling 		CVE-2020-5129 2024-11-21 14:33 2020-03-26 Show GitHub Exploit DB Packet Storm
197842 4.8 MEDIUM
Network 		emc rsa_authentication_manager RSA Authentication Manager versions prior to 8.4 P10 contain a stored cross-site scripting vulnerability in the Security Console. A malicious RSA Authentication Manager Security Console administrator… CWE-79
Cross-site Scripting 		CVE-2020-5340 2024-11-21 14:33 2020-03-26 Show GitHub Exploit DB Packet Storm
197843 4.8 MEDIUM
Network 		emc rsa_authentication_manager RSA Authentication Manager versions prior to 8.4 P10 contain a stored cross-site scripting vulnerability in the Security Console. A malicious RSA Authentication Manager Security Console administrator… CWE-79
Cross-site Scripting 		CVE-2020-5339 2024-11-21 14:33 2020-03-26 Show GitHub Exploit DB Packet Storm
197844 9.8 CRITICAL
Network 		nick_chan_bot_project nick_chan_bot In Nick Chan Bot before version 1.0.0-beta there is a vulnerability in the `npm` command which is part of this software package. This allows arbitrary shell execution,which can compromise the bot Thi… CWE-78
OS Command  		CVE-2020-5282 2024-11-21 14:33 2020-03-26 Show GitHub Exploit DB Packet Storm
197845 5.4 MEDIUM
Network 		prestashop faceted_search_module PrestaShop module ps_facetedsearch versions before 3.5.0 has a reflected XSS with `url_name` parameter. The problem is fixed in 3.5.0 CWE-79
Cross-site Scripting 		CVE-2020-5277 2024-11-21 14:33 2020-03-26 Show GitHub Exploit DB Packet Storm
197846 7.5 HIGH
Network 		cesnet perun In Perun before version 3.9.1, VO or group manager can modify configuration of the LDAP extSource to retrieve all from Perun LDAP. Issue is fixed in version 3.9.1 by sanitisation of the input. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-5281 2024-11-21 14:33 2020-03-26 Show GitHub Exploit DB Packet Storm
197847 7.5 HIGH
Network 		typelevel http4s http4s before versions 0.18.26, 0.20.20, and 0.21.2 has a local file inclusion vulnerability. This vulnerability applies to all users of org.http4s.server.staticcontent.FileService, org.http4s.server… CWE-22
Path Traversal 		CVE-2020-5280 2024-11-21 14:33 2020-03-26 Show GitHub Exploit DB Packet Storm
197848 6.8 MEDIUM
Network 		sustainsys saml2 Saml2 Authentication services for ASP.NET (NuGet package Sustainsys.Saml2) greater than 2.0.0, and less than version 2.5.0 has a faulty implementation of Token Replay Detection. Token Replay Detectio… CWE-294
Authentication Bypass by Capture-replay  		CVE-2020-5261 2024-11-21 14:33 2020-03-25 Show GitHub Exploit DB Packet Storm
197849 4.1 MEDIUM
Local 		pyup safety The command-line "safety" package for Python has a potential security issue. There are two Python characteristics that allow malicious code to “poison-pill” command-line Safety package detection rout… NVD-CWE-noinfo
CVE-2020-5252 2024-11-21 14:33 2020-03-24 Show GitHub Exploit DB Packet Storm
197850 4.8 MEDIUM
Network 		rubyonrails
debian
fedoraproject
opensuse 		actionview
debian_linux
fedora
leap 		In ActionView before versions 6.0.2.2 and 5.2.4.2, there is a possible XSS vulnerability in ActionView's JavaScript literal escape helpers. Views that use the `j` or `escape_javascript` methods may b… - CVE-2020-5267 2024-11-21 14:33 2020-03-20 Show GitHub Exploit DB Packet Storm