Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226111 10 危険 slsknet - Soulseek におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1830 2012-12-20 19:10 2009-05-29 Show GitHub Exploit DB Packet Storm
226112 9.3 危険 sonicspot - Sonic Spot Audioactive Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1815 2012-12-20 19:10 2009-05-29 Show GitHub Exploit DB Packet Storm
226113 7.5 危険 submitterscript - Submitter Script の admin/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1813 2012-12-20 19:10 2009-05-29 Show GitHub Exploit DB Packet Storm
226114 7.5 危険 videoscript - VideoScript.us YouTube Video Script の admin/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1804 2012-12-20 19:10 2009-05-28 Show GitHub Exploit DB Packet Storm
226115 6.8 警告 sebastian-thiele - ST-Gallery の st_admin/gallery_output.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1799 2012-12-20 19:10 2009-05-28 Show GitHub Exploit DB Packet Storm
226116 4.3 警告 サン・マイクロシステムズ - Sun Java System Portal Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1796 2012-12-20 19:10 2009-05-22 Show GitHub Exploit DB Packet Storm
226117 9.3 危険 stonetrip - StoneTrip Ston3D StandalonePlayer および WebPlayer の system.openURL 関数における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2009-1792 2012-12-20 19:10 2009-05-29 Show GitHub Exploit DB Packet Storm
226118 7.5 危険 phpdirsubmit - PHP Dir Submit における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1787 2012-12-20 19:10 2009-05-26 Show GitHub Exploit DB Packet Storm
226119 4.3 警告 ulteo - Ulteo Open Virtual Desktop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1785 2012-12-20 19:10 2009-05-22 Show GitHub Exploit DB Packet Storm
226120 6.8 警告 roboform - Frax.dk Php Recommend の admin.php における phpre_config.php へ任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-1781 2012-12-20 19:10 2009-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197651 7.8 HIGH
Local 		nvidia virtual_gpu_manager NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, in which the software does not restrict or incorrectly restricts operations within the boundaries of a resource that is accesse… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2020-5968 2024-11-21 14:34 2020-07-1 Show GitHub Exploit DB Packet Storm
197652 8.8 HIGH
Network 		nta e-tax_reception_system Chrome Extension for e-Tax Reception System Ver1.0.0.0 allows remote attackers to execute an arbitrary command via unspecified vectors. CWE-77
Command Injection 		CVE-2020-5601 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
197653 4.9 MEDIUM
Network 		cybozu garoon Path traversal vulnerability in Cybozu Garoon 5.0.0 to 5.0.1 allows attacker with administrator rights to obtain unintended information via unspecified vectors. CWE-22
Path Traversal 		CVE-2020-5588 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
197654 6.5 MEDIUM
Network 		cybozu garoon Cybozu Garoon 4.0.0 to 5.0.1 allow remote authenticated attackers to obtain unintended information via unspecified vectors. NVD-CWE-noinfo
CVE-2020-5587 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
197655 4.8 MEDIUM
Network 		cybozu garoon Cross-site scripting vulnerability in Cybozu Garoon 4.10.3 to 5.0.1 allows attacker with administrator rights to inject an arbitrary script via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2020-5586 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
197656 4.8 MEDIUM
Network 		cybozu garoon Cross-site scripting vulnerability in Cybozu Garoon 5.0.0 to 5.0.1 allows attacker with administrator rights to inject an arbitrary script via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2020-5585 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
197657 7.5 HIGH
Network 		mitsubishielectric cpu_module_logging_configuration_tool
cw_configurator
em_configurator
gt_designer3
gx_logviewer
gx_works2
gx_works3
m_commdtm-hart
m_commdtm-io-link
melfa-works
melsec-l… 		Uncontrolled resource consumption vulnerability in Mitsubishi Electoric FA Engineering Software (CPU Module Logging Configuration Tool Ver. 1.94Y and earlier, CW Configurator Ver. 1.010L and earlier,… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-5603 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
197658 7.5 HIGH
Network 		mitsubishielectric cpu_module_logging_configuration_tool
cw_configurator
em_configurator
gt_designer3
gx_logviewer
gx_works2
gx_works3
m_commdtm-hart
m_commdtm-io-link
melfa-works
melsec-l… 		Mitsubishi Electoric FA Engineering Software (CPU Module Logging Configuration Tool Ver. 1.94Y and earlier, CW Configurator Ver. 1.010L and earlier, EM Software Development Kit (EM Configurator) Ver.… CWE-611
XXE 		CVE-2020-5602 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
197659 7.5 HIGH
Network 		cybozu garoon Cybozu Garoon 4.0.0 to 5.0.1 allow remote attackers to obtain unintended information via unspecified vectors. NVD-CWE-noinfo
CVE-2020-5584 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm
197660 6.5 MEDIUM
Network 		cybozu garoon Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to bypass access restriction to obtain unauthorized Multi-Report's data via unspecified vectors. NVD-CWE-noinfo
CVE-2020-5583 2024-11-21 14:34 2020-06-30 Show GitHub Exploit DB Packet Storm