Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226131	6.5	警告	phpdirsubmit	-	PHP Dir Submit の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3970	2012-12-20 19:28	2009-11-18	Show	GitHub Exploit DB Packet Storm

226132	7.5	危険	XOOPS	-	XOOPS における脆弱性	CWE-noinfo 情報不足	CVE-2009-3963	2012-12-20 19:28	2009-10-26	Show	GitHub Exploit DB Packet Storm

226133	7.5	危険	vivaprograms	-	VivaPrograms Infinity の cp/profile.php における管理アカウントを作成される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3949	2012-12-20 19:28	2009-11-16	Show	GitHub Exploit DB Packet Storm

226134	9.3	危険	tandberg	-	Tandberg MXP の FTP サービスにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-3947	2012-12-20 19:28	2009-11-16	Show	GitHub Exploit DB Packet Storm

226135	2.1	注意	サン・マイクロシステムズ	-	Sun xVM VirtualBox および Sun VirtualBox の Guest Additions におけるゲスト OS 上でサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-3940	2012-12-20 19:28	2009-11-13	Show	GitHub Exploit DB Packet Storm

226136	6.8	警告	freedesktop.org	-	Abiword pdftoabw utility で使用される Poppler におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-3938	2012-12-20 19:28	2009-11-13	Show	GitHub Exploit DB Packet Storm

226137	4.9	警告	サン・マイクロシステムズ	-	Sun OpenSolaris の Solaris TCP ソケットにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3937	2012-12-20 19:28	2009-11-13	Show	GitHub Exploit DB Packet Storm

226138	5	警告	Webkit	-	Google Chrome で使用されている WebKit におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3933	2012-12-20 19:28	2009-10-27	Show	GitHub Exploit DB Packet Storm

226139	9.3	危険	raven software punkbuster	-	Soldier of Fortune II で使用される pbsv.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-3924	2012-12-20 19:28	2009-11-9	Show	GitHub Exploit DB Packet Storm

226140	7.5	危険	サン・マイクロシステムズ	-	Sun VDI の VirtualBox Web サービスにおける不特定のアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2009-3923	2012-12-20 19:28	2009-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211231	4.8	MEDIUM Network	netgear	d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware rbr20_firmware rbs20_firmware rbk20_firmware …	Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0…	CWE-79 Cross-site Scripting	CVE-2020-11775	2024-11-21 13:58	2020-04-15	Show	GitHub Exploit DB Packet Storm

211232	8.8	HIGH Network	netgear	d6220_firmware d6400_firmware d8500_firmware r6220_firmware r6250_firmware r6260_firmware r6400_firmware r6700_firmware r6800_firmware r6900_firmware r6900p_firmware …	Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6220 before 1.0.0.52, D6400 before 1.0.0.86, D7000v2 before 1.0.0.53, D8500 before 1.0.3.44, R6220 be…	CWE-77 Command Injection	CVE-2020-11770	2024-11-21 13:58	2020-04-15	Show	GitHub Exploit DB Packet Storm

211233	4.8	MEDIUM Network	netgear	d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware rbr20_firmware rbs20_firmware rbk20_firmware …	Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0…	CWE-79 Cross-site Scripting	CVE-2020-11769	2024-11-21 13:58	2020-04-15	Show	GitHub Exploit DB Packet Storm

211234	4.8	MEDIUM Network	netgear	d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware rbr20_firmware rbs20_firmware rbk20_firmware …	Certain NETGEAR devices are affected by Stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0…	CWE-79 Cross-site Scripting	CVE-2020-11768	2024-11-21 13:58	2020-04-15	Show	GitHub Exploit DB Packet Storm

211235	7.5	HIGH Network	varnish-cache varnish-software opensuse debian	varnish_cache leap backports_sle debian_linux	An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3.x before 6.3.2. It occurs when communication with a TLS termination proxy uses PROXY version 2. There …	CWE-617 Reachable Assertion	CVE-2020-11653	2024-11-21 13:58	2020-04-9	Show	GitHub Exploit DB Packet Storm

211236	7.5	HIGH Network	ixsystems	freenas_firmware truenas_firmware	An issue was discovered in iXsystems FreeNAS (and TrueNAS) 11.2 before 11.2-u8 and 11.3 before 11.3-U1. It allows a denial of service. The login authentication component has no limits on the length o…	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-11650	2024-11-21 13:58	2020-04-9	Show	GitHub Exploit DB Packet Storm

211237	3.1	LOW Network	istio envoyproxy	istio envoy	Istio through 1.5.1 and Envoy through 1.14.1 have a data-leak issue. If there is a TCP connection (negotiated with SNI over HTTPS) to *.example.com, a request for a domain concurrently configured exp…	NVD-CWE-noinfo	CVE-2020-11767	2024-11-21 13:58	2020-04-15	Show	GitHub Exploit DB Packet Storm

211238	5.5	MEDIUM Local	xen fedoraproject	xen fedora	An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service because of a bad error path in GNTTABOP_map_grant. Grant table operations are expected to return 0 …	CWE-755 Improper Handling of Exceptional Conditions	CVE-2020-11743	2024-11-21 13:58	2020-04-14	Show	GitHub Exploit DB Packet Storm

211239	5.5	MEDIUM Local	xen fedoraproject	xen fedora	An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service because of bad continuation handling in GNTTABOP_copy. Grant table operations are expected to retur…	NVD-CWE-Other	CVE-2020-11742	2024-11-21 13:58	2020-04-14	Show	GitHub Exploit DB Packet Storm

211240	8.8	HIGH Local	xen fedoraproject debian opensuse	xen fedora debian_linux leap	An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (with active profiling) to obtain sensitive information about other guests, cause a denial of service, or possibly g…	CWE-909 Missing Initialization of Resource	CVE-2020-11741	2024-11-21 13:58	2020-04-14	Show	GitHub Exploit DB Packet Storm