Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 12, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 226301 | 4.3 | 警告 | xapian | - | Xapian Omega におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-2947 | 2012-12-20 19:28 | 2009-09-14 | Show | GitHub Exploit DB Packet Storm |
| 226302 | 4.3 | 警告 | stanford | - | Stanford University WebAuth の weblogin/login.fcgi におけるパスワードを特定される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2009-2945 | 2012-12-20 19:28 | 2009-08-31 | Show | GitHub Exploit DB Packet Storm |
| 226303 | 7.5 | 危険 | pygresql | - | Python 用の pygresql モジュールにおけるマルチバイト文字のエンコーディングに関する問題を利用される脆弱性 |
CWE-Other
その他 |
CVE-2009-2940 | 2012-12-20 19:28 | 2009-10-14 | Show | GitHub Exploit DB Packet Storm |
| 226304 | 6.9 | 警告 | Postfix Project | - | Debian GNU/Linux などの製品で使用される postfix パッケージにおけるシンボリックリンク攻撃を実行される脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2009-2939 | 2012-12-20 19:28 | 2009-09-21 | Show | GitHub Exploit DB Packet Storm |
| 226305 | 9.3 | 危険 | programmedintegration | - | Programmed Integration PIPL の xaudio.dll におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-2934 | 2012-12-20 19:28 | 2009-08-21 | Show | GitHub Exploit DB Packet Storm |
| 226306 | 7.5 | 危険 | Piwigo | - | Piwigo の comments.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-2933 | 2012-12-20 19:28 | 2009-08-21 | Show | GitHub Exploit DB Packet Storm |
| 226307 | 4.3 | 警告 | SAP | - | SAP NetWeaver Application Server の UDDI クライアントにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-2932 | 2012-12-20 19:28 | 2009-08-21 | Show | GitHub Exploit DB Packet Storm |
| 226308 | 7.8 | 危険 | slideshowpro | - | SlideShowPro Director の p.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2009-2931 | 2012-12-20 19:28 | 2009-08-21 | Show | GitHub Exploit DB Packet Storm |
| 226309 | 4.3 | 警告 | SpringSource | - | SpringSource tc Server などの製品におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-2907 | 2012-12-20 19:28 | 2010-03-23 | Show | GitHub Exploit DB Packet Storm |
| 226310 | 7.5 | 危険 | tgs-cms | - | TGS Content Management における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-2929 | 2012-12-20 19:28 | 2009-08-21 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 12, 2026, 5:06 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 213201 | 8.8 |
HIGH
Network |
microsoft |
windows_10 windows_server_2008 windows_server_2012 windows_server_2016 windows_7 windows_8.1 windows_server_2019 |
A remote code execution vulnerability exists in the way that Windows handles objects in memory, aka 'Windows Remote Code Execution Vulnerability'. |
NVD-CWE-noinfo
|
CVE-2020-0662 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 213202 | 6.8 |
MEDIUM
Adjacent |
microsoft |
windows_server_2016 windows_10 windows_server_2019 |
A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Se… |
CWE-20
Improper Input Validation |
CVE-2020-0661 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 213203 | 7.5 |
HIGH
Network |
microsoft |
windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_rt_8.1 windows_server_2019 |
A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Pr… |
NVD-CWE-noinfo
|
CVE-2020-0660 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 213204 | 7.8 |
HIGH
Local |
microsoft |
windows_10 windows_server_2016 windows_server_2019 |
An elevation of privilege vulnerability exists when the Windows Data Sharing Service improperly handles file operations, aka 'Windows Data Sharing Service Elevation of Privilege Vulnerability'. This … |
NVD-CWE-noinfo
|
CVE-2020-0659 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 213205 | 5.5 |
MEDIUM
Local |
microsoft |
windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019 |
An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Infor… |
NVD-CWE-noinfo
|
CVE-2020-0658 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 213206 | 7.8 |
HIGH
Local |
microsoft |
windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019 |
An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Priv… |
NVD-CWE-noinfo
|
CVE-2020-0657 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 213207 | 8.0 |
HIGH
Network |
microsoft |
windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019 |
A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Se… |
NVD-CWE-noinfo
|
CVE-2020-0655 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 213208 | 8.8 |
HIGH
Network |
microsoft | sql_server | A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it incorrectly handles page requests, aka 'Microsoft SQL Server Reporting Services Remote Code Execution V… |
CWE-502
Deserialization of Untrusted Data |
CVE-2020-0618 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 213209 | 5.5 |
MEDIUM
Local |
intel opensuse debian canonical fedoraproject |
core_i7-8700b_firmware core_i7-8569u_firmware core_i7_8650u_firmware core_i7_8565u_firmware core_i7_8560u_firmware core_i7_8559u_firmware core_i7_8550u_firmware core_i7_8500y_fir… |
Cleanup errors in some data cache evictions for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. |
CWE-404
Improper Resource Shutdown or Release |
CVE-2020-0549 | 2024-11-21 13:53 | 2020-01-28 | Show | GitHub Exploit DB Packet Storm |
| 213210 | 5.5 |
MEDIUM
Local |
intel |
core_i7-8700b_firmware core_i7-8569u_firmware core_i7_8650u_firmware core_i7_8565u_firmware core_i7_8560u_firmware core_i7_8559u_firmware core_i7_8550u_firmware core_i7_8500y_fir… |
Cleanup errors in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. |
CWE-404
Improper Resource Shutdown or Release |
CVE-2020-0548 | 2024-11-21 13:53 | 2020-01-28 | Show | GitHub Exploit DB Packet Storm |