Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226351 4.3 警告 scripts-for-sites - SFS EZ Baby の password.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0532 2012-12-20 19:10 2009-02-11 Show GitHub Exploit DB Packet Storm
226352 7.5 危険 rhadrix - Rhadrix If-CMS の frame.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0528 2012-12-20 19:10 2009-02-11 Show GitHub Exploit DB Packet Storm
226353 10 危険 phpslash - phpSlash の index.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0517 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
226354 6.8 警告 yanocc - YANOCC の check_lang.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0515 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
226355 7.5 危険 webframe - WebFrame におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0514 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
226356 7.5 危険 webframe - WebFrame における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0513 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
226357 10 危険 simpleircbot - SimpleIrcBot における脆弱性 CWE-287
不適切な認証 		CVE-2009-0492 2012-12-20 19:10 2009-02-9 Show GitHub Exploit DB Packet Storm
226358 2.1 注意 David Paleino - Wicd の DBus configuration file における Wicd デーモンへのメッセージを受信される脆弱性 CWE-16
環境設定 		CVE-2009-0489 2012-12-20 19:10 2009-02-9 Show GitHub Exploit DB Packet Storm
226359 5 警告 Rockwell Automation - Rockwell Automation ControlLogix 1756-ENBT/A EtherNet/IP Bridge Module の Web インターフェースにおける "内部の Web ページ情報" などを取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-0474 2012-12-20 19:10 2009-02-6 Show GitHub Exploit DB Packet Storm
226360 4.3 警告 vivvo - Vivvo CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0466 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211031 7.5 HIGH
Network 		castlerock snmpc_online An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It allows remote attackers to obtain sensitive credential information from backup files. CWE-522
 Insufficiently Protected Credentials 		CVE-2020-11555 2024-11-21 13:58 2020-04-9 Show GitHub Exploit DB Packet Storm
211032 7.5 HIGH
Network 		castlerock snmpc_online An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It allows remote attackers to obtain sensitive information via info.php4. NVD-CWE-noinfo
CVE-2020-11554 2024-11-21 13:58 2020-04-9 Show GitHub Exploit DB Packet Storm
211033 8.8 HIGH
Network 		castlerock snmpc_online An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There is pervasive CSRF. CWE-352
 Origin Validation Error 		CVE-2020-11553 2024-11-21 13:58 2020-04-9 Show GitHub Exploit DB Packet Storm
211034 4.8 MEDIUM
Network 		netgear d7800_firmware
r7500_firmware
r7800_firmware
r8900_firmware
r9000_firmware
rax120_firmware
xr500_firmware
xr700_firmware
rbr20_firmware
rbs20_firmware
rbk20_firmware
 Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… CWE-79
Cross-site Scripting 		CVE-2020-11775 2024-11-21 13:58 2020-04-15 Show GitHub Exploit DB Packet Storm
211035 8.8 HIGH
Network 		netgear d6220_firmware
d6400_firmware
d8500_firmware
r6220_firmware
r6250_firmware
r6260_firmware
r6400_firmware
r6700_firmware
r6800_firmware
r6900_firmware
r6900p_firmware
 Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6220 before 1.0.0.52, D6400 before 1.0.0.86, D7000v2 before 1.0.0.53, D8500 before 1.0.3.44, R6220 be… CWE-77
Command Injection 		CVE-2020-11770 2024-11-21 13:58 2020-04-15 Show GitHub Exploit DB Packet Storm
211036 4.8 MEDIUM
Network 		netgear d7800_firmware
r7500_firmware
r7800_firmware
r8900_firmware
r9000_firmware
rax120_firmware
xr500_firmware
xr700_firmware
rbr20_firmware
rbs20_firmware
rbk20_firmware
 Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… CWE-79
Cross-site Scripting 		CVE-2020-11769 2024-11-21 13:58 2020-04-15 Show GitHub Exploit DB Packet Storm
211037 4.8 MEDIUM
Network 		netgear d7800_firmware
r7500_firmware
r7800_firmware
r8900_firmware
r9000_firmware
rax120_firmware
xr500_firmware
xr700_firmware
rbr20_firmware
rbs20_firmware
rbk20_firmware
 Certain NETGEAR devices are affected by Stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… CWE-79
Cross-site Scripting 		CVE-2020-11768 2024-11-21 13:58 2020-04-15 Show GitHub Exploit DB Packet Storm
211038 7.5 HIGH
Network 		varnish-cache
varnish-software
opensuse
debian 		varnish_cache
leap
backports_sle
debian_linux 		An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3.x before 6.3.2. It occurs when communication with a TLS termination proxy uses PROXY version 2. There … CWE-617
 Reachable Assertion 		CVE-2020-11653 2024-11-21 13:58 2020-04-9 Show GitHub Exploit DB Packet Storm
211039 7.5 HIGH
Network 		ixsystems freenas_firmware
truenas_firmware 		An issue was discovered in iXsystems FreeNAS (and TrueNAS) 11.2 before 11.2-u8 and 11.3 before 11.3-U1. It allows a denial of service. The login authentication component has no limits on the length o… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2020-11650 2024-11-21 13:58 2020-04-9 Show GitHub Exploit DB Packet Storm
211040 3.1 LOW
Network 		istio
envoyproxy 		istio
envoy 		Istio through 1.5.1 and Envoy through 1.14.1 have a data-leak issue. If there is a TCP connection (negotiated with SNI over HTTPS) to *.example.com, a request for a domain concurrently configured exp… NVD-CWE-noinfo
CVE-2020-11767 2024-11-21 13:58 2020-04-15 Show GitHub Exploit DB Packet Storm