Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226361 9.3 危険 synactis - Synactis ALL In-The-Box ActiveX の ALL_IN_THE_BOX.OCX における任意のファイルを作成される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0465 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
226362 7.5 危険 wholehogsoftware - Whole Hog Password Protec における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-0461 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
226363 7.5 危険 wholehogsoftware - Whole Hog Ware Support における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-0460 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
226364 7.5 危険 wholehogsoftware - Whole Hog Password Protect の admin/login_submit.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0459 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
226365 7.5 危険 wholehogsoftware - Whole Hog Ware Support の admin/login_submit.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0458 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
226366 7.5 危険 sourdough - Sourdough で使用されている patForms の examples/example_clientside_javascript.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0456 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
226367 7.5 危険 skalinks - Skalfa SkaLinks における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0451 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
226368 7.5 危険 syntax desktop - Syntax Desktop の admin/modules/aa/preview.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0448 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
226369 7.5 危険 web-album - WEBalbum の photo.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0446 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
226370 7.5 危険 SIRINI.NET - GRBoard における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0444 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212311 7.8 HIGH
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		A remote code execution vulnerability exists when the Windows Imaging Library improperly handles memory.To exploit this vulnerability, an attacker would first have to coerce a victim to open a specia… NVD-CWE-noinfo
CVE-2020-0708 2024-11-21 13:54 2020-02-12 Show GitHub Exploit DB Packet Storm
212312 4.3 MEDIUM
Network 		microsoft internet_explorer
edge 		An information disclosure vulnerability exists in the way that affected Microsoft browsers handle cross-origin requests, aka 'Microsoft Browser Information Disclosure Vulnerability'. NVD-CWE-noinfo
CVE-2020-0706 2024-11-21 13:54 2020-02-12 Show GitHub Exploit DB Packet Storm
212313 5.5 MEDIUM
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		An information disclosure vulnerability exists when the Windows Network Driver Interface Specification (NDIS) improperly handles memory.To exploit this vulnerability, an attacker would first have to … NVD-CWE-noinfo
CVE-2020-0705 2024-11-21 13:54 2020-02-12 Show GitHub Exploit DB Packet Storm
212314 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An elevation of privilege vulnerability exists when the Windows Wireless Network Manager improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the… NVD-CWE-noinfo
CVE-2020-0704 2024-11-21 13:54 2020-02-12 Show GitHub Exploit DB Packet Storm
212315 7.8 HIGH
Local 		microsoft windows_server_2008
windows_10
windows_server_2016
windows_7
windows_server_2012
windows_server_2019 		An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the … NVD-CWE-noinfo
CVE-2020-0703 2024-11-21 13:54 2020-02-12 Show GitHub Exploit DB Packet Storm
212316 6.8 MEDIUM
Physics 		microsoft surface_hub_firmware A security feature bypass vulnerability exists in Surface Hub when prompting for credentials, aka 'Surface Hub Security Feature Bypass Vulnerability'. NVD-CWE-noinfo
CVE-2020-0702 2024-11-21 13:54 2020-02-12 Show GitHub Exploit DB Packet Storm
212317 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An elevation of privilege vulnerability exists in the way that the Windows Client License Service (ClipSVC) handles objects in memory, aka 'Windows Client License Service Elevation of Privilege Vulne… NVD-CWE-noinfo
CVE-2020-0701 2024-11-21 13:54 2020-02-12 Show GitHub Exploit DB Packet Storm
212318 5.5 MEDIUM
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		An information disclosure vulnerability exists when the Telephony Service improperly discloses the contents of its memory, aka 'Windows Information Disclosure Vulnerability'. NVD-CWE-noinfo
CVE-2020-0698 2024-11-21 13:54 2020-02-12 Show GitHub Exploit DB Packet Storm
212319 6.5 MEDIUM
Network 		microsoft outlook
office_365_proplus
office 		A security feature bypass vulnerability exists in Microsoft Outlook software when it improperly handles the parsing of URI formats, aka 'Microsoft Outlook Security Feature Bypass Vulnerability'. NVD-CWE-Other
CVE-2020-0696 2024-11-21 13:54 2020-02-12 Show GitHub Exploit DB Packet Storm
212320 5.4 MEDIUM
Network 		microsoft office_online_server A spoofing vulnerability exists when Office Online Server does not validate origin in cross-origin communications correctly, aka 'Microsoft Office Online Server Spoofing Vulnerability'. CWE-346
 Origin Validation Error 		CVE-2020-0695 2024-11-21 13:54 2020-02-12 Show GitHub Exploit DB Packet Storm