Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226371 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech MMORPG Zone の view_news.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3505 2012-12-20 19:28 2009-09-30 Show GitHub Exploit DB Packet Storm
226372 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech Agent Zone の view_listing.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3497 2012-12-20 19:28 2009-09-30 Show GitHub Exploit DB Packet Storm
226373 4.3 警告 Vastal I-Tech & Co. - Vastal I-Tech DVD Zone の view_mag.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3496 2012-12-20 19:28 2009-09-30 Show GitHub Exploit DB Packet Storm
226374 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech DVD Zone の view_mag.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3495 2012-12-20 19:28 2009-09-30 Show GitHub Exploit DB Packet Storm
226375 6.8 警告 todor lazarov - T-HTB Manager の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3494 2012-12-20 19:28 2009-09-30 Show GitHub Exploit DB Packet Storm
226376 4.3 警告 zenas - Zenas PaoBacheca Guestbook におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3493 2012-12-20 19:28 2009-09-30 Show GitHub Exploit DB Packet Storm
226377 2.1 注意 ron jerome - Drupal 用の Bibliography モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3488 2012-12-20 19:28 2009-09-30 Show GitHub Exploit DB Packet Storm
226378 6.8 警告 TrustPort - TrustPort Antivirus などにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3482 2012-12-20 19:28 2009-09-30 Show GitHub Exploit DB Packet Storm
226379 5 警告 radactive - RADactive I-Load の WebCoreModule.ashx における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-3452 2012-12-20 19:28 2009-09-29 Show GitHub Exploit DB Packet Storm
226380 5 警告 radactive - RADactive I-Load の WebCoreModule.ashx におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3451 2012-12-20 19:28 2009-09-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200421 9.9 CRITICAL
Network 		cisco sd-wan A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization, enabling them to access sensitive informa… CWE-863
 Incorrect Authorization 		CVE-2020-3374 2024-11-21 14:30 2020-07-31 Show GitHub Exploit DB Packet Storm
200422 7.8 HIGH
Local 		cisco sd-wan_firmware
vbond_orchestrator
vsmart_controller 		A vulnerability in Cisco SD-WAN Solution Software could allow an authenticated, local attacker to elevate privileges to Administrator on the underlying operating system. The vulnerability is due to i… CWE-20
 Improper Input Validation  		CVE-2020-3379 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
200423 5.8 MEDIUM
Network 		cisco email_security_appliance A vulnerability in URL filtering of Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to bypass URL filtering on an affected device. The vulnerability … CWE-20
 Improper Input Validation  		CVE-2020-3370 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
200424 5.4 MEDIUM
Network 		cisco sd-wan_firmware A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user … CWE-79
Cross-site Scripting 		CVE-2020-3406 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
200425 7.3 HIGH
Network 		cisco sd-wan_firmware A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected system. The vul… CWE-611
XXE 		CVE-2020-3405 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
200426 6.5 MEDIUM
Network 		cisco sd-wan_firmware A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct path traversal attacks and obtain read access to sensit… CWE-22
Path Traversal 		CVE-2020-3401 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
200427 7.8 HIGH
Local 		cisco sd-wan_firmware A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due … CWE-287
Improper Authentication 		CVE-2020-3388 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
200428 8.8 HIGH
Network 		cisco sd-wan_firmware A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to execute code with root privileges on an affected system. The vulnerability is due to insufficient inp… - CVE-2020-3387 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
200429 6.5 MEDIUM
Adjacent 		cisco sd-wan_firmware
vedge_cloud_router 		A vulnerability in the deep packet inspection (DPI) engine of Cisco SD-WAN vEdge Routers could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected … NVD-CWE-noinfo
CVE-2020-3385 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
200430 8.8 HIGH
Network 		cisco sd-wan_firmware A vulnerability in the web management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct directory traversal attacks and obtain read and write access … CWE-22
Path Traversal 		CVE-2020-3381 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm