Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226371	7.5	危険	Vastal I-Tech & Co.	-	Vastal I-Tech MMORPG Zone の view_news.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3505	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

226372	7.5	危険	Vastal I-Tech & Co.	-	Vastal I-Tech Agent Zone の view_listing.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3497	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

226373	4.3	警告	Vastal I-Tech & Co.	-	Vastal I-Tech DVD Zone の view_mag.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3496	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

226374	7.5	危険	Vastal I-Tech & Co.	-	Vastal I-Tech DVD Zone の view_mag.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3495	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

226375	6.8	警告	todor lazarov	-	T-HTB Manager の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3494	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

226376	4.3	警告	zenas	-	Zenas PaoBacheca Guestbook におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3493	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

226377	2.1	注意	ron jerome	-	Drupal 用の Bibliography モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3488	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

226378	6.8	警告	TrustPort	-	TrustPort Antivirus などにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3482	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

226379	5	警告	radactive	-	RADactive I-Load の WebCoreModule.ashx における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-3452	2012-12-20 19:28	2009-09-29	Show	GitHub Exploit DB Packet Storm

226380	5	警告	radactive	-	RADactive I-Load の WebCoreModule.ashx におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-3451	2012-12-20 19:28	2009-09-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210601	8.8	HIGH Network	dlink	dir-865l_firmware	D-Link DIR-865L Ax 1.20B01 Beta devices allow CSRF.	CWE-352 Origin Validation Error	CVE-2020-13786	2024-11-21 14:01	2020-06-4	Show	GitHub Exploit DB Packet Storm

210602	7.5	HIGH Network	dlink	dir-865l_firmware	D-Link DIR-865L Ax 1.20B01 Beta devices have Inadequate Encryption Strength.	CWE-326 Inadequate Encryption Strength	CVE-2020-13785	2024-11-21 14:01	2020-06-4	Show	GitHub Exploit DB Packet Storm

210603	7.5	HIGH Network	dlink	dir-865l_firmware	D-Link DIR-865L Ax 1.20B01 Beta devices have a predictable seed in a Pseudo-Random Number Generator.	CWE-335 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)	CVE-2020-13784	2024-11-21 14:01	2020-06-4	Show	GitHub Exploit DB Packet Storm

210604	7.5	HIGH Network	dlink	dir-865l_firmware	D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Storage of Sensitive Information.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-13783	2024-11-21 14:01	2020-06-4	Show	GitHub Exploit DB Packet Storm

210605	8.8	HIGH Network	dlink	dir-865l_firmware	D-Link DIR-865L Ax 1.20B01 Beta devices allow Command Injection.	CWE-78 OS Command	CVE-2020-13782	2024-11-21 14:01	2020-06-4	Show	GitHub Exploit DB Packet Storm

210606	3.5	LOW Network	projectcalico	calico	Clusters using Calico (version 3.14.0 and below), Calico Enterprise (version 2.8.2 and below), may be vulnerable to information disclosure if IPv6 is enabled but unused. A compromised pod with suffic…	CWE-200 Information Exposure	CVE-2020-13597	2024-11-21 14:01	2020-06-4	Show	GitHub Exploit DB Packet Storm

210607	9.8	CRITICAL Network	sabberworm	php_css_parser	Sabberworm PHP CSS Parser before 8.3.1 calls eval on uncontrolled data, possibly leading to remote code execution if the function allSelectors() or getSelectorsBySpecificity() is called with input fr…	CWE-94 Code Injection	CVE-2020-13756	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

210608	6.1	MEDIUM Network	djangoproject fedoraproject canonical netapp debian oracle	django fedora ubuntu_linux steelstore_cloud_integrated_storage sra_plugin debian_linux zfs_storage_appliance_kit	An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. Query parameters generated by the Django admin ForeignKeyRawIdWidget were not properly URL encoded, leading to a possibility …	CWE-79 Cross-site Scripting	CVE-2020-13596	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

210609	6.7	MEDIUM Local	systemd_project netapp fedoraproject	systemd solidfire_\&_hci_management_node active_iq_unified_manager fedora	systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits, as demonstrated by use of root privileges when privileges of the 0x0 user acc…	CWE-269 Improper Privilege Management	CVE-2020-13776	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

210610	6.5	MEDIUM Network	znc fedoraproject	znc fedora	ZNC 1.8.0 up to 1.8.1-rc1 allows authenticated users to trigger an application crash (with a NULL pointer dereference) if echo-message is not enabled and there is no network.	CWE-476 NULL Pointer Dereference	CVE-2020-13775	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm