Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226401	7.5	危険	KEEP Toolkit	-	KEEP Toolkit の lib/patUser.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0287	2012-12-20 19:10	2009-01-27	Show	GitHub Exploit DB Packet Storm

226402	9.3	危険	ralinktech	-	Windows 用の Ralink Technology USB wireless アダプタなどのワイアレスカードドライバにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0282	2012-12-20 19:10	2009-01-27	Show	GitHub Exploit DB Packet Storm

226403	7.5	危険	warhound	-	WarHound Walking Club の login.aspx における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0281	2012-12-20 19:10	2009-01-27	Show	GitHub Exploit DB Packet Storm

226404	6.5	警告	ryneezy	-	Ryneezy phoSheezy の admin.php における任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2009-0275	2012-12-20 19:10	2009-01-26	Show	GitHub Exploit DB Packet Storm

226405	9.3	危険	trilogic	-	Triologic Media Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0266	2012-12-20 19:10	2009-01-26	Show	GitHub Exploit DB Packet Storm

226406	9.3	危険	trilogic	-	Triologic Media Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0262	2012-12-20 19:10	2009-01-23	Show	GitHub Exploit DB Packet Storm

226407	10	危険	TYPO3 Association	-	TYPO3 の indexed_search システムエクステンションにおける任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-0258	2012-12-20 19:10	2009-01-22	Show	GitHub Exploit DB Packet Storm

226408	4.3	警告	TYPO3 Association	-	TYPO3 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0257	2012-12-20 19:10	2009-01-22	Show	GitHub Exploit DB Packet Storm

226409	7.5	危険	TYPO3 Association	-	TYPO3 の認証ライブラリにおけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2009-0256	2012-12-20 19:10	2009-01-22	Show	GitHub Exploit DB Packet Storm

226410	5	警告	TYPO3 Association	-	TYPO3 の System エクステンションインストールツールにおける鍵を破られる脆弱性	CWE-310 暗号の問題	CVE-2009-0255	2012-12-20 19:10	2009-01-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210991	7.5	HIGH Network	zoom	meetings	Zoom Client for Meetings through 4.6.9 uses the ECB mode of AES for video and audio encryption. Within a meeting, all participants use a single 128-bit key.	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-11500	2024-11-21 13:58	2020-04-3	Show	GitHub Exploit DB Packet Storm

210992	6.1	MEDIUM Network	firmware_analysis_and_comparison_tool_project	firmware_analysis_and_comparison_tool	Firmware Analysis and Comparison Tool (FACT) 3 has Stored XSS when updating analysis details via a localhost web request, as demonstrated by mishandling of the tags and version fields in helperFuncti…	CWE-79 Cross-site Scripting	CVE-2020-11499	2024-11-21 13:58	2020-04-3	Show	GitHub Exploit DB Packet Storm

210993	8.8	HIGH Network	slack	nebula	Slack Nebula through 1.1.0 contains a relative path vulnerability that allows a low-privileged attacker to execute code in the context of the root user via tun_darwin.go or tun_windows.go. A user can…	CWE-22 Path Traversal	CVE-2020-11498	2024-11-21 13:58	2020-04-3	Show	GitHub Exploit DB Packet Storm

210994	4.4	MEDIUM Local	linux opensuse debian canonical	linux_kernel leap debian_linux ubuntu_linux	An issue was discovered in slc_bump in drivers/net/can/slcan.c in the Linux kernel 3.16 through 5.6.2. It allows attackers to read uninitialized can_frame data, potentially containing sensitive infor…	CWE-908 CWE-909 Use of Uninitialized Resource Missing Initialization of Resource	CVE-2020-11494	2024-11-21 13:58	2020-04-3	Show	GitHub Exploit DB Packet Storm

210995	4.9	MEDIUM Network	zevenet	zen_load_balancer	Monitoring::Logs in Zen Load Balancer 3.10.1 allows remote authenticated admins to conduct absolute path traversal attacks, as demonstrated by a filelog=/etc/shadow request to index.cgi.	CWE-22 Path Traversal	CVE-2020-11491	2024-11-21 13:58	2020-04-2	Show	GitHub Exploit DB Packet Storm

210996	7.2	HIGH Network	zevenet	zen_load_balancer	Manage::Certificates in Zen Load Balancer 3.10.1 allows remote authenticated admins to execute arbitrary OS commands via shell metacharacters in the index.cgi cert_issuer, cert_division, cert_organiz…	CWE-78 OS Command	CVE-2020-11490	2024-11-21 13:58	2020-04-2	Show	GitHub Exploit DB Packet Storm

210997	6.1	MEDIUM Network	bell	home_hub_3000_firmware	An issue was discovered on Bell HomeHub 3000 SG48222070 devices. There is XSS related to the email field and the login page.	CWE-79 Cross-site Scripting	CVE-2020-11448	2024-11-21 13:57	2023-11-17	Show	GitHub Exploit DB Packet Storm

210998	4.3	MEDIUM Network	bell	home_hub_3000_firmware	An issue was discovered on Bell HomeHub 3000 SG48222070 devices. Remote authenticated users can retrieve the serial number via cgi/json-req - this is an information leak because the serial number is …	NVD-CWE-noinfo	CVE-2020-11447	2024-11-21 13:57	2023-11-17	Show	GitHub Exploit DB Packet Storm

210999	8.2	HIGH Local	qualcomm	ar8035_firmware qca6390_firmware qca6391_firmware qca6426_firmware qca6436_firmware qca8337_firmware qca9984_firmware qcm2290_firmware qcm4290_firmware qcs2290_firmware …	An integer overflow due to improper check performed after the address and size passed are aligned in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, S…	CWE-190 Integer Overflow or Wraparound	CVE-2020-11263	2024-11-21 13:57	2022-01-3	Show	GitHub Exploit DB Packet Storm

211000	8.6	HIGH Network	qualcomm	apq8009_firmware apq8053_firmware apq8064au_firmware apq8076_firmware apq8092_firmware apq8094_firmware apq8096au_firmware ar8031_firmware csr6030_firmware csra6620_firmwar…	Accepting AMSDU frames with mismatched destination and source address can lead to information disclosure in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Sna…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-11303	2024-11-21 13:57	2021-10-20	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed