Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226491 4.3 警告 RADVISION - Radvision Scopia の entry/index.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2965 2012-12-20 19:28 2009-08-25 Show GitHub Exploit DB Packet Storm
226492 4.3 警告 xapian - Xapian Omega におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2947 2012-12-20 19:28 2009-09-14 Show GitHub Exploit DB Packet Storm
226493 4.3 警告 stanford - Stanford University WebAuth の weblogin/login.fcgi におけるパスワードを特定される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-2945 2012-12-20 19:28 2009-08-31 Show GitHub Exploit DB Packet Storm
226494 7.5 危険 pygresql - Python 用の pygresql モジュールにおけるマルチバイト文字のエンコーディングに関する問題を利用される脆弱性 CWE-Other
その他 		CVE-2009-2940 2012-12-20 19:28 2009-10-14 Show GitHub Exploit DB Packet Storm
226495 6.9 警告 Postfix Project - Debian GNU/Linux などの製品で使用される postfix パッケージにおけるシンボリックリンク攻撃を実行される脆弱性 CWE-59
リンク解釈の問題 		CVE-2009-2939 2012-12-20 19:28 2009-09-21 Show GitHub Exploit DB Packet Storm
226496 9.3 危険 programmedintegration - Programmed Integration PIPL の xaudio.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-2934 2012-12-20 19:28 2009-08-21 Show GitHub Exploit DB Packet Storm
226497 7.5 危険 Piwigo - Piwigo の comments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2933 2012-12-20 19:28 2009-08-21 Show GitHub Exploit DB Packet Storm
226498 4.3 警告 SAP - SAP NetWeaver Application Server の UDDI クライアントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2932 2012-12-20 19:28 2009-08-21 Show GitHub Exploit DB Packet Storm
226499 7.8 危険 slideshowpro - SlideShowPro Director の p.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2931 2012-12-20 19:28 2009-08-21 Show GitHub Exploit DB Packet Storm
226500 4.3 警告 SpringSource - SpringSource tc Server などの製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2907 2012-12-20 19:28 2010-03-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196671 7.5 HIGH
Network 		lenovo lj4010dn_firmware
lj6700dn_firmware
m8960dnf_firmware 		A denial of service vulnerability was reported in the firmware prior to version 1.01 used in Lenovo Printer LJ4010DN that could be triggered by a remote user sending a crafted packet to the device, p… NVD-CWE-noinfo
CVE-2020-8330 2024-11-21 14:38 2020-05-29 Show GitHub Exploit DB Packet Storm
196672 7.5 HIGH
Network 		lenovo lj4010dn_firmware
lj6700dn_firmware
m8960dnf_firmware 		A denial of service vulnerability was reported in the firmware prior to version 1.01 used in Lenovo Printer LJ4010DN that could be triggered by a remote user sending a crafted packet to the device, c… NVD-CWE-noinfo
CVE-2020-8329 2024-11-21 14:38 2020-05-29 Show GitHub Exploit DB Packet Storm
196673 9.8 CRITICAL
Network 		ui airos We have recently released new version of AirMax AirOS firmware v6.3.0 for TI, XW and XM boards that fixes vulnerabilities found on AirMax AirOS v6.2.0 and prior TI, XW and XM boards, according to the… CWE-78
OS Command  		CVE-2020-8171 2024-11-21 14:38 2020-05-27 Show GitHub Exploit DB Packet Storm
196674 6.1 MEDIUM
Network 		ui airos We have recently released new version of AirMax AirOS firmware v6.3.0 for TI, XW and XM boards that fixes vulnerabilities found on AirMax AirOS v6.2.0 and prior TI, XW and XM boards, according to the… CWE-79
Cross-site Scripting 		CVE-2020-8170 2024-11-21 14:38 2020-05-27 Show GitHub Exploit DB Packet Storm
196675 8.8 HIGH
Network 		ui airos We have recently released new version of AirMax AirOS firmware v6.3.0 for TI, XW and XM boards that fixes vulnerabilities found on AirMax AirOS v6.2.0 and prior TI, XW and XM boards, according to the… CWE-352
 Origin Validation Error 		CVE-2020-8168 2024-11-21 14:38 2020-05-27 Show GitHub Exploit DB Packet Storm
196676 5.3 MEDIUM
Network 		opensuse
debian 		open_build_service
debian_linux 		a Improper Access Control vulnerability in of Open Build Service allows remote attackers to read files of an OBS package where the sourceaccess/access is disabled This issue affects: Open Build Servi… - CVE-2020-8021 2024-11-21 14:38 2020-05-20 Show GitHub Exploit DB Packet Storm
196677 9.8 CRITICAL
Network 		jenzabar internet_campus_solution Jenzabar JICS (aka Internet Campus Solution) before 9.0.1 Patch 3, 9.1 before 9.1.2 Patch 2, and 9.2 before 9.2.2 Patch 8 has session cookies that are a deterministic function of the username. There … CWE-384
 Session Fixation 		CVE-2020-8434 2024-11-21 14:38 2020-05-19 Show GitHub Exploit DB Packet Storm
196678 6.1 MEDIUM
Network 		horde groupware
gollem 		Gollem before 3.0.13, as used in Horde Groupware Webmail Edition 5.2.22 and other products, is affected by a reflected Cross-Site Scripting (XSS) vulnerability via the HTTP GET dir parameter in the b… CWE-79
Cross-site Scripting 		CVE-2020-8034 2024-11-21 14:38 2020-05-19 Show GitHub Exploit DB Packet Storm
196679 6.1 MEDIUM
Network 		horde groupware The image view functionality in Horde Groupware Webmail Edition before 5.2.22 is affected by a stored Cross-Site Scripting (XSS) vulnerability via an SVG image upload containing a JavaScript payload.… CWE-79
Cross-site Scripting 		CVE-2020-8035 2024-11-21 14:38 2020-05-19 Show GitHub Exploit DB Packet Storm
196680 9.8 CRITICAL
Network 		logkitty_project logkitty Lack of output sanitization allowed an attack to execute arbitrary shell commands via the logkitty npm package before version 0.7.1. CWE-94
Code Injection 		CVE-2020-8149 2024-11-21 14:38 2020-05-16 Show GitHub Exploit DB Packet Storm