Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226751 7.5 危険 サン・マイクロシステムズ - Sun VDI の VirtualBox Web サービスにおける不特定のアクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2009-3923 2012-12-20 19:28 2009-11-3 Show GitHub Exploit DB Packet Storm
226752 5 警告 Sean Robertson - Drupal 用の crmngp モジュールの管理ページにおけるログ情報を読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3920 2012-12-20 19:28 2009-11-4 Show GitHub Exploit DB Packet Storm
226753 4.3 警告 Sean Robertson - Drupal 用の crmngp モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3919 2012-12-20 19:28 2009-11-4 Show GitHub Exploit DB Packet Storm
226754 4.3 警告 Ronan Dowling - Drupal 用の Node Hierarchy モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3916 2012-12-20 19:28 2009-11-4 Show GitHub Exploit DB Packet Storm
226755 4.3 警告 drunomics - Drupal 用の Temporary Invitation モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3914 2012-12-20 19:28 2009-11-4 Show GitHub Exploit DB Packet Storm
226756 7.5 危険 Xerox - Xerox Fiery Webtools の summary.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3913 2012-12-20 19:28 2009-11-9 Show GitHub Exploit DB Packet Storm
226757 5 警告 tftgallery - TFTgallery の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3912 2012-12-20 19:28 2009-11-9 Show GitHub Exploit DB Packet Storm
226758 4.3 警告 tftgallery - TFTgallery の settings.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3911 2012-12-20 19:28 2009-11-9 Show GitHub Exploit DB Packet Storm
226759 3.5 注意 WordPress.org - WordPress の wp-admin/press-this.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3891 2012-12-20 19:28 2009-11-12 Show GitHub Exploit DB Packet Storm
226760 6 警告 WordPress.org - WordPress の wp-includes/functions.php における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3890 2012-12-20 19:28 2009-11-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196371 5.5 MEDIUM
Local 		huawei mate_30_firmware HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a denial of service vulnerability. The system does not properly limit the depth of recursion, an attacker should trick the user … CWE-674
 Uncontrolled Recursion 		CVE-2020-9243 2024-11-21 14:40 2020-08-11 Show GitHub Exploit DB Packet Storm
196372 5.9 MEDIUM
Network 		cs2-network p2p CS2 Network P2P through 3.x, as used in millions of Internet of Things devices, suffers from an information exposure flaw that exposes user session data to supernodes in the network, as demonstrated … CWE-327
CWE-319
 Use of a Broken or Risky Cryptographic Algorithm
Cleartext Transmission of Sensitive Information 		CVE-2020-9526 2024-11-21 14:40 2020-08-11 Show GitHub Exploit DB Packet Storm
196373 8.1 HIGH
Network 		cs2-network p2p CS2 Network P2P through 3.x, as used in millions of Internet of Things devices, suffers from an authentication flaw that allows remote attackers to perform a man-in-the-middle attack, as demonstrated… CWE-200
CWE-522
Information Exposure
 Insufficiently Protected Credentials 		CVE-2020-9525 2024-11-21 14:40 2020-08-11 Show GitHub Exploit DB Packet Storm
196374 9.8 CRITICAL
Network 		hichip shenzhen_hichip_vision_technology_firmware Firmware developed by Shenzhen Hichip Vision Technology (V6 through V20), as used by many different vendors in millions of Internet of Things devices, suffers from a privilege escalation vulnerabilit… NVD-CWE-noinfo
CVE-2020-9529 2024-11-21 14:40 2020-08-11 Show GitHub Exploit DB Packet Storm
196375 7.5 HIGH
Network 		hichip shenzhen_hichip_vision_technology_firmware Firmware developed by Shenzhen Hichip Vision Technology (V6 through V20), as used by many different vendors in millions of Internet of Things devices, suffers from cryptographic issues that allow rem… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2020-9528 2024-11-21 14:40 2020-08-11 Show GitHub Exploit DB Packet Storm
196376 9.8 CRITICAL
Network 		hichip shenzhen_hichip_vision_technology_firmware Firmware developed by Shenzhen Hichip Vision Technology (V6 through V20, after 2018-08-09 through 2020), as used by many different vendors in millions of Internet of Things devices, suffers from buff… CWE-120
Classic Buffer Overflow 		CVE-2020-9527 2024-11-21 14:40 2020-08-11 Show GitHub Exploit DB Packet Storm
196377 7.5 HIGH
Network 		apache
oracle
opensuse
debian
fedoraproject
canonical
redhat 		http_server
instantis_enterprisetrack
hyperion_infrastructure_technology
enterprise_manager_ops_center
communications_session_route_manager
communications_session_report_manager
com… 		Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 request would result in a crash when the server actually tries to HTTP/2 PUSH a resou… CWE-444
HTTP Request Smuggling 		CVE-2020-9490 2024-11-21 14:40 2020-08-8 Show GitHub Exploit DB Packet Storm
196378 6.5 MEDIUM
Adjacent 		huawei p30_firmware HUAWEI P30 smartphones with versions earlier than 10.1.0.160(C00E160R2P11) have a denial of service vulnerability. A module does not deal with mal-crafted messages and it leads to memory leak. Attack… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2020-9249 2024-11-21 14:40 2020-07-31 Show GitHub Exploit DB Packet Storm
196379 6.7 MEDIUM
Local 		huawei fusioncompute Huawei FusionComput 8.0.0 have an improper authorization vulnerability. A module does not verify some input correctly and authorizes files with incorrect access. Attackers can exploit this vulnerabil… NVD-CWE-noinfo
CVE-2020-9248 2024-11-21 14:40 2020-07-31 Show GitHub Exploit DB Packet Storm
196380 2.4 LOW
Physics 		huawei p30_firmware HUAWEI Mate 20 smartphones with versions earlier than 10.1.0.160(C00E160R2P11) have an improper authorization vulnerability. The software does not properly restrict certain operation in certain scena… NVD-CWE-noinfo
CVE-2020-9251 2024-11-21 14:40 2020-07-27 Show GitHub Exploit DB Packet Storm