Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226801 6.8 警告 サン・マイクロシステムズ - Sun Java System Delegated Administrator の da/DA/Login における CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1357 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
226802 4 警告 sergey lyubka - Mongoose におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1354 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
226803 5 警告 sebastian fernandez - Zervit Webserver の libz/misc.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1353 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
226804 4.3 警告 レッドハット - C2Net Stronghold におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1349 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
226805 6 警告 TWiki - TWiki におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-1339 2012-12-20 19:10 2009-04-5 Show GitHub Exploit DB Packet Storm
226806 5 警告 サン・マイクロシステムズ - Sun Java System Directory Server および Enterprise Edition の Online Help 機能におけるファイルの一部のコンテンツを取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-1332 2012-12-20 19:10 2009-04-15 Show GitHub Exploit DB Packet Storm
226807 7.5 危険 webfileexplorer - Web File Explorer の body.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1323 2012-12-20 19:10 2009-04-17 Show GitHub Exploit DB Packet Storm
226808 4.3 警告 zazzle - Zazzle Store Builder の include/zstore.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1320 2012-12-20 19:10 2009-04-17 Show GitHub Exploit DB Packet Storm
226809 10 危険 webfileexplorer - Web File Explorer の body.asp における任意のファイルを作成される脆弱性 CWE-noinfo
情報不足 		CVE-2009-1314 2012-12-20 19:10 2009-04-16 Show GitHub Exploit DB Packet Storm
226810 5 警告 Rapid Leech - Rapidleech の upload.php における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1089 2012-12-20 19:10 2009-03-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213971 9.3 CRITICAL
Network 		mozilla firefox
firefox_esr 		Given a compromised sandboxed content process due to a separate vulnerability, it is possible to escape that sandbox by loading accounts.firefox.com in that process and forcing a log-in to a maliciou… NVD-CWE-noinfo
CVE-2019-9812 2024-11-21 13:52 2020-01-9 Show GitHub Exploit DB Packet Storm
213972 4.7 MEDIUM
Local 		google android In LowEnergyClient::MtuChangedCallback of low_energy_client.cc, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with no additional exec… CWE-362
CWE-125
Race Condition
Out-of-bounds Read 		CVE-2020-0008 2024-11-21 13:52 2020-01-9 Show GitHub Exploit DB Packet Storm
213973 5.5 MEDIUM
Local 		google android In flattenString8 of Sensor.cpp, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to local information disclosure with no additional execution priv… CWE-908
 Use of Uninitialized Resource 		CVE-2020-0007 2024-11-21 13:52 2020-01-9 Show GitHub Exploit DB Packet Storm
213974 6.5 MEDIUM
Network 		google android In rw_i93_send_cmd_write_single_block of rw_i93.cc, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to remote information disclosure in the NFC se… CWE-908
 Use of Uninitialized Resource 		CVE-2020-0006 2024-11-21 13:52 2020-01-9 Show GitHub Exploit DB Packet Storm
213975 5.5 MEDIUM
Local 		google android In generateCrop of WallpaperManagerService.java, there is a possible sysui crash due to image exceeding maximum texture size. This could lead to local denial of service with no additional execution p… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-0004 2024-11-21 13:52 2020-01-9 Show GitHub Exploit DB Packet Storm
213976 6.7 MEDIUM
Local 		google android In onCreate of InstallStart.java, there is a possible package validation bypass due to a time-of-check time-of-use vulnerability. This could lead to local escalation of privilege with no additional e… CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2020-0003 2024-11-21 13:52 2020-01-9 Show GitHub Exploit DB Packet Storm
213977 8.8 HIGH
Network 		google android In ih264d_init_decoder of ih264d_api.c, there is a possible out of bounds write due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User … CWE-787
CWE-416
 Out-of-bounds Write
 Use After Free 		CVE-2020-0002 2024-11-21 13:52 2020-01-9 Show GitHub Exploit DB Packet Storm
213978 7.8 HIGH
Local 		google android In getProcessRecordLocked of ActivityManagerService.java isolated apps are not handled correctly. This could lead to local escalation of privilege with no additional execution privileges needed. User… NVD-CWE-noinfo
CVE-2020-0001 2024-11-21 13:52 2020-01-9 Show GitHub Exploit DB Packet Storm
213979 5.5 MEDIUM
Local 		google
debian 		android
debian_linux 		In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. This could lead to local escalation of privilege by corrupting memory shared betwee… CWE-276
Incorrect Default Permissions  		CVE-2020-0009 2024-11-21 13:52 2020-01-9 Show GitHub Exploit DB Packet Storm
213980 7.5 HIGH
Network 		rovinbhandari_ftp_project rovinbhandari_ftp An issue was discovered in rovinbhandari FTP through 2012-03-28. receive_file in file_transfer_functions.c allows remote attackers to cause a denial of service (daemon crash) via a 0xffff datalen fie… CWE-20
 Improper Input Validation  		CVE-2019-9668 2024-11-21 13:52 2020-01-1 Show GitHub Exploit DB Packet Storm