Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226831 7.5 危険 smartsitecms - smartSite CMS の articles.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0405 2012-12-20 19:10 2009-02-3 Show GitHub Exploit DB Packet Storm
226832 6.8 警告 socialengine - SocialEngine の blog.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0400 2012-12-20 19:10 2009-02-3 Show GitHub Exploit DB Packet Storm
226833 7.8 危険 sony ericsson - Sony Ericsson W910i などの電話機におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0396 2012-12-20 19:10 2009-02-2 Show GitHub Exploit DB Packet Storm
226834 7.5 危険 ple cms - PLEs CMS の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0394 2012-12-20 19:10 2009-02-2 Show GitHub Exploit DB Packet Storm
226835 6.8 警告 sitexs cms - SiteXS CMS の post.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0371 2012-12-20 19:10 2009-01-30 Show GitHub Exploit DB Packet Storm
226836 9.3 危険 wesnoth - Wesnoth の Python AI モジュールにおけるサンドボックスをエスケープされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0367 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
226837 4.3 警告 wesnoth - Wesnoth の src/server/simple_wml.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0366 2012-12-20 19:10 2009-03-12 Show GitHub Exploit DB Packet Storm
226838 9 危険 WING FTP software - WinFTP の WFTPSRV.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0351 2012-12-20 19:10 2009-01-29 Show GitHub Exploit DB Packet Storm
226839 7.2 危険 Niels Provos - x86_64 Linux 上で稼動している Niels Provos Systrace におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0342 2012-12-20 19:10 2009-01-29 Show GitHub Exploit DB Packet Storm
226840 6.8 警告 Quirm - Simple PHP Newsletter におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0340 2012-12-20 19:10 2009-01-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210201 7.5 HIGH
Network 		troglobit uftpd In uftpd before 2.12, handle_CWD in ftpcmd.c mishandled the path provided by the user, causing a NULL pointer dereference and denial of service, as demonstrated by a CWD /.. command. CWE-476
 NULL Pointer Dereference 		CVE-2020-14149 2024-11-21 14:02 2020-06-16 Show GitHub Exploit DB Packet Storm
210202 7.5 HIGH
Network 		barton
debian
fedoraproject 		ngircd
debian_linux
fedora 		The Server-Server protocol implementation in ngIRCd before 26~rc2 allows an out-of-bounds access, as demonstrated by the IRC_NJOIN() function. CWE-125
Out-of-bounds Read 		CVE-2020-14148 2024-11-21 14:02 2020-06-16 Show GitHub Exploit DB Packet Storm
210203 7.7 HIGH
Network 		redislabs
oracle
suse
debian 		redis
communications_operations_monitor
linux_enterprise
debian_linux 		An integer overflow in the getnum function in lua_struct.c in Redis before 6.0.3 allows context-dependent attackers with permission to run Lua code in a Redis session to cause a denial of service (me… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2020-14147 2024-11-21 14:02 2020-06-16 Show GitHub Exploit DB Packet Storm
210204 5.3 MEDIUM
Network 		pcre
apple
gitlab
oracle
netapp
splunk 		pcre
macos
gitlab
communications_cloud_native_core_policy
cloud_backup
steelstore_cloud_integrated_storage
ontap_select_deploy_administration_utility
clustered_data_ontap
acti… 		libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring. CWE-190
 Integer Overflow or Wraparound 		CVE-2020-14155 2024-11-21 14:02 2020-06-16 Show GitHub Exploit DB Packet Storm
210205 4.8 MEDIUM
Network 		mutt
canonical 		mutt
ubuntu_linux 		Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate. NVD-CWE-Other
CVE-2020-14154 2024-11-21 14:02 2020-06-16 Show GitHub Exploit DB Packet Storm
210206 7.1 HIGH
Local 		ijg libjpeg In IJG JPEG (aka libjpeg) from version 8 through 9c, jdhuff.c has an out-of-bounds array read for certain table pointers. CWE-125
Out-of-bounds Read 		CVE-2020-14153 2024-11-21 14:02 2020-06-16 Show GitHub Exploit DB Packet Storm
210207 7.1 HIGH
Local 		ijg
debian 		libjpeg
debian_linux 		In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly causing excessive memory consumption. CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-14152 2024-11-21 14:02 2020-06-16 Show GitHub Exploit DB Packet Storm
210208 5.5 MEDIUM
Local 		gnu bison GNU Bison before 3.5.4 allows attackers to cause a denial of service (application crash). NOTE: there is a risk only if Bison is used with untrusted input, and an observed bug happens to cause unsafe… NVD-CWE-noinfo
CVE-2020-14150 2024-11-21 14:02 2020-06-16 Show GitHub Exploit DB Packet Storm
210209 9.8 CRITICAL
Network 		meetecho janus An issue was discovered in janus-gateway (aka Janus WebRTC Server) through 0.10.0. janus_get_codec_from_pt in utils.c has a Buffer Overflow via long value in an SDP Offer packet. CWE-120
Classic Buffer Overflow 		CVE-2020-14034 2024-11-21 14:02 2020-06-16 Show GitHub Exploit DB Packet Storm
210210 9.8 CRITICAL
Network 		meetecho janus An issue was discovered in janus-gateway (aka Janus WebRTC Server) through 0.10.0. janus_streaming_rtsp_parse_sdp in plugins/janus_streaming.c has a Buffer Overflow via a crafted RTSP server. CWE-120
Classic Buffer Overflow 		CVE-2020-14033 2024-11-21 14:02 2020-06-16 Show GitHub Exploit DB Packet Storm