Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227301 7.5 危険 vspanel - VS PANEL の results.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3595 2012-12-20 19:28 2009-10-8 Show GitHub Exploit DB Packet Storm
227302 4.3 警告 qtmsoft - Qualiteam X-Cart の customer/home.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3592 2012-12-20 19:28 2009-10-8 Show GitHub Exploit DB Packet Storm
227303 7.5 危険 vspanel - VS PANEL の showcat.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3590 2012-12-20 19:28 2009-10-8 Show GitHub Exploit DB Packet Storm
227304 5 警告 sql-ledger - SQL-Ledger におけるクッキーをキャプチャされる脆弱性 CWE-16
環境設定 		CVE-2009-3584 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
227305 5.1 警告 sql-ledger - SQL-Ledger の Preferences メニュー項目におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3583 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
227306 6.5 警告 sql-ledger - SQL-Ledger の delete サブルーチンにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3582 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
227307 3.5 注意 sql-ledger - SQL-Ledger におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3581 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
227308 6.8 警告 sql-ledger - SQL-Ledger の am.pl におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-3580 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
227309 10 危険 tatsuhiro tsujikawa - aria の DHTRoutingTableDeserializer.cc におけるバッファオーバーフローの脆弱性 CWE-noinfo
情報不足 		CVE-2009-3575 2012-12-20 19:28 2009-10-7 Show GitHub Exploit DB Packet Storm
227310 9.3 危険 tony million - Tuniac におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-3574 2012-12-20 19:28 2009-10-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201941 9.8 CRITICAL
Network 		demokratian demokratian A vulnerability classified as critical has been found in Demokratian. This affects an unknown part of the file install/install3.php. The manipulation leads to privilege escalation. It is possible to … CWE-269
 Improper Privilege Management 		CVE-2020-36542 2024-11-21 14:29 2022-06-8 Show GitHub Exploit DB Packet Storm
201942 9.8 CRITICAL
Network 		demokratian demokratian A vulnerability was found in Demokratian. It has been rated as critical. Affected by this issue is some unknown functionality of the file basicos_php/genera_select.php. The manipulation of the argume… CWE-89
SQL Injection 		CVE-2020-36541 2024-11-21 14:29 2022-06-8 Show GitHub Exploit DB Packet Storm
201943 9.8 CRITICAL
Network 		neetai neetai_tech A vulnerability, which was classified as critical, was found in Neetai Tech. Affected is an unknown function of the file /product.php. The manipulation leads to sql injection. It is possible to launc… CWE-89
SQL Injection 		CVE-2020-36540 2024-11-21 14:29 2022-06-8 Show GitHub Exploit DB Packet Storm
201944 9.8 CRITICAL
Network 		logicoycreativo logico_y_creativo A vulnerability was found in Lógico y Creativo 1.0 and classified as critical. This issue affects some unknown processing. The manipulation of the argument id leads to sql injection. The attack may b… CWE-89
SQL Injection 		CVE-2020-36539 2024-11-21 14:29 2022-06-8 Show GitHub Exploit DB Packet Storm
201945 8.8 HIGH
Network 		etan etan_cms A vulnerability was found in Eatan CMS. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection. The attack can be launch… CWE-89
SQL Injection 		CVE-2020-36538 2024-11-21 14:29 2022-06-8 Show GitHub Exploit DB Packet Storm
201946 8.8 HIGH
Network 		everywhere everywhere_cms A vulnerability was found in Everywhere CMS. It has been classified as critical. Affected is an unknown function. The manipulation of the argument id leads to sql injection. It is possible to launch … CWE-89
SQL Injection 		CVE-2020-36537 2024-11-21 14:29 2022-06-8 Show GitHub Exploit DB Packet Storm
201947 8.8 HIGH
Network 		brandbugle brandbugle A vulnerability was found in Brandbugle. It has been rated as critical. Affected by this issue is some unknown functionality of the file /main.php. The manipulation leads to sql injection. The attack… CWE-89
SQL Injection 		CVE-2020-36536 2024-11-21 14:29 2022-06-8 Show GitHub Exploit DB Packet Storm
201948 8.8 HIGH
Network 		minmax minmax A vulnerability classified as critical has been found in MINMAX. This affects an unknown part of the file /newsDia.php. The manipulation of the argument id leads to sql injection. It is possible to i… CWE-89
SQL Injection 		CVE-2020-36535 2024-11-21 14:29 2022-06-8 Show GitHub Exploit DB Packet Storm
201949 6.5 MEDIUM
Network 		easyiicms easyiicms A vulnerability was found in easyii CMS. It has been classified as problematic. Affected is an unknown function of the file /admin/sign/out. The manipulation leads to cross site request forgery. It i… CWE-352
 Origin Validation Error 		CVE-2020-36534 2024-11-21 14:29 2022-06-8 Show GitHub Exploit DB Packet Storm
201950 9.8 CRITICAL
Network 		klapp app A vulnerability was found in Klapp App and classified as problematic. This issue affects some unknown processing of the JSON Web Token Handler. The manipulation leads to weak authentication. The atta… CWE-287
Improper Authentication 		CVE-2020-36533 2024-11-21 14:29 2022-06-8 Show GitHub Exploit DB Packet Storm