Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227551	7.5	危険	Vastal I-Tech & Co.	-	Vastal I-Tech Agent Zone の view_listing.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3497	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

227552	4.3	警告	Vastal I-Tech & Co.	-	Vastal I-Tech DVD Zone の view_mag.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3496	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

227553	7.5	危険	Vastal I-Tech & Co.	-	Vastal I-Tech DVD Zone の view_mag.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3495	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

227554	6.8	警告	todor lazarov	-	T-HTB Manager の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3494	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

227555	4.3	警告	zenas	-	Zenas PaoBacheca Guestbook におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3493	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

227556	2.1	注意	ron jerome	-	Drupal 用の Bibliography モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3488	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

227557	6.8	警告	TrustPort	-	TrustPort Antivirus などにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3482	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

227558	5	警告	radactive	-	RADactive I-Load の WebCoreModule.ashx における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-3452	2012-12-20 19:28	2009-09-29	Show	GitHub Exploit DB Packet Storm

227559	5	警告	radactive	-	RADactive I-Load の WebCoreModule.ashx におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-3451	2012-12-20 19:28	2009-09-29	Show	GitHub Exploit DB Packet Storm

227560	4.7	警告	reductivelabs	-	puppet の puppetmasterd における制限ファイルにアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3564	2012-12-20 19:28	2008-12-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201991	9.8	CRITICAL Network	cisco	ucs_director ucs_director_express_for_big_data	Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks …	CWE-22 Path Traversal	CVE-2020-3248	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

201992	9.8	CRITICAL Network	cisco	ucs_director ucs_director_express_for_big_data	Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks …	CWE-22 Path Traversal	CVE-2020-3247	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

201993	9.8	CRITICAL Network	cisco	ucs_director ucs_director_express_for_big_data	Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks …	CWE-269 Improper Privilege Management	CVE-2020-3243	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

201994	7.3	HIGH Local	cisco	ucs_director ucs_director_express_for_big_data	Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks …	CWE-20 Improper Input Validation	CVE-2020-3240	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

201995	8.8	HIGH Network	cisco	ucs_director ucs_director_express_for_big_data	Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks …	CWE-22 Path Traversal	CVE-2020-3239	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

201996	7.5	HIGH Network	cisco	5508_wireless_controller_firmware 5520_wireless_controller_firmware	A vulnerability in the 802.11 Generic Advertisement Service (GAS) frame processing function of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to cause an…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-3273	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

201997	7.5	HIGH Network	cisco	5508_wireless_controller_firmware 5520_wireless_controller_firmware	A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol handler of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to …	CWE-20 Improper Input Validation	CVE-2020-3262	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

201998	6.5	MEDIUM Network	cisco	aironet_1542i_firmware aironet_1542d_firmware aironet_1562i_firmware aironet_1562e_firmware aironet_1562d_firmware aironet_1815_firmware aironet_1830_firmware aironet_1840_firmwa…	A vulnerability in the web-based management interface of Cisco Mobility Express Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an af…	CWE-352 Origin Validation Error	CVE-2020-3261	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

201999	6.5	MEDIUM Adjacent	cisco	aironet_1542i_firmware aironet_1542d_firmware aironet_1815_firmware aironet_1830_firmware aironet_1840_firmware aironet_1850_firmware	A vulnerability in Cisco Aironet Series Access Points Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability …	CWE-400 Uncontrolled Resource Consumption	CVE-2020-3260	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

202000	7.8	HIGH Local	cisco	webex_network_recording_player webex_meetings_server webex_meetings_online webex_meetings	A vulnerability in Cisco Webex Network Recording Player for Microsoft Windows and Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system. The…	CWE-20 Improper Input Validation	CVE-2020-3194	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm