Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228081	9.3	危険	ultraplayer	-	UltraPlayer Media Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4863	2012-12-20 19:28	2010-05-11	Show	GitHub Exploit DB Packet Storm

228082	4.3	警告	supportpro	-	SupportPRO SupportDesk の shownews.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4861	2012-12-20 19:28	2010-05-11	Show	GitHub Exploit DB Packet Storm

228083	4.3	警告	turnkeyforms	-	Yahoo Answers Clone の questiondetail.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4858	2012-12-20 19:28	2010-05-11	Show	GitHub Exploit DB Packet Storm

228084	7.5	危険	scripts.oldguy	-	TalkBack の addons/import.php における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-4854	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

228085	6.8	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4849	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

228086	4.3	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4848	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

228087	5	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro の設定ページにおける重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2009-4845	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

228088	5	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro における重要な Tomcat の情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-4844	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

228089	7.5	危険	toutvirtual	-	ToutVirtual VirtualIQ Pro における任意のコマンドを実行される脆弱性	CWE-287 不適切な認証	CVE-2009-4843	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

228090	4.3	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4842	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208091	9.8	CRITICAL Network	evenbalance	punkbuster	Directory Traversal vulnerability in Server functionalty in Even Balance Punkbuster version 1.902 before 1.905 allows remote attackers to execute arbitrary code.	CWE-22 Path Traversal	CVE-2020-26037	2024-11-21 14:19	2023-08-16	Show	GitHub Exploit DB Packet Storm

208092	5.3	MEDIUM Network	cisco	asyncos	A vulnerability in the zip decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass content filters that are c…	NVD-CWE-noinfo	CVE-2020-26082	2024-11-21 14:19	2023-08-5	Show	GitHub Exploit DB Packet Storm

208093	6.5	MEDIUM Network	cisco	catalyst_sd-wan_manager	A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct path traversal attacks and obtain read access to sensit…	CWE-22 Path Traversal	CVE-2020-26065	2024-11-21 14:19	2023-08-5	Show	GitHub Exploit DB Packet Storm

208094	8.1	HIGH Network	cisco	catalyst_sd-wan_manager	A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected system. The v…	CWE-611 XXE	CVE-2020-26064	2024-11-21 14:19	2023-08-5	Show	GitHub Exploit DB Packet Storm

208095	9.8	CRITICAL Network	gnuplot_project	gnuplot	gnuplot v5.5 was discovered to contain a buffer overflow via the function plotrequest().	CWE-120 Classic Buffer Overflow	CVE-2020-25969	2024-11-21 14:19	2023-07-6	Show	GitHub Exploit DB Packet Storm

208096	7.5	HIGH Network	is.js_project	is.js	is.js is a general-purpose check library. Versions 0.9.0 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service (ReDoS). is.js uses a regex copy…	CWE-1333 Inefficient Regular Expression Complexity	CVE-2020-26302	2024-11-21 14:19	2022-12-23	Show	GitHub Exploit DB Packet Storm

208097	7.5	HIGH Network	dell oracle	bsafe_micro-edition-suite http_server security_service database weblogic_server_proxy_plug-in	Dell BSAFE Micro Edition Suite, versions prior to 4.5.1, contain a Buffer Over-Read Vulnerability.	CWE-125 Out-of-bounds Read	CVE-2020-26185	2024-11-21 14:19	2022-06-2	Show	GitHub Exploit DB Packet Storm

208098	7.5	HIGH Network	dell oracle	bsafe_micro-edition-suite http_server security_service weblogic_server_proxy_plug-in	Dell BSAFE Micro Edition Suite, versions prior to 4.5.1, contain an Improper Certificate Validation vulnerability.	CWE-295 Improper Certificate Validation	CVE-2020-26184	2024-11-21 14:19	2022-06-2	Show	GitHub Exploit DB Packet Storm

208099	7.8	HIGH Local	shopxo	shopxo	The PluginsUpload function in application/service/PluginsAdminService.php of ShopXO v1.9.0 contains an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via uploadi…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-26008	2024-11-21 14:19	2022-03-21	Show	GitHub Exploit DB Packet Storm

208100	7.8	HIGH Local	shopxo	shopxo	An arbitrary file upload vulnerability in the upload payment plugin of ShopXO v1.9.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-26007	2024-11-21 14:19	2022-03-21	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed