Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 25, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228081 | 4.3 | 警告 | pilotgroup | - | PG eTraining におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3513 | 2012-12-20 19:28 | 2009-10-1 | Show | GitHub Exploit DB Packet Storm |
| 228082 | 4.3 | 警告 | phplemon | - | MyWeight におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3512 | 2012-12-20 19:28 | 2009-10-1 | Show | GitHub Exploit DB Packet Storm |
| 228083 | 7.5 | 危険 | Vastal I-Tech & Co. | - | Vastal I-Tech MMORPG Zone の view_news.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-3505 | 2012-12-20 19:28 | 2009-09-30 | Show | GitHub Exploit DB Packet Storm |
| 228084 | 7.5 | 危険 | Vastal I-Tech & Co. | - | Vastal I-Tech Agent Zone の view_listing.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-3497 | 2012-12-20 19:28 | 2009-09-30 | Show | GitHub Exploit DB Packet Storm |
| 228085 | 4.3 | 警告 | Vastal I-Tech & Co. | - | Vastal I-Tech DVD Zone の view_mag.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3496 | 2012-12-20 19:28 | 2009-09-30 | Show | GitHub Exploit DB Packet Storm |
| 228086 | 7.5 | 危険 | Vastal I-Tech & Co. | - | Vastal I-Tech DVD Zone の view_mag.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-3495 | 2012-12-20 19:28 | 2009-09-30 | Show | GitHub Exploit DB Packet Storm |
| 228087 | 6.8 | 警告 | todor lazarov | - | T-HTB Manager の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-3494 | 2012-12-20 19:28 | 2009-09-30 | Show | GitHub Exploit DB Packet Storm |
| 228088 | 4.3 | 警告 | zenas | - | Zenas PaoBacheca Guestbook におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3493 | 2012-12-20 19:28 | 2009-09-30 | Show | GitHub Exploit DB Packet Storm |
| 228089 | 2.1 | 注意 | ron jerome | - | Drupal 用の Bibliography モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3488 | 2012-12-20 19:28 | 2009-09-30 | Show | GitHub Exploit DB Packet Storm |
| 228090 | 6.8 | 警告 | TrustPort | - | TrustPort Antivirus などにおける権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-3482 | 2012-12-20 19:28 | 2009-09-30 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 26, 2026, 4:05 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 215651 | 8.8 |
HIGH
Network |
microsoft |
windows_10 windows_server_2008 windows_server_2012 windows_server_2016 windows_7 windows_8.1 windows_server_2019 |
A remote code execution vulnerability exists in the way that Windows handles objects in memory, aka 'Windows Remote Code Execution Vulnerability'. |
NVD-CWE-noinfo
|
CVE-2020-0662 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 215652 | 6.8 |
MEDIUM
Adjacent |
microsoft |
windows_server_2016 windows_10 windows_server_2019 |
A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Se… |
CWE-20
Improper Input Validation |
CVE-2020-0661 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 215653 | 7.5 |
HIGH
Network |
microsoft |
windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_rt_8.1 windows_server_2019 |
A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Pr… |
NVD-CWE-noinfo
|
CVE-2020-0660 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 215654 | 7.8 |
HIGH
Local |
microsoft |
windows_10 windows_server_2016 windows_server_2019 |
An elevation of privilege vulnerability exists when the Windows Data Sharing Service improperly handles file operations, aka 'Windows Data Sharing Service Elevation of Privilege Vulnerability'. This … |
NVD-CWE-noinfo
|
CVE-2020-0659 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 215655 | 5.5 |
MEDIUM
Local |
microsoft |
windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019 |
An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Infor… |
NVD-CWE-noinfo
|
CVE-2020-0658 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 215656 | 7.8 |
HIGH
Local |
microsoft |
windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019 |
An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Priv… |
NVD-CWE-noinfo
|
CVE-2020-0657 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 215657 | 8.0 |
HIGH
Network |
microsoft |
windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019 |
A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Se… |
NVD-CWE-noinfo
|
CVE-2020-0655 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 215658 | 8.8 |
HIGH
Network |
microsoft | sql_server | A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it incorrectly handles page requests, aka 'Microsoft SQL Server Reporting Services Remote Code Execution V… |
CWE-502
Deserialization of Untrusted Data |
CVE-2020-0618 | 2024-11-21 13:53 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 215659 | 5.5 |
MEDIUM
Local |
intel opensuse debian canonical fedoraproject |
core_i7-8700b_firmware core_i7-8569u_firmware core_i7_8650u_firmware core_i7_8565u_firmware core_i7_8560u_firmware core_i7_8559u_firmware core_i7_8550u_firmware core_i7_8500y_fir… |
Cleanup errors in some data cache evictions for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. |
CWE-404
Improper Resource Shutdown or Release |
CVE-2020-0549 | 2024-11-21 13:53 | 2020-01-28 | Show | GitHub Exploit DB Packet Storm |
| 215660 | 5.5 |
MEDIUM
Local |
intel |
core_i7-8700b_firmware core_i7-8569u_firmware core_i7_8650u_firmware core_i7_8565u_firmware core_i7_8560u_firmware core_i7_8559u_firmware core_i7_8550u_firmware core_i7_8500y_fir… |
Cleanup errors in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. |
CWE-404
Improper Resource Shutdown or Release |
CVE-2020-0548 | 2024-11-21 13:53 | 2020-01-28 | Show | GitHub Exploit DB Packet Storm |