Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228091	6.8	警告	SemanticScuttle	-	SemanticScuttle におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-0708	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

228092	7.5	危険	powerscripts	-	PowerClan の admin/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0707	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

228093	7.5	危険	simple-review	-	Joomla! および Mambo 用の simple_review コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0706	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

228094	6.8	警告	powerscripts	-	PowerScripts PowerNews の news.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0705	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

228095	7.5	危険	webmastersite	-	WSN Guest の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0704	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

228096	4	警告	plunet	-	Plunet BusinessManager における重要な Customer または Order データを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-0700	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

228097	3.5	注意	plunet	-	Plunet BusinessManager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0699	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

228098	7.2	危険	トレンドマイクロ	-	Trend Micro Internet Pro および Security Pro の TrendMicro Activity Monitor Module における権限を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2009-0686	2012-12-20 19:10	2009-04-1	Show	GitHub Exploit DB Packet Storm

228099	4.3	警告	ravenphpscripts	-	RavenNuke の Your Account モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0679	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

228100	5	警告	ravenphpscripts	-	RavenNuke の images/captcha.php における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-0678	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208761	6.1	MEDIUM Network	ipandao	editor.md	Cross Site Scripting vulnerability found in Pandao Editor.md v.1.5.0 allows a remote attacker to execute arbitrary code via a crafted script in the <iframe>src parameter.	CWE-79 Cross-site Scripting	CVE-2020-19697	2024-11-21 14:09	2023-04-5	Show	GitHub Exploit DB Packet Storm

208762	9.8	CRITICAL Network	dieboldnixdorf	agilis_xfs_for_opteva	An issue in Diebold Aglis XFS for Opteva v.4.1.61.1 allows a remote attacker to execute arbitrary code via a crafted payload to the ResolveMethod() parameter.	CWE-502 Deserialization of Untrusted Data	CVE-2020-19559	2024-11-21 14:09	2023-09-12	Show	GitHub Exploit DB Packet Storm

208763	7.5	HIGH Network	dlink	dir-619l_firmware	An issue was discovered in /bin/mini_upnpd on D-Link DIR-619L 2.06beta devices. There is a heap buffer overflow allowing remote attackers to restart router via the M-search request ST parameter. No a…	CWE-787 Out-of-bounds Write	CVE-2020-19323	2024-11-21 14:09	2023-09-12	Show	GitHub Exploit DB Packet Storm

208764	9.8	CRITICAL Network	dlink	dir-619l_firmware	Buffer overflow vulnerability in DLINK 619L version B 2.06beta via the curTime parameter on login.	CWE-120 Classic Buffer Overflow	CVE-2020-19320	2024-11-21 14:09	2023-09-12	Show	GitHub Exploit DB Packet Storm

208765	9.8	CRITICAL Network	dlink	dir-619l_firmware	Buffer overflow vulnerability in DLINK 619L version B 2.06beta via the FILECODE parameter on login.	CWE-120 Classic Buffer Overflow	CVE-2020-19319	2024-11-21 14:09	2023-09-12	Show	GitHub Exploit DB Packet Storm

208766	8.8	HIGH Network	dlink	dir-605l_firmware	Buffer Overflow vulnerability in D-Link DIR-605L, hardware version AX, firmware version 1.17beta and below, allows authorized attackers execute arbitrary code via sending crafted data to the webserve…	CWE-787 Out-of-bounds Write	CVE-2020-19318	2024-11-21 14:09	2023-09-12	Show	GitHub Exploit DB Packet Storm

208767	3.3	LOW Local	haxx	curl	Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a large value as the retry delay. NOTE: many parties report that this has no direct security impact on the curl user; however, it m…	CWE-190 Integer Overflow or Wraparound	CVE-2020-19909	2024-11-21 14:09	2023-08-23	Show	GitHub Exploit DB Packet Storm

208768	7.8	HIGH Local	microsoft	z3	There is a use-after-free vulnerability in file pdd_simplifier.cpp in Z3 before 4.8.8. It occurs when the solver attempt to simplify the constraints and causes unexpected memory access. It can cause …	CWE-416 Use After Free	CVE-2020-19725	2024-11-21 14:09	2023-08-23	Show	GitHub Exploit DB Packet Storm

208769	5.5	MEDIUM Local	gnu	binutils	A memory consumption issue in get_data function in binutils/nm.c in GNU nm before 2.34 allows attackers to cause a denial of service via crafted command.	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2020-19724	2024-11-21 14:09	2023-08-23	Show	GitHub Exploit DB Packet Storm

208770	6.5	MEDIUM Network	gnu netapp	ncurses active_iq_unified_manager	Buffer Overflow vulnerability in _nc_find_entry in tinfo/comp_hash.c:70 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.	CWE-787 Out-of-bounds Write	CVE-2020-19190	2024-11-21 14:09	2023-08-23	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed