Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228111	5	警告	Plohni	-	An image gallery の navigation.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-3366	2012-12-20 19:28	2009-09-24	Show	GitHub Exploit DB Packet Storm

228112	7.5	危険	traza	-	Aurora CMS の add-ons/modules/sysmanager/plugins/install.plugin.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-3365	2012-12-20 19:28	2009-09-24	Show	GitHub Exploit DB Packet Storm

228113	4.3	警告	ufku bayburt	-	Drupal 用の BUEditor モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3363	2012-12-20 19:28	2009-09-9	Show	GitHub Exploit DB Packet Storm

228114	7.5	危険	sznews	-	SZNews の printnews.php3 における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-3362	2012-12-20 19:28	2009-09-24	Show	GitHub Exploit DB Packet Storm

228115	7.5	危険	tourismscripts	-	Tourism Scripts Adult Portal エスコートリストの profile.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3358	2012-12-20 19:28	2009-09-24	Show	GitHub Exploit DB Packet Storm

228116	7.5	危険	Plohni	-	Image voting の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3356	2012-12-20 19:28	2009-09-24	Show	GitHub Exploit DB Packet Storm

228117	10	危険	Steve Lockwood	-	Drupal 用の Node2Node モジュールにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3353	2012-12-20 19:28	2009-09-9	Show	GitHub Exploit DB Packet Storm

228118	10	危険	roshan shah	-	Drupal 用の Quota by role モジュールにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3352	2012-12-20 19:28	2009-09-9	Show	GitHub Exploit DB Packet Storm

228119	10	危険	roshan shah	-	Drupal 用の Subdomain Manager モジュールにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3350	2012-12-20 19:28	2009-09-9	Show	GitHub Exploit DB Packet Storm

228120	10	危険	SAP	-	SAP Crystal Reports Server における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2009-3346	2012-12-20 19:28	2009-09-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
202451	7.4	HIGH Adjacent	cisco	ios_xe	Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allo…	CWE-20 Improper Input Validation	CVE-2020-3494	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

202452	7.4	HIGH Adjacent	cisco	ios_xe	Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allo…	CWE-20 Improper Input Validation	CVE-2020-3493	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

202453	8.6	HIGH Network	cisco	ios_xe	A vulnerability in the Flexible NetFlow Version 9 packet processor of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers and Cisco AireOS Software for Cisco Wireless LAN Contro…	CWE-20 Improper Input Validation	CVE-2020-3492	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

202454	7.4	HIGH Adjacent	cisco	ios_xe	Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allo…	CWE-20 Improper Input Validation	CVE-2020-3489	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

202455	7.4	HIGH Adjacent	cisco	ios_xe	Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allo…	CWE-20 Improper Input Validation	CVE-2020-3488	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

202456	6.5	MEDIUM Adjacent	cisco	ios_xe	Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allo…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-3487	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

202457	6.5	MEDIUM Adjacent	cisco	ios_xe	Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allo…	CWE-20 Improper Input Validation	CVE-2020-3486	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

202458	8.6	HIGH Network	cisco	ios_xe	Multiple vulnerabilities in the Zone-Based Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload or stop forwarding traffic through t…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2020-3480	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

202459	7.5	HIGH Network	cisco	ios ios_xe	A vulnerability in the implementation of Multiprotocol Border Gateway Protocol (MP-BGP) for the Layer 2 VPN (L2VPN) Ethernet VPN (EVPN) address family in Cisco IOS Software and Cisco IOS XE Software …	CWE-400 Uncontrolled Resource Consumption	CVE-2020-3479	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

202460	5.5	MEDIUM Local	cisco	ios	A vulnerability in the CLI parser of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, local attacker to access files from the flash: filesystem. The vulnerability is due to …	CWE-863 Incorrect Authorization	CVE-2020-3477	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm