Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228121	7.5	危険	questions answered	-	Questions Answered の管理インターフェースにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4728	2012-12-20 19:28	2010-03-18	Show	GitHub Exploit DB Packet Storm

228122	4.3	警告	phpscriptsnow	-	Real Time Currency Exchange の rates.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4715	2012-12-20 19:28	2010-03-15	Show	GitHub Exploit DB Packet Storm

228123	7.5	危険	tukanas	-	Tukanas Classifieds Script の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4712	2012-12-20 19:28	2010-03-15	Show	GitHub Exploit DB Packet Storm

228124	4.3	警告	Pligg	-	Pligg におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2009-4788	2012-12-20 19:28	2009-11-30	Show	GitHub Exploit DB Packet Storm

228125	6.8	警告	Pligg	-	Pligg におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4787	2012-12-20 19:28	2009-11-30	Show	GitHub Exploit DB Packet Storm

228126	4.3	警告	Pligg	-	Pligg におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4786	2012-12-20 19:28	2009-11-30	Show	GitHub Exploit DB Packet Storm

228127	4.3	警告	phpMyFAQ	-	phpMyFAQ の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4780	2012-12-20 19:28	2009-12-1	Show	GitHub Exploit DB Packet Storm

228128	6.8	警告	Ubercart	-	Drupal 用の Ubercart モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4773	2012-12-20 19:28	2009-11-18	Show	GitHub Exploit DB Packet Storm

228129	4.3	警告	Ubercart	-	Drupal 用の Ubercart モジュールにおける重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2009-4772	2012-12-20 19:28	2009-11-18	Show	GitHub Exploit DB Packet Storm

228130	5	警告	Ubercart	-	Drupal 用の Ubercart モジュールにおける不特定の "複製操作" を誘発される脆弱性	CWE-20 不適切な入力確認	CVE-2009-4771	2012-12-20 19:28	2009-11-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208111	5.5	MEDIUM Local	trendmicro	interscan_messaging_security_virtual_appliance	Trend Micro InterScan Messaging Security Virtual Appliance (IMSVA) 9.1 is vulnerable to a server side request forgery vulnerability which could allow an authenticated attacker to abuse the product's …	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-27018	2024-11-21 14:20	2020-11-10	Show	GitHub Exploit DB Packet Storm

208112	4.9	MEDIUM Network	trendmicro	interscan_messaging_security_virtual_appliance	Trend Micro InterScan Messaging Security Virtual Appliance (IMSVA) 9.1 is vulnerable to an XML External Entity Processing (XXE) vulnerability which could allow an authenticated administrator to read …	CWE-611 XXE	CVE-2020-27017	2024-11-21 14:20	2020-11-10	Show	GitHub Exploit DB Packet Storm

208113	8.8	HIGH Network	trendmicro	interscan_messaging_security_virtual_appliance	Trend Micro InterScan Messaging Security Virtual Appliance (IMSVA) 9.1 is vulnerable to a cross-site request forgery (CSRF) vulnerability which could allow an attacker to modify policy rules by trick…	CWE-352 Origin Validation Error	CVE-2020-27016	2024-11-21 14:20	2020-11-10	Show	GitHub Exploit DB Packet Storm

208114	9.8	CRITICAL Network	percona	percona_server	An issue was discovered in the MongoDB Simple LDAP plugin through 2020-10-02 for Percona Server when using the SimpleLDAP authentication in conjunction with Microsoft’s Active Directory, Percona has …	CWE-287 Improper Authentication	CVE-2020-26542	2024-11-21 14:20	2020-11-10	Show	GitHub Exploit DB Packet Storm

208115	6.7	MEDIUM Local	cisco	sd-wan_vmanage	A vulnerability in the remote management feature of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to inject arbitrary commands and potentially gain elevated privileges. T…	CWE-88 Argument Injection	CVE-2020-27129	2024-11-21 14:20	2020-11-7	Show	GitHub Exploit DB Packet Storm

208116	6.5	MEDIUM Network	cisco	sd-wan	A vulnerability in the application data endpoints of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to write arbitrary files to an affected system. The vulnerability is d…	CWE-22 Path Traversal	CVE-2020-27128	2024-11-21 14:20	2020-11-7	Show	GitHub Exploit DB Packet Storm

208117	5.5	MEDIUM Local	cisco	anyconnect_secure_mobility_client	A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to read arbitrary files on the unde…	NVD-CWE-noinfo	CVE-2020-27123	2024-11-21 14:20	2020-11-7	Show	GitHub Exploit DB Packet Storm

208118	6.7	MEDIUM Local	cisco	identity_services_engine	A vulnerability in the Microsoft Active Directory integration of Cisco Identity Services Engine (ISE) could allow an authenticated, local attacker to elevate privileges on an affected device. To expl…	CWE-269 Improper Privilege Management	CVE-2020-27122	2024-11-21 14:20	2020-11-7	Show	GitHub Exploit DB Packet Storm

208119	6.5	MEDIUM Network	cisco	unified_communications_manager_im_and_presence_service	A vulnerability in Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) Software could allow an authenticated, remote attacker to cause the Cisco XCP Authentication Se…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2020-27121	2024-11-21 14:20	2020-11-7	Show	GitHub Exploit DB Packet Storm

208120	7.5	HIGH Network	lightbend	play_framework	An issue was discovered in PlayJava in Play Framework 2.6.0 through 2.8.2. The body parsing of HTTP requests eagerly parses a payload given a Content-Type header. A deep JSON structure sent to a vali…	CWE-787 Out-of-bounds Write	CVE-2020-27196	2024-11-21 14:20	2020-11-6	Show	GitHub Exploit DB Packet Storm