Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228191 7.5 危険 riotpix - RiotPix の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0109 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
228192 7.5 危険 phpauctions - PHPAuctions における管理者アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0108 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
228193 4.3 警告 phpauctions - PHPAuctions の profile.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0107 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
228194 7.5 危険 phpauctions - PHPAuctions の profile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0106 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
228195 4.3 警告 se-ed - EZpack の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0105 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
228196 7.5 危険 se-ed - EZpack の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0104 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
228197 7.5 危険 playSMS - playSMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0103 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
228198 10 危険 The phpMyAdmin Project - phpMyAdmin の libraries/File.class.php における脆弱性 CWE-310
暗号の問題 		CVE-2008-7252 2012-12-20 19:10 2010-01-15 Show GitHub Exploit DB Packet Storm
228199 10 危険 The phpMyAdmin Project - phpMyAdmin の libraries/File.class.php における脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7251 2012-12-20 19:10 2010-01-19 Show GitHub Exploit DB Packet Storm
228200 9 危険 シマンテック - Symantec Brightmail Gateway Appliance の Control Center における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-0064 2012-12-20 19:10 2009-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221201 8.1 HIGH
Network 		handlebarsjs handlebars Handlebars before 3.0.8 and 4.x before 4.5.3 is vulnerable to Arbitrary Code Execution. The lookup helper fails to properly validate templates, allowing attackers to submit templates that execute arb… CWE-94
Code Injection 		CVE-2019-20920 2024-11-21 13:39 2020-10-1 Show GitHub Exploit DB Packet Storm
221202 4.7 MEDIUM
Local 		perl
fedoraproject
canonical
debian
opensuse 		dbi
fedora
ubuntu_linux
debian_linux
leap 		An issue was discovered in the DBI module before 1.643 for Perl. The hv_fetch() documentation requires checking for NULL and the code does that. But, shortly thereafter, it calls SvOK(profile), causi… CWE-476
 NULL Pointer Dereference 		CVE-2019-20919 2024-11-21 13:39 2020-09-18 Show GitHub Exploit DB Packet Storm
221203 6.5 MEDIUM
Network 		inspircd inspircd An issue was discovered in InspIRCd 3 before 3.1.0. The silence module contains a use after free vulnerability. This vulnerability can be used for remote crashing of an InspIRCd server by any user ab… CWE-416
 Use After Free 		CVE-2019-20918 2024-11-21 13:39 2020-09-11 Show GitHub Exploit DB Packet Storm
221204 6.5 MEDIUM
Network 		inspircd
debian 		inspircd
debian_linux 		An issue was discovered in InspIRCd 2 before 2.0.28 and 3 before 3.3.0. The mysql module contains a NULL pointer dereference when built against mariadb-connector-c 3.0.5 or newer. When combined with … CWE-476
 NULL Pointer Dereference 		CVE-2019-20917 2024-11-21 13:39 2020-09-11 Show GitHub Exploit DB Packet Storm
221205 7.5 HIGH
Network 		pypa
opensuse
debian
oracle 		pip
leap
debian_linux
communications_cloud_native_core_policy
communications_cloud_native_core_network_function_cloud_native_environment 		The pip package before 19.2 for Python allows Directory Traversal when a URL is given in an install command, because a Content-Disposition header can have ../ in a filename, as demonstrated by overwr… CWE-22
Path Traversal 		CVE-2019-20916 2024-11-21 13:39 2020-09-5 Show GitHub Exploit DB Packet Storm
221206 8.1 HIGH
Network 		gnu libredwg An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in bit_write_TF in bits.c. CWE-125
Out-of-bounds Read 		CVE-2019-20915 2024-11-21 13:39 2020-07-17 Show GitHub Exploit DB Packet Storm
221207 9.8 CRITICAL
Network 		gnu libredwg An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwg_encode_common_entity_handle_data in common_entity_handle_data.spec. CWE-476
 NULL Pointer Dereference 		CVE-2019-20914 2024-11-21 13:39 2020-07-17 Show GitHub Exploit DB Packet Storm
221208 8.1 HIGH
Network 		gnu libredwg An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in dwg_encode_entity in common_entity_data.spec. CWE-125
Out-of-bounds Read 		CVE-2019-20913 2024-11-21 13:39 2020-07-17 Show GitHub Exploit DB Packet Storm
221209 8.8 HIGH
Network 		gnu libredwg An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bit_read_TF. CWE-787
 Out-of-bounds Write 		CVE-2019-20912 2024-11-21 13:39 2020-07-17 Show GitHub Exploit DB Packet Storm
221210 6.5 MEDIUM
Network 		gnu libredwg An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to denial of service in bit_calc_CRC in bits.c, related to a for loop. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2019-20911 2024-11-21 13:39 2020-07-17 Show GitHub Exploit DB Packet Storm