Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228271	6.8	警告	SemanticScuttle	-	SemanticScuttle におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-0708	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

228272	7.5	危険	powerscripts	-	PowerClan の admin/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0707	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

228273	7.5	危険	simple-review	-	Joomla! および Mambo 用の simple_review コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0706	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

228274	6.8	警告	powerscripts	-	PowerScripts PowerNews の news.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0705	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

228275	7.5	危険	webmastersite	-	WSN Guest の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0704	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

228276	4	警告	plunet	-	Plunet BusinessManager における重要な Customer または Order データを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-0700	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

228277	3.5	注意	plunet	-	Plunet BusinessManager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0699	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

228278	7.2	危険	トレンドマイクロ	-	Trend Micro Internet Pro および Security Pro の TrendMicro Activity Monitor Module における権限を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2009-0686	2012-12-20 19:10	2009-04-1	Show	GitHub Exploit DB Packet Storm

228279	4.3	警告	ravenphpscripts	-	RavenNuke の Your Account モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0679	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

228280	5	警告	ravenphpscripts	-	RavenNuke の images/captcha.php における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-0678	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195311	7.5	HIGH Network	buffalo	wsr-2533dhpl2-bk_firmware wsr-2533dhp3-bk_firmware	The web interfaces of Buffalo WSR-2533DHPL2 firmware version <= 1.02 and WSR-2533DHP3 firmware version <= 1.24 do not properly restrict access to sensitive information from an unauthorized actor.	CWE-287 Improper Authentication	CVE-2021-20092	2024-11-21 14:45	2021-04-30	Show	GitHub Exploit DB Packet Storm

195312	8.8	HIGH Network	buffalo	wsr-2533dhpl2-bk_firmware wsr-2533dhp3-bk_firmware	The web interfaces of Buffalo WSR-2533DHPL2 firmware version <= 1.02 and WSR-2533DHP3 firmware version <= 1.24 do not properly sanitize user input. An authenticated remote attacker could leverage thi…	NVD-CWE-noinfo	CVE-2021-20091	2024-11-21 14:45	2021-04-30	Show	GitHub Exploit DB Packet Storm

195313	9.8	CRITICAL Network	buffalo	wsr-2533dhpl2-bk_firmware wsr-2533dhp3-bk_firmware	A path traversal vulnerability in the web interfaces of Buffalo WSR-2533DHPL2 firmware version <= 1.02 and WSR-2533DHP3 firmware version <= 1.24 could allow unauthenticated remote attackers to bypass…	CWE-22 Path Traversal	CVE-2021-20090	2024-11-21 14:45	2021-04-30	Show	GitHub Exploit DB Packet Storm

195314	8.8	HIGH Network	purl_project	purl	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in purl 2.3.2 allows a malicious user to inject properties into Object.prototype.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-20089	2024-11-21 14:45	2021-04-24	Show	GitHub Exploit DB Packet Storm

195315	8.8	HIGH Network	jquery-bbq_project	jquery-bbq	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-bbq 1.2.1 allows a malicious user to inject properties into Object.prototype.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-20086	2024-11-21 14:45	2021-04-24	Show	GitHub Exploit DB Packet Storm

195316	8.8	HIGH Network	backbone-query-parameters_project	backbone-query-parameters	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in backbone-query-parameters 0.4.0 allows a malicious user to inject properties into Object.prototype.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-20085	2024-11-21 14:45	2021-04-24	Show	GitHub Exploit DB Packet Storm

195317	8.8	HIGH Network	jquery-plugin-query-object_project	jquery-plugin-query-object	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-plugin-query-object 2.2.3 allows a malicious user to inject properties into Object.prototype.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-20083	2024-11-21 14:45	2021-04-24	Show	GitHub Exploit DB Packet Storm

195318	8.8	HIGH Network	mootools	mootools-more	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in mootools-more 1.6.0 allows a malicious user to inject properties into Object.prototype.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-20088	2024-11-21 14:45	2021-04-24	Show	GitHub Exploit DB Packet Storm

195319	8.8	HIGH Network	acemetrix	jquery-deparam	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-deparam 0.5.1 allows a malicious user to inject properties into Object.prototype.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-20087	2024-11-21 14:45	2021-04-24	Show	GitHub Exploit DB Packet Storm

195320	8.8	HIGH Network	jquery-sparkle_project	jquery-sparkle	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-sparkle 1.5.2-beta allows a malicious user to inject properties into Object.prototype.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-20084	2024-11-21 14:45	2021-04-24	Show	GitHub Exploit DB Packet Storm