Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228271	7.5	危険	tcpdb	-	TCPDB の user/index.php における admin アカウントを追加される脆弱性	CWE-287 不適切な認証	CVE-2009-1670	2012-12-20 19:10	2009-05-18	Show	GitHub Exploit DB Packet Storm

228272	10	危険	Smarty	-	Smarty の libs/plugins/function.math.php における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1669	2012-12-20 19:10	2009-05-18	Show	GitHub Exploit DB Packet Storm

228273	4	警告	TYPSoft	-	TYPSoft FTP Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-1668	2012-12-20 19:10	2009-05-18	Show	GitHub Exploit DB Packet Storm

228274	7.5	危険	recipescript	-	Wright Way Services Recipe Script の admin/login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1662	2012-12-20 19:10	2009-05-18	Show	GitHub Exploit DB Packet Storm

228275	9.3	危険	urusoft	-	URUWorks ViPlay3 におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1660	2012-12-20 19:10	2009-05-18	Show	GitHub Exploit DB Packet Storm

228276	7.5	危険	realtywebware	-	Realty Webware Technologies Realty Web-Base の admin/admin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1658	2012-12-20 19:10	2009-05-18	Show	GitHub Exploit DB Packet Storm

228277	10	危険	Xerox	-	Xerox WorkCentre における任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2009-1656	2012-12-20 19:10	2009-05-15	Show	GitHub Exploit DB Packet Storm

228278	7.8	危険	tinybutstrong	-	TinyButStrong の examples/tbs_us_examples_0view.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1653	2012-12-20 19:10	2009-05-16	Show	GitHub Exploit DB Packet Storm

228279	7.5	危険	tenfourzero	-	Shutter の photos.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1650	2012-12-20 19:10	2009-05-16	Show	GitHub Exploit DB Packet Storm

228280	7.5	危険	SUSE	-	SUSE Linux 上で稼動する yast2-ldap-server の YaST2 LDAP モジュールにおけるネットワークサービスをアクセスされる脆弱性	CWE-16 環境設定	CVE-2009-1648	2012-12-20 19:10	2009-07-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
215591	5.5	MEDIUM Local	microsoft	windows_rt_8.1 windows_server_2008 windows_server_2012 windows_10 windows_server_2016 windows_8.1 windows_7 windows_server_2019	An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Infor…	CWE-125 Out-of-bounds Read	CVE-2020-0615	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

215592	7.8	HIGH Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is …	NVD-CWE-noinfo	CVE-2020-0614	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

215593	7.8	HIGH Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is …	NVD-CWE-noinfo	CVE-2020-0613	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

215594	7.5	HIGH Network	microsoft	windows_server_2016 windows_server_2019	A denial of service vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Rem…	NVD-CWE-noinfo	CVE-2020-0612	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

215595	7.5	HIGH Network	microsoft	windows_rt_8.1 windows_server_2008 windows_server_2012 windows_10 windows_server_2016 windows_8.1 windows_7 windows_server_2019	A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'.	NVD-CWE-noinfo	CVE-2020-0611	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

215596	9.8	CRITICAL Network	microsoft	windows_server_2012 windows_server_2016 windows_server_2019	A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted reques…	NVD-CWE-noinfo	CVE-2020-0610	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

215597	9.8	CRITICAL Network	microsoft	windows_server_2012 windows_server_2016 windows_server_2019	A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted reques…	NVD-CWE-noinfo	CVE-2020-0609	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

215598	5.5	MEDIUM Local	microsoft	windows_rt_8.1 windows_server_2008 windows_server_2012 windows_10 windows_server_2016 windows_8.1 windows_7 windows_server_2019	An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'.	NVD-CWE-noinfo	CVE-2020-0608	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

215599	5.5	MEDIUM Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_server_2016 windows_8.1 windows_7 windows_server_2019	An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Information Disclosure Vulnerability'.	NVD-CWE-noinfo	CVE-2020-0607	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

215600	8.8	HIGH Network	microsoft	.net_framework .net_core	A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary…	CWE-20 Improper Input Validation	CVE-2020-0606	2024-11-21 13:53	2020-01-15	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed