Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228301	10	危険	tatsuhiro tsujikawa	-	aria の DHTRoutingTableDeserializer.cc におけるバッファオーバーフローの脆弱性	CWE-noinfo 情報不足	CVE-2009-3575	2012-12-20 19:28	2009-10-7	Show	GitHub Exploit DB Packet Storm

228302	9.3	危険	tony million	-	Tuniac におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-3574	2012-12-20 19:28	2009-10-6	Show	GitHub Exploit DB Packet Storm

228303	2.6	注意	xerver	-	Xerver HTTP Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3562	2012-12-20 19:28	2009-10-5	Show	GitHub Exploit DB Packet Storm

228304	5	警告	xerver	-	Xerver HTTP Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-3561	2012-12-20 19:28	2009-10-5	Show	GitHub Exploit DB Packet Storm

228305	2.1	注意	レッドハット	-	Red Hat JBoss Enterprise Application Platform の Twiddle における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-3554	2012-12-20 19:28	2009-12-9	Show	GitHub Exploit DB Packet Storm

228306	5	警告	Wireshark	-	Wireshark の SMB 解析子におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2009-3551	2012-12-20 19:28	2009-10-26	Show	GitHub Exploit DB Packet Storm

228307	5	警告	Wireshark	-	Wireshark の Paltalk 解析子におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-3549	2012-12-20 19:28	2009-10-26	Show	GitHub Exploit DB Packet Storm

228308	5	警告	xerver	-	Xerver HTTP Server における Web ページに対するソースコードを取得される脆弱性	CWE-200 情報漏えい	CVE-2009-3544	2012-12-20 19:28	2009-10-5	Show	GitHub Exploit DB Packet Storm

228309	7.5	危険	phpgenealogy	-	PHPGenealogy の CoupleDB.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-3541	2012-12-20 19:28	2009-10-2	Show	GitHub Exploit DB Packet Storm

228310	4.3	警告	YourFreeWorld.com	-	YourFreeWorld Ultra Classifieds Pro の listads.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3540	2012-12-20 19:28	2009-10-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208101	6.1	MEDIUM Network	ecommerce-codeigniter-bootstrap_project	ecommerce-codeigniter-bootstrap	Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/ecommerce/discounts.php.	CWE-79 Cross-site Scripting	CVE-2020-25089	2024-11-21 14:17	2020-09-3	Show	GitHub Exploit DB Packet Storm

208102	6.1	MEDIUM Network	ecommerce-codeigniter-bootstrap_project	ecommerce-codeigniter-bootstrap	Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/blog/blogpublish.php.	CWE-79 Cross-site Scripting	CVE-2020-25088	2024-11-21 14:17	2020-09-3	Show	GitHub Exploit DB Packet Storm

208103	6.1	MEDIUM Network	ecommerce-codeigniter-bootstrap_project	ecommerce-codeigniter-bootstrap	Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/advanced_settings/languages.php.	CWE-79 Cross-site Scripting	CVE-2020-25087	2024-11-21 14:17	2020-09-3	Show	GitHub Exploit DB Packet Storm

208104	6.1	MEDIUM Network	ecommerce-codeigniter-bootstrap_project	ecommerce-codeigniter-bootstrap	Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/advanced_settings/adminUsers.php.	CWE-79 Cross-site Scripting	CVE-2020-25086	2024-11-21 14:17	2020-09-3	Show	GitHub Exploit DB Packet Storm

208105	8.8	HIGH Network	dlink	dcs-2530l_firmware dcs-2670l_firmware	An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. cgi-bin/ddns_enc.cgi allows authenticated command injection.	CWE-77 Command Injection	CVE-2020-25079	2024-11-21 14:17	2020-09-3	Show	GitHub Exploit DB Packet Storm

208106	7.5	HIGH Network	dlink	dcs-2530l_firmware dcs-2670l_firmware	An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. The unauthenticated /config/getuser endpoint allows for remote administrator password disclosure.	NVD-CWE-noinfo	CVE-2020-25078	2024-11-21 14:17	2020-09-3	Show	GitHub Exploit DB Packet Storm

208107	5.3	MEDIUM Network	debian	freedombox	FreedomBox through 20.13 allows remote attackers to obtain sensitive information from the /server-status page of the Apache HTTP Server, because a connection from the Tor onion service (or from PageK…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-25073	2024-11-21 14:17	2020-09-2	Show	GitHub Exploit DB Packet Storm

208108	8.8	HIGH Network	usvn	usvn	USVN (aka User-friendly SVN) before 1.0.10 allows CSRF, related to the lack of the SameSite Strict feature.	CWE-352 Origin Validation Error	CVE-2020-25070	2024-11-21 14:17	2020-09-2	Show	GitHub Exploit DB Packet Storm

208109	9.8	CRITICAL Network	usvn	usvn	USVN (aka User-friendly SVN) before 1.0.10 allows attackers to execute arbitrary code in the commit view.	NVD-CWE-noinfo	CVE-2020-25069	2024-11-21 14:17	2020-09-2	Show	GitHub Exploit DB Packet Storm

208110	8.8	HIGH Adjacent	netgear	r8300_firmware	NETGEAR R8300 devices before 1.0.2.134 are affected by command injection by an unauthenticated attacker.	CWE-77 Command Injection	CVE-2020-25067	2024-11-21 14:17	2020-09-1	Show	GitHub Exploit DB Packet Storm