Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228411 6.8 警告 webSPELL - webSPELL の src/func/language.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1912 2012-12-20 19:10 2009-02-5 Show GitHub Exploit DB Packet Storm
228412 7.5 危険 rafal kucharski - RTWebalbum の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1910 2012-12-20 19:10 2009-06-4 Show GitHub Exploit DB Packet Storm
228413 10 危険 サン・マイクロシステムズ - Fedora 上で稼動する OpenJDK の IcedTea における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1896 2012-12-20 19:10 2009-08-7 Show GitHub Exploit DB Packet Storm
228414 7.2 危険 PulseAudio - PulseAudio における権限を取得される脆弱性 CWE-362
競合状態 		CVE-2009-1894 2012-12-20 19:10 2009-07-17 Show GitHub Exploit DB Packet Storm
228415 7.5 危険 PHPNUKE - Francisco Burzi PHP-Nuke の main/tracking/userLog.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1842 2012-12-20 19:10 2009-06-1 Show GitHub Exploit DB Packet Storm
228416 10 危険 slsknet - Soulseek におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1830 2012-12-20 19:10 2009-05-29 Show GitHub Exploit DB Packet Storm
228417 9.3 危険 sonicspot - Sonic Spot Audioactive Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1815 2012-12-20 19:10 2009-05-29 Show GitHub Exploit DB Packet Storm
228418 7.5 危険 submitterscript - Submitter Script の admin/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1813 2012-12-20 19:10 2009-05-29 Show GitHub Exploit DB Packet Storm
228419 7.5 危険 videoscript - VideoScript.us YouTube Video Script の admin/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1804 2012-12-20 19:10 2009-05-28 Show GitHub Exploit DB Packet Storm
228420 6.8 警告 sebastian-thiele - ST-Gallery の st_admin/gallery_output.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1799 2012-12-20 19:10 2009-05-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208291 9.8 CRITICAL
Network 		thinkphp thinkphp ThinkPHP v3.2.3 and below contains a SQL injection vulnerability which is triggered when the array is not passed to the "where" and "query" methods. CWE-89
SQL Injection 		CVE-2020-20120 2024-11-21 14:11 2021-09-29 Show GitHub Exploit DB Packet Storm
208292 6.5 MEDIUM
Network 		mikrotik routeros Mikrotik RouterOs before 6.47 (stable tree) suffers from an assertion failure vulnerability in the /ram/pckg/security/nova/bin/ipsec process. An authenticated remote attacker can cause a Denial of Se… CWE-617
 Reachable Assertion 		CVE-2020-20262 2024-11-21 14:11 2021-07-22 Show GitHub Exploit DB Packet Storm
208293 6.5 MEDIUM
Network 		mikrotik routeros Mikrotik RouterOs before 6.44.6 (long-term tree) suffers from an uncontrolled resource consumption vulnerability in the /nova/bin/cerm process. An authenticated remote attacker can cause a Denial of … CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-20221 2024-11-21 14:11 2021-07-22 Show GitHub Exploit DB Packet Storm
208294 6.5 MEDIUM
Network 		mikrotik routeros Mikrotik RouterOs 6.44.6 (long-term tree) suffers from a memory corruption vulnerability in the /nova/bin/igmp-proxy process. An authenticated remote attacker can cause a Denial of Service (NULL poin… CWE-787
 Out-of-bounds Write 		CVE-2020-20219 2024-11-21 14:11 2021-07-22 Show GitHub Exploit DB Packet Storm
208295 6.5 MEDIUM
Network 		mikrotik routeros Mikrotik RouterOs before stable 6.47 suffers from a memory corruption vulnerability in the resolver process. By sending a crafted packet, an authenticated remote attacker can cause a Denial of Servic… CWE-787
 Out-of-bounds Write 		CVE-2020-20249 2024-11-21 14:11 2021-07-20 Show GitHub Exploit DB Packet Storm
208296 6.5 MEDIUM
Network 		mikrotik routeros Mikrotik RouterOs before stable 6.47 suffers from an uncontrolled resource consumption in the memtest process. An authenticated remote attacker can cause a Denial of Service due to overloading the sy… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-20248 2024-11-21 14:11 2021-07-20 Show GitHub Exploit DB Packet Storm
208297 6.5 MEDIUM
Network 		mikrotik routeros Mikrotik RouterOs before stable 6.47 suffers from an uncontrolled resource consumption in the sshd process. An authenticated remote attacker can cause a Denial of Service due to overloading the syste… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-20230 2024-11-21 14:11 2021-07-20 Show GitHub Exploit DB Packet Storm
208298 6.5 MEDIUM
Network 		mikrotik routeros Mikrotik RouterOs through stable version 6.48.3 suffers from a memory corruption vulnerability in the /nova/bin/detnet process. An authenticated remote attacker can cause a Denial of Service (NULL po… CWE-787
CWE-476
 Out-of-bounds Write
 NULL Pointer Dereference 		CVE-2020-20231 2024-11-21 14:11 2021-07-14 Show GitHub Exploit DB Packet Storm
208299 6.5 MEDIUM
Network 		mikrotik routeros Mikrotik RouterOs before stable version 6.47 suffers from a memory corruption vulnerability in the /nova/bin/lcdstat process. An authenticated remote attacker can cause a Denial of Service (NULL poin… CWE-787
CWE-476
 Out-of-bounds Write
 NULL Pointer Dereference 		CVE-2020-20252 2024-11-21 14:11 2021-07-14 Show GitHub Exploit DB Packet Storm
208300 6.5 MEDIUM
Network 		mikrotik routeros Mikrotik RouterOs before stable version 6.47 suffers from a memory corruption vulnerability in the /nova/bin/lcdstat process. An authenticated remote attacker can cause a Denial of Service (NULL poin… CWE-787
CWE-476
 Out-of-bounds Write
 NULL Pointer Dereference 		CVE-2020-20250 2024-11-21 14:11 2021-07-13 Show GitHub Exploit DB Packet Storm