Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228921	5	警告	xlinesoft	-	PHPRunner の UserView_list.php における権限を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-0964	2012-12-20 19:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

228922	7.5	危険	xlinesoft	-	PHPRunner における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0963	2012-12-20 19:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

228923	10	危険	The Tor Project	-	Tor における脆弱性	CWE-noinfo 情報不足	CVE-2009-0939	2012-12-20 19:10	2009-03-17	Show	GitHub Exploit DB Packet Storm

228924	5	警告	The Tor Project	-	Tor におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-0938	2012-12-20 19:10	2009-03-17	Show	GitHub Exploit DB Packet Storm

228925	5	警告	The Tor Project	-	Tor におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-0937	2012-12-20 19:10	2009-03-17	Show	GitHub Exploit DB Packet Storm

228926	5	警告	The Tor Project	-	Tor におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-0936	2012-12-20 19:10	2009-03-17	Show	GitHub Exploit DB Packet Storm

228927	4.3	警告	ProcessOne	-	ejabberd におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0934	2012-12-20 19:10	2009-03-17	Show	GitHub Exploit DB Packet Storm

228928	7.5	危険	roman bogorodskiy	-	nForum における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0882	2012-12-20 19:10	2009-03-12	Show	GitHub Exploit DB Packet Storm

228929	5	警告	wesnoth	-	Wesnoth の src/terrain_translation.cpp におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0878	2012-12-20 19:10	2009-03-12	Show	GitHub Exploit DB Packet Storm

228930	4.3	警告	tangocms	-	TangoCMS の admincp コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0862	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
225731	8.8	HIGH Network	totolink	a3002ru_firmware a702r_firmware n301rt_firmware n302r_firmware n300rt_firmware n200re_firmware n150rt_firmware n100re_firmware	On certain TOTOLINK Realtek SDK based routers, an authenticated attacker may execute arbitrary OS commands via the sysCmd parameter to the boafrm/formSysCmd URI, even if the GUI (syscmd.htm) is not a…	CWE-78 OS Command	CVE-2019-19824	2024-11-21 13:35	2020-01-28	Show	GitHub Exploit DB Packet Storm

225732	7.5	HIGH Network	totolink realtek sapido ciktel kctvjeju fg-products hiwifi tbroad coship iodata hcn_max-c300n_project	a3002ru_firmware a702r_firmware n302r_firmware n300rt_firmware n200re_firmware n150rt_firmware n100re_firmware rtk_11n_ap_firmware gr297n_firmware mesh_router_firmware w…	A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) stores cleartext administrative passwords in flash memory and in a file. This affects TOTOLINK A3002R…	CWE-522 Insufficiently Protected Credentials	CVE-2019-19823	2024-11-21 13:35	2020-01-28	Show	GitHub Exploit DB Packet Storm

225733	7.5	HIGH Network	totolink realtek sapido ciktel kctvjeju fg-products hiwifi tbroad coship iodata hcn_max-c300n_project	a3002ru_firmware a702r_firmware n302r_firmware n300rt_firmware n200re_firmware n150rt_firmware n100re_firmware rtk_11n_ap_firmware gr297n_firmware mesh_router_firmware w…	A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) allows remote attackers to retrieve the configuration, including sensitive data (usernames and passwo…	CWE-306 Missing Authentication for Critical Function	CVE-2019-19822	2024-11-21 13:35	2020-01-28	Show	GitHub Exploit DB Packet Storm

225734	9.8	CRITICAL Network	totolink	a3002ru_firmware a702r_firmware n301rt_firmware n302r_firmware n300rt_firmware n200re_firmware n150rt_firmware n100re_firmware	On certain TOTOLINK Realtek SDK based routers, the CAPTCHA text can be retrieved via an {"topicurl":"setting/getSanvas"} POST to the boafrm/formLogin URI, leading to a CAPTCHA bypass. (Also, the CAPT…	CWE-287 Improper Authentication	CVE-2019-19825	2024-11-21 13:35	2020-01-28	Show	GitHub Exploit DB Packet Storm

225735	8.8	HIGH Network	bigswitch	big_cloud_fabric big_monitoring_fabric multi-cloud_director	An issue was discovered in Big Switch Big Monitoring Fabric 6.2 through 6.2.4, 6.3 through 6.3.9, 7.0 through 7.0.3, and 7.1 through 7.1.3; Big Cloud Fabric 4.5 through 4.5.5, 4.7 through 4.7.7, 5.0 …	CWE-200 Information Exposure	CVE-2019-19631	2024-11-21 13:35	2020-01-25	Show	GitHub Exploit DB Packet Storm

225736	6.1	MEDIUM Network	bigswitch	big_cloud_fabric big_monitoring_fabric multi-cloud_director	An issue was discovered in Big Switch Big Monitoring Fabric 6.2 through 6.2.4, 6.3 through 6.3.9, 7.0 through 7.0.3, and 7.1 through 7.1.3; Big Cloud Fabric 4.5 through 4.5.5, 4.7 through 4.7.7, 5.0 …	CWE-79 Cross-site Scripting	CVE-2019-19632	2024-11-21 13:35	2020-01-25	Show	GitHub Exploit DB Packet Storm

225737	7.5	HIGH Network	ixpdata	easyinstall	In IXP EasyInstall 6.2.13723, there are cleartext credentials in network communication on TCP port 20050 when using the Administrator console remotely.	CWE-319 CWE-522 Cleartext Transmission of Sensitive Information Insufficiently Protected Credentials	CVE-2019-19898	2024-11-21 13:35	2020-01-24	Show	GitHub Exploit DB Packet Storm

225738	9.8	CRITICAL Network	ixpdata	easyinstall	In IXP EasyInstall 6.2.13723, there is Remote Code Execution via the Agent Service. An unauthenticated attacker can communicate with the Agent Service over TCP port 20051, and execute code in the NT …	CWE-78 OS Command	CVE-2019-19897	2024-11-21 13:35	2020-01-24	Show	GitHub Exploit DB Packet Storm

225739	9.9	CRITICAL Network	ixpdata	easyinstall	In IXP EasyInstall 6.2.13723, there is Remote Code Execution via weak permissions on the Engine Service share. The default file permissions of the IXP$ share on the server allows modification of dire…	CWE-276 Incorrect Default Permissions	CVE-2019-19896	2024-11-21 13:35	2020-01-24	Show	GitHub Exploit DB Packet Storm

225740	7.8	HIGH Local	ixpdata	easyinstall	In IXP EasyInstall 6.2.13723, there is Lateral Movement (using the Agent Service) against other users on a client system. An authenticated attacker can, by modifying %SYSTEMDRIVE%\IXP\SW\[PACKAGE_COD…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-19895	2024-11-21 13:35	2020-01-24	Show	GitHub Exploit DB Packet Storm