Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228971 10 危険 yasinkaplan - TekRADIUS のデフォルト設定におけるデータベースへのアクセス権限を取得される脆弱性 CWE-16
環境設定 		CVE-2009-2357 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
228972 4 警告 dan cahill - NullLogic Groupware のフォーラムモジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2009-2355 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
228973 9 危険 Sourcefire - Sourcefire DC および 3D Sensor の Web ベースの管理インターフェースにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2344 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
228974 4.3 警告 Zoph - Zoph の people.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2343 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
228975 7.5 危険 shalwan - Opial の albumdetail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2341 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
228976 7.5 危険 rentventory - Rentventory の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2339 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
228977 6.8 警告 w3bcms - w3b|cms Gaestebuch Guestbook Module の includes/module/book/index.inc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2337 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
228978 5 警告 WordPress.org - WordPress および WordPress MU における有効なユーザ名を列挙される脆弱性 CWE-16
環境設定 		CVE-2009-2336 2012-12-20 19:10 2009-07-10 Show GitHub Exploit DB Packet Storm
228979 5 警告 WordPress.org - WordPress および WordPress MU における有効なユーザ名を列挙される脆弱性 CWE-16
環境設定 		CVE-2009-2335 2012-12-20 19:10 2009-07-10 Show GitHub Exploit DB Packet Storm
228980 4.9 警告 WordPress.org - WordPress および WordPress MU の wp-admin/admin.php における重要な情報を取得される脆弱性 CWE-287
不適切な認証 		CVE-2009-2334 2012-12-20 19:10 2009-07-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
207941 7.5 HIGH
Network 		nats nats_server This affects all versions of package github.com/nats-io/nats-server/server. Untrusted accounts are able to crash the server using configs that represent a service export/import cycles. Disclaimer fro… NVD-CWE-noinfo
CVE-2020-28466 2024-11-21 14:22 2021-03-7 Show GitHub Exploit DB Packet Storm
207942 8.1 HIGH
Network 		xmlhttprequest_project xmlhttprequest This affects the package xmlhttprequest before 1.7.0; all versions of package xmlhttprequest-ssl. Provided requests are sent synchronously (async=False on xhr.open), malicious user input flowing into… CWE-94
Code Injection 		CVE-2020-28502 2024-11-21 14:22 2021-03-6 Show GitHub Exploit DB Packet Storm
207943 9.1 CRITICAL
Network 		zohocorp manageengine_desktop_central Zoho ManageEngine Desktop Central before build 10.0.647 allows a single authentication secret from multiple agents to communicate with the server. CWE-287
Improper Authentication 		CVE-2020-28050 2024-11-21 14:22 2021-03-6 Show GitHub Exploit DB Packet Storm
207944 9.8 CRITICAL
Network 		cgal
fedoraproject
debian 		computational_geometry_algorithms_library
fedora
debian_linux 		A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in Nef_2/PM_io_parser.h PM_io_parser::read_vertex() Face_of… - CVE-2020-28601 2024-11-21 14:22 2021-03-5 Show GitHub Exploit DB Packet Storm
207945 7.5 HIGH
Network 		epignosishq efront A predictable seed vulnerability exists in the password reset functionality of Epignosis EfrontPro 5.2.21. By predicting the seed it is possible to generate the correct password reset 1-time token. A… CWE-335
 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) 		CVE-2020-28597 2024-11-21 14:22 2021-03-4 Show GitHub Exploit DB Packet Storm
207946 6.5 MEDIUM
Network 		slic3r
fedoraproject 		libslic3r
fedora 		An out-of-bounds read vulnerability exists in the AMF File AMFParserContext::endElement() functionality of Slic3r libslic3r 1.3.0 and Master Commit 92abbc42. A specially crafted AMF file can lead to … CWE-125
Out-of-bounds Read 		CVE-2020-28591 2024-11-21 14:22 2021-03-4 Show GitHub Exploit DB Packet Storm
207947 7.8 HIGH
Local 		saltstack
fedoraproject
debian 		salt
fedora
debian_linux 		An issue was discovered in SaltStack Salt before 3002.5. The minion's restartcheck is vulnerable to command injection via a crafted process name. This allows for a local privilege escalation by any u… CWE-77
Command Injection 		CVE-2020-28243 2024-11-21 14:22 2021-02-27 Show GitHub Exploit DB Packet Storm
207948 9.1 CRITICAL
Network 		bestit amazon_pay best it Amazon Pay Plugin before 9.4.2 for Shopware exposes Sensitive Information to an Unauthorized Actor. CWE-200
Information Exposure 		CVE-2020-28199 2024-11-21 14:22 2021-02-27 Show GitHub Exploit DB Packet Storm
207949 7.8 HIGH
Local 		openscad
fedoraproject 		openscad
fedora 		A stack-based buffer overflow vulnerability exists in the import_stl.cc:import_stl() functionality of Openscad openscad-2020.12-RC2. A specially crafted STL file can lead to code execution. An attack… CWE-787
 Out-of-bounds Write 		CVE-2020-28599 2024-11-21 14:22 2021-02-25 Show GitHub Exploit DB Packet Storm
207950 7.8 HIGH
Local 		softmaker planmaker_2021 A specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size used for the copy, whic… CWE-787
 Out-of-bounds Write 		CVE-2020-28587 2024-11-21 14:22 2021-02-24 Show GitHub Exploit DB Packet Storm