Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228981	6.5	警告	ravenphpscripts	-	Raven Web Services RavenNuke の Your Account モジュールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-0677	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

228982	6	警告	ravenphpscripts	-	Raven Web Services RavenNuke の images/captcha.php におけるローカルファイルの存在を特定される脆弱性	CWE-94 コード・インジェクション	CVE-2009-0674	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

228983	6.5	警告	ravenphpscripts	-	Raven Web Services RavenNuke の Your Account モジュールにおける任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-0673	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

228984	6.5	警告	ravenphpscripts	-	Raven Web Services RavenNuke の Resend_Email モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0672	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

228985	6	警告	Plone Foundation	-	Plone 用の PlonePAS 製品における任意のユーザの ID を取得される脆弱性	CWE-287 不適切な認証	CVE-2009-0662	2012-12-20 19:10	2009-04-21	Show	GitHub Exploit DB Packet Storm

228986	5	警告	tptest	-	TPTEST の GetStatsFromLine 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0659	2012-12-20 19:10	2009-02-20	Show	GitHub Exploit DB Packet Storm

228987	5.1	警告	The Tor Project	-	Tor における送信元および送信先間の通信を特定される脆弱性	CWE-Other その他	CVE-2009-0654	2012-12-20 19:10	2009-02-20	Show	GitHub Exploit DB Packet Storm

228988	10	危険	tptest	-	TPTEST の GetStatsFromLine 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0650	2012-12-20 19:10	2009-02-20	Show	GitHub Exploit DB Packet Storm

228989	5	警告	swannsecurity	-	Swann DVR4-SecuraNet の HTTP インターフェースにおける昇格したアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-0644	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

228990	5	警告	swannsecurity	-	Swann DVR4-SecuraNet の管理 Web サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-0640	2012-12-20 19:10	2009-02-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
202391	8.8	HIGH Network	os4ed	opensis	An exploitable sql injection vulnerability exists in the email parameter functionality of OS4Ed openSIS 7.3. The email parameter in the page EmailCheckOthers.php is vulnerable to SQL injection. An at…	CWE-89 SQL Injection	CVE-2020-6124	2024-11-21 14:35	2020-09-2	Show	GitHub Exploit DB Packet Storm

202392	8.8	HIGH Network	os4ed	opensis	SQL injection vulnerabilities exist in the course_period_id parameters used in OS4Ed openSIS 7.3 pages. The course_period_id parameter in the page MassScheduleSessionSet.php is vulnerable to SQL inje…	CWE-89 SQL Injection	CVE-2020-6131	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

202393	8.8	HIGH Network	os4ed	opensis	SQL injection vulnerabilities exist in the course_period_id parameters used in OS4Ed openSIS 7.3 pages. The course_period_id parameter in the page MassDropSessionSet.php is vulnerable to SQL injectio…	CWE-89 SQL Injection	CVE-2020-6130	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

202394	8.8	HIGH Network	os4ed	opensis	SQL injection vulnerabilities exist in the course_period_id parameters used in OS4Ed openSIS 7.3 pages. The course_period_id parameter in the page CpSessionSet.php is vulnerable to SQL injection.An a…	CWE-89 SQL Injection	CVE-2020-6129	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

202395	8.8	HIGH Network	os4ed	opensis	An exploitable sql injection vulnerability exists in the email parameter functionality of OS4Ed openSIS 7.3. The email parameter in the page EmailCheck.php is vulnerable to SQL injection. An attacker…	CWE-89 SQL Injection	CVE-2020-6123	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

202396	8.8	HIGH Network	os4ed	opensis	SQL injection vulnerability exists in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The mn parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can m…	CWE-89 SQL Injection	CVE-2020-6122	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

202397	8.8	HIGH Network	os4ed	opensis	SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The ln parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can …	CWE-89 SQL Injection	CVE-2020-6121	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

202398	8.8	HIGH Network	os4ed	opensis	SQL injection vulnerability exists in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The fn parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can m…	CWE-89 SQL Injection	CVE-2020-6120	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

202399	8.8	HIGH Network	os4ed	opensis	SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The byear parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker c…	CWE-89 SQL Injection	CVE-2020-6119	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

202400	8.8	HIGH Network	os4ed	opensis	SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The bmonth parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker …	CWE-89 SQL Injection	CVE-2020-6118	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm