Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229021 6.8 警告 technote - Technote の skin_shop/standard/2_view_body/body_default.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0441 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
229022 7.5 危険 Tincan - phpList の lists/admin.php におけるローカルファイルをインクルードされる脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0422 2012-12-20 19:10 2009-02-4 Show GitHub Exploit DB Packet Storm
229023 7.5 危険 rd-media - Joomla! 用の RD-Autos コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0420 2012-12-20 19:10 2009-02-4 Show GitHub Exploit DB Packet Storm
229024 6.9 警告 Standards Based Linux Instrumentation (SBLIM) - SBLIM sblim-sfcb の SSL certificate setup program における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2009-0416 2012-12-20 19:10 2009-02-3 Show GitHub Exploit DB Packet Storm
229025 10 危険 The Tor Project - Tor における脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0414 2012-12-20 19:10 2009-02-3 Show GitHub Exploit DB Packet Storm
229026 4.3 警告 Roundcube.net - roundcubemail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0413 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
229027 7.5 危険 smartsitecms - smartSite CMS の articles.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0405 2012-12-20 19:10 2009-02-3 Show GitHub Exploit DB Packet Storm
229028 6.8 警告 socialengine - SocialEngine の blog.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0400 2012-12-20 19:10 2009-02-3 Show GitHub Exploit DB Packet Storm
229029 7.8 危険 sony ericsson - Sony Ericsson W910i などの電話機におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0396 2012-12-20 19:10 2009-02-2 Show GitHub Exploit DB Packet Storm
229030 7.5 危険 ple cms - PLEs CMS の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0394 2012-12-20 19:10 2009-02-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208421 7.5 HIGH
Network 		hyland onbase An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. Client applications can write arbitrary dat… NVD-CWE-noinfo
CVE-2020-25250 2024-11-21 14:17 2020-09-11 Show GitHub Exploit DB Packet Storm
208422 5.3 MEDIUM
Network 		hyland onbase An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. The server typically logs activity only whe… NVD-CWE-noinfo
CVE-2020-25249 2024-11-21 14:17 2020-09-11 Show GitHub Exploit DB Packet Storm
208423 7.5 HIGH
Network 		hyland onbase An issue was discovered in Hyland OnBase through 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. Directory traversal exists for read… CWE-22
Path Traversal 		CVE-2020-25248 2024-11-21 14:17 2020-09-11 Show GitHub Exploit DB Packet Storm
208424 7.5 HIGH
Network 		hyland onbase An issue was discovered in Hyland OnBase through 18.0.0.32 and 19.x through 19.8.9.1000. Directory traversal exists for writing to files, as demonstrated by the FileName parameter. CWE-22
Path Traversal 		CVE-2020-25247 2024-11-21 14:17 2020-09-11 Show GitHub Exploit DB Packet Storm
208425 7.8 HIGH
Local 		linux linux_kernel The Linux kernel 4.9.x before 4.9.233, 4.14.x before 4.14.194, and 4.19.x before 4.19.140 has a use-after-free because skcd->no_refcnt was not considered during a backport of a CVE-2020-14356 patch. … CWE-416
 Use After Free 		CVE-2020-25220 2024-11-21 14:17 2020-09-10 Show GitHub Exploit DB Packet Storm
208426 7.5 HIGH
Network 		libproxy_project
debian
fedoraproject
opensuse
canonical 		libproxy
debian_linux
fedora
leap
ubuntu_linux 		url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a remote HTTP server to trigger uncontrolled recursion via a response composed of an infinite stream that lacks a newline character. T… CWE-674
 Uncontrolled Recursion 		CVE-2020-25219 2024-11-21 14:17 2020-09-10 Show GitHub Exploit DB Packet Storm
208427 7.3 HIGH
Network 		primekey ejbca An issue was discovered in PrimeKey EJBCA 6.x and 7.x before 7.4.1. When using a client certificate to enroll over the EST protocol, no revocation check is performed on that certificate. This vulnera… CWE-295
Improper Certificate Validation  		CVE-2020-25276 2024-11-21 14:17 2020-09-12 Show GitHub Exploit DB Packet Storm
208428 7.8 HIGH
Local 		linux
netapp 		linux_kernel
cloud_backup
solidfire_\&_hci_management_node
hci_compute_node
solidfire_baseboard_management_controller
solidfire\
_enterprise_sds_\&_hci_storage_node 		get_gate_page in mm/gup.c in the Linux kernel 5.7.x and 5.8.x before 5.8.7 allows privilege escalation because of incorrect reference counting (caused by gate page mishandling) of the struct page tha… CWE-672
 Operation on a Resource after Expiration or Release 		CVE-2020-25221 2024-11-21 14:17 2020-09-10 Show GitHub Exploit DB Packet Storm
208429 9.8 CRITICAL
Network 		webdesi9 file_manager The File Manager (wp-file-manager) plugin before 6.9 for WordPress allows remote attackers to upload and execute arbitrary PHP code because it renames an unsafe example elFinder connector file to hav… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-25213 2024-11-21 14:17 2020-09-10 Show GitHub Exploit DB Packet Storm
208430 7.0 HIGH
Local 		linux
debian
opensuse
canonical 		linux_kernel
debian_linux
leap
ubuntu_linux 		A TOCTOU mismatch in the NFS client code in the Linux kernel before 5.8.3 could be used by local attackers to corrupt memory or possibly have unspecified other impact because a size check is in fs/nf… CWE-787
CWE-367
 Out-of-bounds Write
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2020-25212 2024-11-21 14:17 2020-09-10 Show GitHub Exploit DB Packet Storm