Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 4:11 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229231	5	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro における重要な Tomcat の情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-4844	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

229232	7.5	危険	toutvirtual	-	ToutVirtual VirtualIQ Pro における任意のコマンドを実行される脆弱性	CWE-287 不適切な認証	CVE-2009-4843	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

229233	4.3	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4842	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

229234	9.3	危険	ROXIO	-	Roxio CinePlayer の SonicMediaPlayer.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4841	2012-12-20 19:28	2010-05-6	Show	GitHub Exploit DB Packet Storm

229235	9.3	危険	ROXIO	-	Roxio CinePlayer の IAManager.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4840	2012-12-20 19:28	2010-05-6	Show	GitHub Exploit DB Packet Storm

229236	6.8	警告	xpressengine	-	Zeroboard の lib.php における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4834	2012-12-20 19:28	2010-05-4	Show	GitHub Exploit DB Packet Storm

229237	5.8	警告	Cerulean Studios	-	Cerulean Studios Trillian における MSN の資格情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-4831	2012-12-20 19:28	2010-04-29	Show	GitHub Exploit DB Packet Storm

229238	6.8	警告	PHP Web Scripts	-	Ad Manager Pro の administration/admins.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4828	2012-12-20 19:28	2010-04-27	Show	GitHub Exploit DB Packet Storm

229239	6.8	警告	scriptez	-	Mail Manager Pro の admin.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4827	2012-12-20 19:28	2010-04-27	Show	GitHub Exploit DB Packet Storm

229240	6.8	警告	Scriptsez.net	-	ScriptsEz Mini Hosting Panel の hosting/admin_ac.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4826	2012-12-20 19:28	2010-04-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
202501	6.5	MEDIUM Network	mongodb	mongodb	A user authorized to perform database queries may trigger a read overrun and access arbitrary memory by issuing specially crafted queries. This issue affects MongoDB Server v4.4 versions prior to 4.4…	NVD-CWE-Other	CVE-2020-7928	2024-11-21 14:38	2020-11-24	Show	GitHub Exploit DB Packet Storm

202502	6.5	MEDIUM Network	mongodb	mongodb	A user authorized to perform database queries may cause denial of service by issuing a specially crafted query which violates an invariant in the server selection subsystem. This issue affects MongoD…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2020-7926	2024-11-21 14:38	2020-11-24	Show	GitHub Exploit DB Packet Storm

202503	7.5	HIGH Network	mongodb	mongodb	Incorrect validation of user input in the role name parser may lead to use of uninitialized memory allowing an unauthenticated attacker to use a specially crafted request to cause a denial of service…	CWE-20 Improper Input Validation	CVE-2020-7925	2024-11-21 14:38	2020-11-24	Show	GitHub Exploit DB Packet Storm

202504	7.4	HIGH Network	nextcloud	social	Missing validation of server certificates for out-going connections in Nextcloud Social < 0.4.0 allowed a man-in-the-middle attack.	CWE-295 Improper Certificate Validation	CVE-2020-8279	2024-11-21 14:38	2020-11-19	Show	GitHub Exploit DB Packet Storm

202505	5.3	MEDIUM Network	nextcloud	social	Improper access control in Nextcloud Social app version 0.3.1 allowed to read posts of any user.	CWE-863 Incorrect Authorization	CVE-2020-8278	2024-11-21 14:38	2020-11-19	Show	GitHub Exploit DB Packet Storm

202506	7.5	HIGH Network	nodejs fedoraproject oracle c-ares_project	node.js fedora graalvm retail_xstore_point_of_service jd_edwards_enterpriseone_tools mysql_cluster blockchain_platform c-ares	A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Denial of Service in versions < 15.2.1, < 14.15.1, and < 12.19.1 by getting the appli…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-8277	2024-11-21 14:38	2020-11-19	Show	GitHub Exploit DB Packet Storm

202507	8.8	HIGH Network	citrix	sd-wan	Privilege escalation of an authenticated user to root in Citrix SD-WAN center versions before 11.2.2, 11.1.2b and 10.2.8.	CWE-78 OS Command	CVE-2020-8273	2024-11-21 14:38	2020-11-16	Show	GitHub Exploit DB Packet Storm

202508	7.5	HIGH Network	citrix	sd-wan	Authentication Bypass resulting in exposure of SD-WAN functionality in Citrix SD-WAN Center versions before 11.2.2, 11.1.2b and 10.2.8	CWE-287 Improper Authentication	CVE-2020-8272	2024-11-21 14:38	2020-11-16	Show	GitHub Exploit DB Packet Storm

202509	9.8	CRITICAL Network	citrix	sd-wan	Unauthenticated remote code execution with root privileges in Citrix SD-WAN Center versions before 11.2.2, 11.1.2b and 10.2.8	CWE-22 Path Traversal	CVE-2020-8271	2024-11-21 14:38	2020-11-16	Show	GitHub Exploit DB Packet Storm

202510	8.8	HIGH Network	citrix	virtual_apps_and_desktops	An unprivileged Windows user on the VDA or an SMB user can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285871 and CTX285872, 7.15 LTSR CU6 ho…	CWE-78 OS Command	CVE-2020-8270	2024-11-21 14:38	2020-11-16	Show	GitHub Exploit DB Packet Storm