Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229341 4.3 警告 webhelpdesk - Web Help Desk におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0303 2012-12-20 19:10 2009-01-27 Show GitHub Exploit DB Packet Storm
229342 6.8 警告 webmobo - WB News における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0294 2012-12-20 19:10 2009-01-27 Show GitHub Exploit DB Packet Storm
229343 7.5 危険 wazzum - Wazzum Dating Software の profile_view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0293 2012-12-20 19:10 2009-01-27 Show GitHub Exploit DB Packet Storm
229344 7.5 危険 shop-inet - SHOP-INET の show_cat2.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0292 2012-12-20 19:10 2009-01-27 Show GitHub Exploit DB Packet Storm
229345 6.8 警告 SIR - SIR GNUBoard の common.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0290 2012-12-20 19:10 2009-01-27 Show GitHub Exploit DB Packet Storm
229346 5 警告 windows tftp utility - k23productions TFTPUtil GUI におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0289 2012-12-20 19:10 2009-01-27 Show GitHub Exploit DB Packet Storm
229347 5 警告 windows tftp utility - k23productions TFTPUtil GUI におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0288 2012-12-20 19:10 2009-01-27 Show GitHub Exploit DB Packet Storm
229348 7.5 危険 KEEP Toolkit - KEEP Toolkit の lib/patUser.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0287 2012-12-20 19:10 2009-01-27 Show GitHub Exploit DB Packet Storm
229349 9.3 危険 ralinktech - Windows 用の Ralink Technology USB wireless アダプタなどのワイアレスカードドライバにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0282 2012-12-20 19:10 2009-01-27 Show GitHub Exploit DB Packet Storm
229350 7.5 危険 warhound - WarHound Walking Club の login.aspx における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0281 2012-12-20 19:10 2009-01-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
215391 4.6 MEDIUM
Physics 		gigadevice gd32f103_firmware
gd32f130_firmware 		Gigadevice GD32F103 and GD32F130 devices allow physical attackers to extract data via the probing of easily accessible bonding wires and de-obfuscation of the observed data. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2020-13470 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
215392 4.6 MEDIUM
Physics 		gigadevice gd32vf103_firmware The flash memory readout protection in Gigadevice GD32VF103 devices allows physical attackers to extract firmware via the debug interface by utilizing the CPU. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2020-13469 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
215393 6.8 MEDIUM
Physics 		gigadevice gd32f130_firmware Gigadevice GD32F130 devices allow physical attackers to escalate their debug interface permissions via fault injection into inter-IC bonding wires (which have insufficient physical protection). CWE-276
Incorrect Default Permissions  		CVE-2020-13468 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
215394 4.6 MEDIUM
Physics 		cksic cks32f103_firmware The flash memory readout protection in China Key Systems & Integrated Circuit CKS32F103 devices allows physical attackers to extract firmware via the debug interface and exception handling. CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-13467 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
215395 6.8 MEDIUM
Physics 		st stm32f103_firmware STMicroelectronics STM32F103 devices through 2020-05-20 allow physical attackers to execute arbitrary code via a power glitch and a specific flash patch/breakpoint unit configuration. NVD-CWE-noinfo
CVE-2020-13466 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
215396 6.8 MEDIUM
Physics 		gigadevice gd32f103_firmware The security protection in Gigadevice GD32F103 devices allows physical attackers to redirect the control flow and execute arbitrary code via the debug interface. CWE-20
 Improper Input Validation  		CVE-2020-13465 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
215397 4.2 MEDIUM
Physics 		cksic cks32f103_firmware The flash memory readout protection in China Key Systems & Integrated Circuit CKS32F103 devices allows physical attackers to extract firmware via the debug interface by utilizing the CPU or DMA modul… CWE-862
 Missing Authorization 		CVE-2020-13464 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
215398 4.6 MEDIUM
Physics 		apexmic apm32f103_firmware The flash memory readout protection in Apex Microelectronics APM32F103 devices allows physical attackers to extract firmware via the debug interface and exception handling. CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-13463 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
215399 6.1 MEDIUM
Network 		o-dyn collabtive An issue was discovered in Collabtive 3.0 and later. managefile.php is vulnerable to XSS: when the action parameter is set to movefile and the id parameter corresponds to a project the current user h… CWE-79
Cross-site Scripting 		CVE-2020-13655 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm
215400 6.5 MEDIUM
Adjacent 		espressif esp-idf The Bluetooth Low Energy (BLE) controller implementation in Espressif ESP-IDF 4.0 through 4.2 (for ESP32 devices) returns the wrong number of completed BLE packets and triggers a reachable assertion … CWE-617
 Reachable Assertion 		CVE-2020-13595 2024-11-21 14:01 2020-09-1 Show GitHub Exploit DB Packet Storm