Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229361 9.3 危険 vuplayer - VUPlayer におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0182 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
229362 9.3 危険 vuplayer - VUPlayer におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0181 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
229363 9.3 危険 vuplayer - VUPlayer におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0174 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
229364 9.3 危険 share2 - AAA EasyGrid ActiveX の EasyGrid.ocx における任意のファイルを作成される脆弱性 CWE-Other
その他 		CVE-2009-0134 2012-12-20 19:10 2009-01-16 Show GitHub Exploit DB Packet Storm
229365 7.5 危険 riotpix - RiotPix の read.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0110 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
229366 7.5 危険 riotpix - RiotPix の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0109 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
229367 7.5 危険 phpauctions - PHPAuctions における管理者アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0108 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
229368 4.3 警告 phpauctions - PHPAuctions の profile.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0107 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
229369 7.5 危険 phpauctions - PHPAuctions の profile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0106 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
229370 4.3 警告 se-ed - EZpack の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0105 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208291 8.8 HIGH
Network 		maxum rumpus Maxum Rumpus 8.2.13 and 8.2.14 is affected by cross-site request forgery (CSRF). If an authenticated user visits a malicious page, unintended actions could be performed in the web application as the … CWE-352
 Origin Validation Error 		CVE-2020-27574 2024-11-21 14:21 2021-03-9 Show GitHub Exploit DB Packet Storm
208292 7.5 HIGH
Local 		gnu
redhat
fedoraproject
netapp 		grub2
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_tus
enterprise_linux_server_eus
fedora
ontap_select_deploy_administration_… 		A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity… NVD-CWE-Other
CVE-2020-27779 2024-11-21 14:21 2021-03-4 Show GitHub Exploit DB Packet Storm
208293 6.7 MEDIUM
Local 		gnu
redhat
fedoraproject
netapp 		grub2
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_tus
enterprise_linux_server_eus
fedora
ontap_select_deploy_administration_… 		A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporar… - CVE-2020-27749 2024-11-21 14:21 2021-03-4 Show GitHub Exploit DB Packet Storm
208294 5.5 MEDIUM
Local 		gnu
netapp
oracle
debian 		glibc
ontap_select_deploy_administration_utility
a250_firmware
500f_firmware
h410c_firmware
h300s_firmware
h500s_firmware
h700s_firmware
h300e_firmware
h500e_firmware
h7… 		The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, and IBM1399 encodings, fails t… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-27618 2024-11-21 14:21 2021-02-27 Show GitHub Exploit DB Packet Storm
208295 7.5 HIGH
Network 		restify-paginate_project restify-paginate The restify-paginate package 0.0.5 for Node.js allows remote attackers to cause a Denial-of-Service by omitting the HTTP Host header. A Restify-based web service would crash with an uncaught exceptio… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-27543 2024-11-21 14:21 2021-02-26 Show GitHub Exploit DB Packet Storm
208296 7.5 HIGH
Network 		redhat jboss_fuse
openshift_application_runtimes
undertow 		A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a … - CVE-2020-27782 2024-11-21 14:21 2021-02-24 Show GitHub Exploit DB Packet Storm
208297 5.5 MEDIUM
Local 		libxls_project libxls An issue was discovered in libxls before and including 1.6.1 when reading Microsoft Excel files. A NULL pointer dereference vulnerability exists when parsing XLS cells in libxls/xls2csv.c:199. It cou… - CVE-2020-27819 2024-11-21 14:21 2021-02-23 Show GitHub Exploit DB Packet Storm
208298 3.3 LOW
Local 		imagemagick
debian 		imagemagick
debian_linux 		In ImageMagick, there is an outside the range of representable values of type 'unsigned int' at MagickCore/quantum-private.h. This flaw affects ImageMagick versions prior to 7.0.9-0. - CVE-2020-27768 2024-11-21 14:21 2021-02-23 Show GitHub Exploit DB Packet Storm
208299 8.8 HIGH
Network 		solarwinds network_performance_monitor This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor 2020 HF1, NPM: 2020.2. Authentication is required to exploit this… - CVE-2020-27869 2024-11-21 14:21 2021-02-12 Show GitHub Exploit DB Packet Storm
208300 9.8 CRITICAL
Network 		qognify ocularis This vulnerability allows remote attackers to execute arbitrary code on affected installations of Qognify Ocularis 5.9.0.395. Authentication is not required to exploit this vulnerability. The specifi… - CVE-2020-27868 2024-11-21 14:21 2021-02-12 Show GitHub Exploit DB Packet Storm