Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231231	6.8	警告	sweetphp	-	TotalCalendar の cms_detect.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1406	2012-12-20 19:10	2009-04-24	Show	GitHub Exploit DB Packet Storm

231232	10	危険	forkosh	-	mathTex の mathtex.cgi における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2009-1383	2012-12-20 19:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

231233	4.3	警告	レッドハット	-	Red Hat JBoss Enterprise Application Platform の JBossAs におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1380	2012-12-20 19:10	2009-12-9	Show	GitHub Exploit DB Packet Storm

231234	9.3	危険	xilisoft	-	Xilisoft Video Converter の ape_plugin.plg におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1370	2012-12-20 19:10	2009-04-22	Show	GitHub Exploit DB Packet Storm

231235	4.9	警告	サン・マイクロシステムズ	-	Sun OpenSolaris の SCTP におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-1359	2012-12-20 19:10	2009-04-19	Show	GitHub Exploit DB Packet Storm

231236	6.8	警告	サン・マイクロシステムズ	-	Sun Java System Delegated Administrator の da/DA/Login における CRLF インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2009-1357	2012-12-20 19:10	2009-04-21	Show	GitHub Exploit DB Packet Storm

231237	4	警告	sergey lyubka	-	Mongoose におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1354	2012-12-20 19:10	2009-04-21	Show	GitHub Exploit DB Packet Storm

231238	5	警告	sebastian fernandez	-	Zervit Webserver の libz/misc.c におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1353	2012-12-20 19:10	2009-04-21	Show	GitHub Exploit DB Packet Storm

231239	4.3	警告	レッドハット	-	C2Net Stronghold におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1349	2012-12-20 19:10	2009-04-21	Show	GitHub Exploit DB Packet Storm

231240	6	警告	TWiki	-	TWiki におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-1339	2012-12-20 19:10	2009-04-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201841	8.8	HIGH Network	acemetrix	jquery-deparam	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-deparam 0.5.1 allows a malicious user to inject properties into Object.prototype.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-20087	2024-11-21 14:45	2021-04-24	Show	GitHub Exploit DB Packet Storm

201842	8.8	HIGH Network	jquery-sparkle_project	jquery-sparkle	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-sparkle 1.5.2-beta allows a malicious user to inject properties into Object.prototype.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-20084	2024-11-21 14:45	2021-04-24	Show	GitHub Exploit DB Packet Storm

201843	4.9	MEDIUM Network	sonicwall	email_security hosted_email_security	SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated attacker to read an arbitrary file on the remote host.	CWE-22 Path Traversal	CVE-2021-20023	2024-11-21 14:45	2021-04-20	Show	GitHub Exploit DB Packet Storm

201844	9.8	CRITICAL Network	sonicwall	global_management_system	A command execution vulnerability in SonicWall GMS 9.3 allows a remote unauthenticated attacker to locally escalate privilege to root.	CWE-287 Improper Authentication	CVE-2021-20020	2024-11-21 14:45	2021-04-10	Show	GitHub Exploit DB Packet Storm

201845	6.1	MEDIUM Network	zohocorp	manageengine_servicedesk_plus	Insufficient output sanitization in ManageEngine ServiceDesk Plus before version 11200 and ManageEngine AssetExplorer before version 6800 allows a remote, unauthenticated attacker to conduct persiste…	CWE-79 Cross-site Scripting	CVE-2021-20080	2024-11-21 14:45	2021-04-10	Show	GitHub Exploit DB Packet Storm

201846	7.2	HIGH Network	sonicwall	email_security hosted_email_security	SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated attacker to upload an arbitrary file to the remote host.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-20022	2024-11-21 14:45	2021-04-10	Show	GitHub Exploit DB Packet Storm

201847	9.8	CRITICAL Network	sonicwall	email_security hosted_email_security	A vulnerability in the SonicWall Email Security version 10.0.9.x allows an attacker to create an administrative account by sending a crafted HTTP request to the remote host.	CWE-269 Improper Privilege Management	CVE-2021-20021	2024-11-21 14:45	2021-04-10	Show	GitHub Exploit DB Packet Storm

201848	7.8	HIGH Local	qualcomm	aqt1000_firmware pm8005_firmware pm855_firmware pm855p_firmware pm8998_firmware pmi8998_firmware qat3550_firmware qca1062_firmware qca1064_firmware qca2066_firmware qca6…	Memory corruption due to improper input validation while processing IO control which is nonstandard in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapd…	CWE-787 Out-of-bounds Write	CVE-2021-1892	2024-11-21 14:45	2021-04-7	Show	GitHub Exploit DB Packet Storm

201849	8.8	HIGH Network	apple debian fedoraproject	safari iphone_os watchos tvos macos ipados debian_linux fedora	A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 14.4.1 and iPadOS 14.4.1, Safari 14.0.3 (v. 14610.4.3.1.7 and 15610.4.3.1.7), watchOS 7.3.2, macOS Big Sur…	CWE-787 Out-of-bounds Write	CVE-2021-1844	2024-11-21 14:45	2021-04-3	Show	GitHub Exploit DB Packet Storm

201850	9.8	CRITICAL Network	apple	mac_os_x iphone_os tvos watchos ipad_os macos	A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS …	NVD-CWE-noinfo	CVE-2021-1818	2024-11-21 14:45	2021-04-3	Show	GitHub Exploit DB Packet Storm