Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231441 3.5 注意 tigris - WebSVN の listing.php における制限されたプロジェクトに対するチェンジログを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0240 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
231442 9.3 危険 vuplayer - VUPlayer におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0182 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
231443 9.3 危険 vuplayer - VUPlayer におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0181 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
231444 9.3 危険 vuplayer - VUPlayer におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0174 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
231445 9.3 危険 share2 - AAA EasyGrid ActiveX の EasyGrid.ocx における任意のファイルを作成される脆弱性 CWE-Other
その他 		CVE-2009-0134 2012-12-20 19:10 2009-01-16 Show GitHub Exploit DB Packet Storm
231446 7.5 危険 riotpix - RiotPix の read.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0110 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
231447 7.5 危険 riotpix - RiotPix の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0109 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
231448 7.5 危険 phpauctions - PHPAuctions における管理者アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0108 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
231449 4.3 警告 phpauctions - PHPAuctions の profile.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0107 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
231450 7.5 危険 phpauctions - PHPAuctions の profile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0106 2012-12-20 19:10 2009-01-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209471 5.3 MEDIUM
Network 		redhat 389_directory_server
enterprise_linux
directory_server 		When binding against a DN during authentication, the reply from 389-ds-base will be different whether the DN exists or not. This can be used by an unauthenticated attacker to check the existence of a… CWE-203
 Information Exposure Through Discrepancy 		CVE-2020-35518 2024-11-21 14:27 2021-03-27 Show GitHub Exploit DB Packet Storm
209472 4.5 MEDIUM
Local 		linux
redhat
netapp 		linux_kernel
enterprise_linux
a700s_firmware
brocade_fabric_operating_system_firmware
fas8300_firmware
fas8700_firmware
aff_a400_firmware
h300s_firmware
h500s_firmware
h700… 		A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent process identification handling while filtering signal handlers. A local… - CVE-2020-35508 2024-11-21 14:27 2021-03-27 Show GitHub Exploit DB Packet Storm
209473 7.5 HIGH
Network 		privoxy privoxy A flaw was found in Privoxy in versions before 3.0.29. Memory leaks when a response is buffered and the buffer limit is reached or Privoxy is running out of memory can lead to a system crash. - CVE-2020-35502 2024-11-21 14:27 2021-03-26 Show GitHub Exploit DB Packet Storm
209474 9.8 CRITICAL
Network 		thinksaas thinksaas ThinkSAAS before 3.38 contains a SQL injection vulnerability through app/topic/action/admin/topic.php via the title parameter, which allows remote attackers to execute arbitrary SQL commands. CWE-89
SQL Injection 		CVE-2020-35337 2024-11-21 14:27 2021-03-25 Show GitHub Exploit DB Packet Storm
209475 7.8 HIGH
Local 		cairographics cairo A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor (for example, by convinci… CWE-787
 Out-of-bounds Write 		CVE-2020-35492 2024-11-21 14:27 2021-03-19 Show GitHub Exploit DB Packet Storm
209476 5.5 MEDIUM
Local 		taidii diibear The Taidii Diibear Android application 2.4.0 and all its derivatives allow attackers to view private chat messages and media files via logcat because of excessive logging. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-35456 2024-11-21 14:27 2021-03-18 Show GitHub Exploit DB Packet Storm
209477 7.8 HIGH
Local 		taidii diibear The Taidii Diibear Android application 2.4.0 and all its derivatives allow attackers to obtain user credentials from Shared Preferences and the SQLite database because of insecure data storage. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-35455 2024-11-21 14:27 2021-03-18 Show GitHub Exploit DB Packet Storm
209478 6.8 MEDIUM
Physics 		taidii diibear The Taidii Diibear Android application 2.4.0 and all its derivatives allow attackers to obtain user credentials from an Android backup because of insecure application configuration. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-35454 2024-11-21 14:27 2021-03-18 Show GitHub Exploit DB Packet Storm
209479 9.8 CRITICAL
Network 		domainmod domainmod DomainMOD domainmod-v4.15.0 is affected by an insufficient session expiration vulnerability. On changing a password, both sessions using the changed password and old sessions in any other browser or … CWE-613
 Insufficient Session Expiration 		CVE-2020-35358 2024-11-21 14:27 2021-03-15 Show GitHub Exploit DB Packet Storm
209480 8.8 HIGH
Network 		zohocorp manageengine_servicedesk_plus Zoho ManageEngine ServiceDesk Plus before 11134 allows an Authentication Bypass (only during SAML login). CWE-863
 Incorrect Authorization 		CVE-2020-35682 2024-11-21 14:27 2021-03-14 Show GitHub Exploit DB Packet Storm