Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
246471	4.3	警告	expressionengine	-	ExpressionEngine の system/index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1070	2012-06-26 16:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

246472	9.3	危険	AB Team	-	bsplayer におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1068	2012-06-26 16:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

246473	4.3	警告	Lucid Crew	-	Pixie CMS の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1067	2012-06-26 16:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

246474	7.5	危険	Lucid Crew	-	Pixie CMS の admin/lib/lib_logs.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1066	2012-06-26 16:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

246475	7.5	危険	Lucid Crew	-	Pixie CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1065	2012-06-26 16:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

246476	6.8	警告	Saurused	-	eXeScope におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1063	2012-06-26 16:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

246477	5	警告	chaozz	-	chaozzDB におけるユーザの資格情報を含むデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1053	2012-06-26 16:10	2009-03-24	Show	GitHub Exploit DB Packet Storm

246478	5	警告	chaozz	-	FireAnt におけるユーザの資格情報を含むデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1052	2012-06-26 16:10	2009-03-24	Show	GitHub Exploit DB Packet Storm

246479	5	警告	chaozz	-	FubarForum におけるユーザの資格情報を含むデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1051	2012-06-26 16:10	2009-03-24	Show	GitHub Exploit DB Packet Storm

246480	7.5	危険	cdexos	-	CDex におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1039	2012-06-26 16:10	2009-03-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
218321	5.5	MEDIUM Local	libemf_project fedoraproject	libemf fedora	ScaleViewPortExtEx in libemf.cpp in libEMF (aka ECMA-234 Metafile Library) 1.0.12 allows an integer overflow and denial of service via a crafted EMF file.	CWE-190 Integer Overflow or Wraparound	CVE-2020-13999	2024-11-21 14:02	2020-06-16	Show	GitHub Exploit DB Packet Storm

218322	9.8	CRITICAL Network	lansweeper	lansweeper	Lansweeper 6.0.x through 7.2.x has a default installation in which the admin password is configured for the admin account, unless "Built-in admin" is manually unchecked. This allows command execution…	CWE-1188 Insecure Default Initialization of Resource	CVE-2020-14011	2024-11-21 14:02	2020-06-16	Show	GitHub Exploit DB Packet Storm

218323	5.4	MEDIUM Network	kumbiaphp	kumbiaphp	KumbiaPHP through 1.1.1, in Development mode, allows XSS via the public/pages/kumbia PATH_INFO.	CWE-79 Cross-site Scripting	CVE-2020-14146	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

218324	8.8	HIGH Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via th…	CWE-787 Out-of-bounds Write	CVE-2020-14076	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

218325	5.9	MEDIUM Network	mutt canonical debian opensuse	mutt ubuntu_linux debian_linux leap	Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-14093	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

218326	8.8	HIGH Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain multiple command injections in apply.cgi via the action send_log_email with the key auth_acname (or auth_passwd), allowing an authenticated user to…	CWE-78 OS Command	CVE-2020-14081	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

218327	9.8	CRITICAL Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an unauthenticated user to execute arbitrary code by POSTing to apply_sec.cgi …	CWE-787 Out-of-bounds Write	CVE-2020-14080	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

218328	8.8	HIGH Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via th…	CWE-787 Out-of-bounds Write	CVE-2020-14079	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

218329	8.8	HIGH Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via th…	CWE-787 Out-of-bounds Write	CVE-2020-14078	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

218330	8.8	HIGH Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via th…	CWE-787 Out-of-bounds Write	CVE-2020-14077	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed