Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246891 4.3 警告 Drupal - vbDrupal で使用される Drupal における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-1576 2012-06-26 16:10 2009-04-29 Show GitHub Exploit DB Packet Storm
246892 4.6 警告 Debian
Canonical
branden robinson
レッドハット		 - Debian GNU/Linux などの製品で使用される xvfb-run における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1573 2012-06-26 16:10 2009-05-6 Show GitHub Exploit DB Packet Storm
246893 6.8 警告 シスコシステムズ - Cisco Linksys WRT54GC ルータの administration.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-1561 2012-06-26 16:10 2009-05-6 Show GitHub Exploit DB Packet Storm
246894 7.8 危険 シスコシステムズ - Cisco Linksys WVC54GCA ワイアレスビデオカメラにおける重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2009-1560 2012-06-26 16:10 2009-05-6 Show GitHub Exploit DB Packet Storm
246895 7.8 危険 シスコシステムズ - Cisco Linksys WVC54GCA ワイアレスビデオカメラ上の adm/file.cgi における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1559 2012-06-26 16:10 2009-05-6 Show GitHub Exploit DB Packet Storm
246896 7.8 危険 シスコシステムズ - Cisco Linksys WVC54GCA ワイアレスビデオカメラの adm/file.cgi におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1558 2012-06-26 16:10 2009-05-6 Show GitHub Exploit DB Packet Storm
246897 4.3 警告 シスコシステムズ - Cisco Linksys WVC54GCA ワイアレスビデオカメラにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1557 2012-06-26 16:10 2009-05-6 Show GitHub Exploit DB Packet Storm
246898 3.5 注意 シスコシステムズ - Cisco Linksys WVC54GCA ワイアレスビデオカメラの img/main.cgi における img/ 配下の任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2009-1556 2012-06-26 16:10 2009-05-6 Show GitHub Exploit DB Packet Storm
246899 5 警告 シスコシステムズ - Cisco Linksys WVC54GCA ワイアレスビデオカメラにおけるパスワードなどの重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-1555 2012-06-26 16:10 2009-05-6 Show GitHub Exploit DB Packet Storm
246900 7.5 危険 agtc - AGTC MyShop における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-1549 2012-06-26 16:10 2009-05-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219081 7.8 HIGH
Local 		sun-denshi universal_forensic_extraction_device_firmware Cellebrite UFED 5.0 to 7.5.0.845 implements local operating system policies that can be circumvented to obtain a command prompt via the Windows file dialog that is reachable via the Certificate-Based… CWE-269
 Improper Privilege Management 		CVE-2020-12798 2024-11-21 14:00 2020-05-16 Show GitHub Exploit DB Packet Storm
219082 9.8 CRITICAL
Network 		eq-3 homematic_ccu2_firmware
ccu3_firmware 		eQ-3 Homematic Central Control Unit (CCU)2 through 2.51.6 and CCU3 through 3.51.6 allow Remote Code Execution in the JSON API Method ReGa.runScript, by unauthenticated attackers with access to the we… CWE-276
Incorrect Default Permissions  		CVE-2020-12834 2024-11-21 14:00 2020-05-16 Show GitHub Exploit DB Packet Storm
219083 6.1 MEDIUM
Network 		redhat interchange XSS in the admin help system admin/help.html and admin/quicklinks.html in Interchange 4.7.0 through 5.11.x allows remote attackers to steal credentials or data via browser JavaScript. CWE-79
Cross-site Scripting 		CVE-2020-12685 2024-11-21 14:00 2020-05-16 Show GitHub Exploit DB Packet Storm
219084 5.4 MEDIUM
Network 		rcos submitty Submitty through 20.04.01 allows XSS via upload of an SVG document, as demonstrated by an attack by a Student against a Teaching Fellow. CWE-79
Cross-site Scripting 		CVE-2020-12882 2024-11-21 14:00 2020-05-15 Show GitHub Exploit DB Packet Storm
219085 7.5 HIGH
Network 		veritas aptare Veritas APTARE versions prior to 10.4 allowed sensitive information to be accessible without authentication. CWE-306
Missing Authentication for Critical Function 		CVE-2020-12877 2024-11-21 14:00 2020-05-15 Show GitHub Exploit DB Packet Storm
219086 7.5 HIGH
Network 		veritas aptare Veritas APTARE versions prior to 10.4 allowed remote users to access several unintended files on the server. This vulnerability only impacts Windows server deployments. CWE-863
 Incorrect Authorization 		CVE-2020-12876 2024-11-21 14:00 2020-05-15 Show GitHub Exploit DB Packet Storm
219087 6.3 MEDIUM
Network 		veritas aptare Veritas APTARE versions prior to 10.4 did not perform adequate authorization checks. An authenticated user could gain unauthorized access to sensitive information or functionality by manipulating spe… CWE-863
 Incorrect Authorization 		CVE-2020-12875 2024-11-21 14:00 2020-05-15 Show GitHub Exploit DB Packet Storm
219088 9.8 CRITICAL
Network 		veritas aptare Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when specific authentication credentials were provided to the server. CWE-287
Improper Authentication 		CVE-2020-12874 2024-11-21 14:00 2020-05-15 Show GitHub Exploit DB Packet Storm
219089 6.1 MEDIUM
Network 		progress moveit_automation An issue was discovered in Progress MOVEit Automation Web Admin. A Web Admin application endpoint failed to adequately sanitize malicious input, which could allow an unauthenticated attacker to execu… CWE-79
Cross-site Scripting 		CVE-2020-12677 2024-11-21 14:00 2020-05-15 Show GitHub Exploit DB Packet Storm
219090 6.5 MEDIUM
Adjacent 		alberta
tracetogether
health
gov 		abtracetogether
tracetogether
covidsafe
protego_safe 		The COVIDSafe (Australia) app 1.0 and 1.1 for iOS allows a remote attacker to crash the app, and consequently interfere with COVID-19 contact tracing, via a Bluetooth advertisement containing manufac… NVD-CWE-noinfo
CVE-2020-12717 2024-11-21 14:00 2020-05-14 Show GitHub Exploit DB Packet Storm