Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
247101 6.8 警告 castro xl - TorrentVolve の archive.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2101 2012-06-26 16:10 2009-06-17 Show GitHub Exploit DB Packet Storm
247102 7.5 危険 david degner - phpCollegeExchange の house/listing_view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2096 2012-06-26 16:10 2009-06-17 Show GitHub Exploit DB Packet Storm
247103 7.5 危険 creative web solutions - Creative Web Solutions Multi-Level CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2082 2012-06-26 16:10 2009-06-16 Show GitHub Exploit DB Packet Storm
247104 3.5 注意 Drupal - Drupal 用の Taxonomy manager モジュールの管理ページインターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2079 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
247105 4 警告 Angry Donuts
Drupal		 - Drupal のモジュールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2077 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
247106 3.5 注意 Drupal - Drupal 用の Views モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2076 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
247107 7.5 危険 Angry Donuts
Drupal		 - Drupal のモジュールの Nodequeue における詳細不明な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2075 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
247108 3.5 注意 Drupal - Drupal 用の Nodequeue モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2074 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
247109 6.8 警告 シスコシステムズ - Linksys WRT160N ワイアレスルータにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-2073 2012-06-26 16:10 2009-06-15 Show GitHub Exploit DB Packet Storm
247110 5.4 警告 アップル - Apple Safari における任意の https サイトを偽装される脆弱性 CWE-287
不適切な認証 		CVE-2009-2072 2012-06-26 16:10 2009-06-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219471 7.5 HIGH
Network 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Input is not properly sanitized and may allow an attacker to inject SQL commands. CWE-89
SQL Injection 		CVE-2020-12014 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
219472 7.1 HIGH
Local 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow an authenticated user to use a specially crafted file to delete… CWE-22
Path Traversal 		CVE-2020-12010 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
219473 9.8 CRITICAL
Network 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow a low privilege user to overwrite files outside the application… CWE-22
Path Traversal 		CVE-2020-12006 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
219474 9.8 CRITICAL
Network 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple stack-based buffer overflow vulnerabilities exist caused by a lack of proper validation of the length of user-supplied data,… CWE-787
 Out-of-bounds Write 		CVE-2020-12002 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
219475 7.5 HIGH
Network 		zohocorp manageengine_opmanager Zoho ManageEngine OpManager Stable build before 124196 and Released build before 125125 allows an unauthenticated attacker to read arbitrary files on the server by sending a crafted request. CWE-22
Path Traversal 		CVE-2020-12116 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
219476 7.8 HIGH
Local 		solarwinds managed_service_provider_patch_management_engine An issue was discovered in SolarWinds MSP PME (Patch Management Engine) Cache Service before 1.1.15 in the Advanced Monitoring Agent. There are insecure file permissions for %PROGRAMDATA%\SolarWinds … CWE-276
Incorrect Default Permissions  		CVE-2020-12608 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
219477 5.3 MEDIUM
Network 		gitlab gitlab GitLab EE 12.8 and later allows Exposure of Sensitive Information to an Unauthorized Actor via NuGet. CWE-22
Path Traversal 		CVE-2020-12448 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
219478 6.5 MEDIUM
Network 		gnu
debian
fedoraproject
opensuse
canonical 		mailman
debian_linux
fedora
leap
backports_sle
ubuntu_linux 		/options/mailman in GNU Mailman before 2.1.31 allows Arbitrary Content Injection. CWE-74
Injection 		CVE-2020-12108 2024-11-21 13:59 2020-05-7 Show GitHub Exploit DB Packet Storm
219479 7.8 HIGH
Local 		avira software_updater An elevation of privilege vulnerability exists in Avira Software Updater before 2.0.6.27476 due to improperly handling file hard links. This allows local users to obtain take control of arbitrary fil… NVD-CWE-noinfo
CVE-2020-12463 2024-11-21 13:59 2020-05-6 Show GitHub Exploit DB Packet Storm
219480 5.3 MEDIUM
Network 		grin grin Grin before 3.1.0 allows attackers to adversely affect availability of data on a Mimblewimble blockchain. CWE-404
 Improper Resource Shutdown or Release 		CVE-2020-12439 2024-11-21 13:59 2020-05-6 Show GitHub Exploit DB Packet Storm