Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249881 4.3 警告 IBM - IBM Lotus Notes Traveler の Nokia クライアントにおける他人への電子メールを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2009-5035 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
249882 4 警告 IBM - IBM Lotus Notes Traveler におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5034 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
249883 4 警告 IBM - IBM Lotus Notes Traveler における他人のユーザデータにアクセスされる脆弱性 CWE-200
情報漏えい 		CVE-2009-5033 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
249884 5.8 警告 IBM - IBM Lotus Notes Traveler の電子メール暗号化機能における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2009-5032 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
249885 7.5 危険 Cobbler project - Cobbler におけるアクセスを取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-5021 2012-03-27 18:42 2010-12-9 Show GitHub Exploit DB Packet Storm
249886 5.8 警告 Laurent Destailleur - AWStats におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2009-5020 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
249887 5 警告 webwiz - Web Wiz NewsPad におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-5019 2012-03-27 18:42 2010-12-1 Show GitHub Exploit DB Packet Storm
249888 4.3 警告 mark pilgrim - Universal Feed Parser の feedparser.py におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-5065 2012-03-27 18:42 2009-11-18 Show GitHub Exploit DB Packet Storm
249889 6.8 警告 レッドハット - Red Hat Network Satellite およびその他の製品の Spacewalk におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-4139 2012-03-27 18:42 2011-06-16 Show GitHub Exploit DB Packet Storm
249890 5 警告 Stichting NLnet Labs - Unbound におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-4008 2012-03-27 18:42 2011-06-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210721 7.5 HIGH
Network 		secudos domos conf_datetime in Secudos DOMOS 5.8 allows remote attackers to execute arbitrary commands as root via shell metacharacters in the zone field (obtained from the web interface). CWE-78
OS Command  		CVE-2020-14293 2024-11-21 14:02 2020-10-2 Show GitHub Exploit DB Packet Storm
210722 6.1 MEDIUM
Network 		hcltech digital_experience HCL Digital Experience 8.5, 9.0, 9.5 is susceptible to cross-site scripting (XSS). The vulnerability could be employed in a reflected or non-persistent XSS attack. CWE-79
Cross-site Scripting 		CVE-2020-14223 2024-11-21 14:02 2020-10-2 Show GitHub Exploit DB Packet Storm
210723 5.5 MEDIUM
Local 		apache nifi In Apache NiFi 1.0.0 to 1.11.4, the notification service manager and various policy authorizer and user group provider objects allowed trusted administrators to inadvertently configure a potentially … CWE-611
XXE 		CVE-2020-13940 2024-11-21 14:02 2020-10-2 Show GitHub Exploit DB Packet Storm
210724 8.1 HIGH
Network 		apache superset In the course of work on the open source project it was discovered that authenticated users running queries against Hive and Presto database engines could access information via a number of templated… NVD-CWE-noinfo
CVE-2020-13952 2024-11-21 14:02 2020-10-1 Show GitHub Exploit DB Packet Storm
210725 7.2 HIGH
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. It stores SMS messages in .NET serialized format on the filesystem. By generating (and writing to the disk) malicious .NET serialized f… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-14030 2024-11-21 14:02 2020-10-1 Show GitHub Exploit DB Packet Storm
210726 5.3 MEDIUM
Network 		apache tapestry In Apache Tapestry from 5.4.0 to 5.5.0, crafting specific URLs, an attacker can download files inside the WEB-INF folder of the WAR being run. CWE-552
 Files or Directories Accessible to External Parties 		CVE-2020-13953 2024-11-21 14:02 2020-10-1 Show GitHub Exploit DB Packet Storm
210727 7.5 HIGH
Network 		apache openmeetings Attackers can use public NetTest web service of Apache OpenMeetings 4.0.0-5.0.0 to organize denial of service attack. NVD-CWE-noinfo
CVE-2020-13951 2024-11-21 14:02 2020-10-1 Show GitHub Exploit DB Packet Storm
210728 9.8 CRITICAL
Network 		airforce nitf_extract_utility U.S. Air Force Sensor Data Management System extract75 has a buffer overflow that leads to code execution. An overflow in a global variable (sBuffer) leads to a Write-What-Where outcome. Writing beyo… CWE-787
 Out-of-bounds Write 		CVE-2020-13995 2024-11-21 14:02 2020-09-25 Show GitHub Exploit DB Packet Storm
210729 7.5 HIGH
Network 		jerryscript jerryscript vm/opcodes.c in JerryScript 2.2.0 allows attackers to hijack the flow of control by controlling a register. NVD-CWE-noinfo
CVE-2020-13991 2024-11-21 14:02 2020-09-25 Show GitHub Exploit DB Packet Storm
210730 7.2 HIGH
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The outbox functionality of the TXT File module can be used to delete all/most files in a folder. Because the product usually runs as N… NVD-CWE-noinfo
CVE-2020-14031 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm