Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251431	6.8	警告	daman371	-	Bloggeruniverse の editcomments.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-5090	2012-03-27 18:42	2011-09-12	Show	GitHub Exploit DB Packet Storm

251432	4.3	警告	ideacart	-	IdeaCart の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-5089	2012-03-27 18:42	2011-09-12	Show	GitHub Exploit DB Packet Storm

251433	7.5	危険	ideacart	-	IdeaCart 0.02 の secure/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-5088	2012-03-27 18:42	2011-09-12	Show	GitHub Exploit DB Packet Storm

251434	5	警告	GeoVision	-	Geovision Digital Video Surveillance System の geohttpserver におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-5087	2012-03-27 18:42	2011-09-12	Show	GitHub Exploit DB Packet Storm

251435	2.6	注意	IBM	-	IBM TFIM における信頼制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-5085	2012-03-27 18:42	2011-08-12	Show	GitHub Exploit DB Packet Storm

251436	1.9	注意	IBM	-	IBM TFIM における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2009-5084	2012-03-27 18:42	2011-08-12	Show	GitHub Exploit DB Packet Storm

251437	6.8	警告	IBM	-	IBM TFIM における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-5083	2012-03-27 18:42	2011-08-12	Show	GitHub Exploit DB Packet Storm

251438	3.3	注意	GNU Project	-	GNU troff の configure などのスクリプトにおける任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2009-5082	2012-03-27 18:42	2011-06-30	Show	GitHub Exploit DB Packet Storm

251439	3.3	注意	GNU Project	-	GNU troff の config.guess などのスクリプトにおける任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2009-5081	2012-03-27 18:42	2011-06-30	Show	GitHub Exploit DB Packet Storm

251440	3.3	注意	GNU Project	-	GNU troff の contrib/eqn2graph/eqn2graph.sh などのスクリプトにおける任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2009-5080	2012-03-27 18:42	2011-06-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224241	6.1	MEDIUM Network	igniterealtime	openfire	Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp username parameter.	CWE-79 Cross-site Scripting	CVE-2019-20528	2024-11-21 13:38	2020-03-19	Show	GitHub Exploit DB Packet Storm

224242	6.1	MEDIUM Network	open.edx	ironwood	Open edX Ironwood.1 allows support/certificates?course_id= reflected XSS.	CWE-79 Cross-site Scripting	CVE-2019-20512	2024-11-21 13:38	2020-03-19	Show	GitHub Exploit DB Packet Storm

224243	6.1	MEDIUM Network	frappe	erpnext	ERPNext 11.1.47 allows blog?blog_category= Frame Injection.	CWE-79 Cross-site Scripting	CVE-2019-20511	2024-11-21 13:38	2020-03-19	Show	GitHub Exploit DB Packet Storm

224244	9.8	CRITICAL Network	cpanel	cpanel	cPanel before 82.0.18 allows WebDAV authentication bypass because the connection-sharing logic is incorrect (SEC-534).	NVD-CWE-noinfo	CVE-2019-20498	2024-11-21 13:38	2020-03-18	Show	GitHub Exploit DB Packet Storm

224245	5.4	MEDIUM Network	cpanel	cpanel	cPanel before 82.0.18 allows stored XSS via WHM Backup Restoration (SEC-533).	CWE-79 Cross-site Scripting	CVE-2019-20497	2024-11-21 13:38	2020-03-18	Show	GitHub Exploit DB Packet Storm

224246	5.5	MEDIUM Local	cpanel	cpanel	cPanel before 82.0.18 allows attackers to conduct arbitrary chown operations as root during log processing (SEC-532).	NVD-CWE-noinfo	CVE-2019-20496	2024-11-21 13:38	2020-03-18	Show	GitHub Exploit DB Packet Storm

224247	6.5	MEDIUM Network	cpanel	cpanel	cPanel before 82.0.18 allows attackers to read an arbitrary database via MySQL dump streaming (SEC-531).	NVD-CWE-noinfo	CVE-2019-20495	2024-11-21 13:38	2020-03-18	Show	GitHub Exploit DB Packet Storm

224248	3.3	LOW Local	cpanel	cpanel	In cPanel before 82.0.18, Cpanel::Rand::Get can produce a predictable series of numbers (SEC-525).	CWE-330 Use of Insufficiently Random Values	CVE-2019-20494	2024-11-21 13:38	2020-03-18	Show	GitHub Exploit DB Packet Storm

224249	6.1	MEDIUM Network	cpanel	cpanel	cPanel before 82.0.18 allows self-XSS because JSON string escaping is mishandled (SEC-520).	CWE-79 Cross-site Scripting	CVE-2019-20493	2024-11-21 13:38	2020-03-18	Show	GitHub Exploit DB Packet Storm

224250	8.8	HIGH Network	cpanel	cpanel	cPanel before 82.0.18 allows authentication bypass because of misparsing of the format of the password file (SEC-516).	NVD-CWE-noinfo	CVE-2019-20492	2024-11-21 13:38	2020-03-18	Show	GitHub Exploit DB Packet Storm