Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253701 9.3 危険 マイクロソフト - Microsoft Windows の Indeo コーデックにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4312 2010-01-25 11:52 2009-12-8 Show GitHub Exploit DB Packet Storm
253702 9.3 危険 マイクロソフト - Microsoft Windows の Indeo コーデックにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4311 2010-01-25 11:52 2009-12-8 Show GitHub Exploit DB Packet Storm
253703 9.3 危険 マイクロソフト - Indeo コーデックに複数の脆弱性 CWE-119
バッファエラー 		CVE-2009-4310 2010-01-25 11:52 2009-12-15 Show GitHub Exploit DB Packet Storm
253704 9.3 危険 マイクロソフト - Microsoft Windows の Windows Media Player 用の Intel Indeo41 コーデックにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4309 2010-01-25 11:51 2009-12-8 Show GitHub Exploit DB Packet Storm
253705 9.3 危険 マイクロソフト - Microsoft Windows の Indeo コーデックにおけるサービス運用妨害 (DoS) の脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4210 2010-01-25 11:51 2009-12-8 Show GitHub Exploit DB Packet Storm
253706 5 警告 アップル
サイバートラスト株式会社
IPsec-Tools
レッドハット		 - Ipsec-tools の証明書検証および NAT-Traversal におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1632 2010-01-25 11:48 2009-05-14 Show GitHub Exploit DB Packet Storm
253707 4 警告 PostgreSQL.org
サイバートラスト株式会社
ターボリナックス
サン・マイクロシステムズ
レッドハット		 - PostgreSQL のエラーメッセージの変換処理に関するサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0922 2010-01-25 11:48 2009-03-17 Show GitHub Exploit DB Packet Storm
253708 5.7 警告 日本電気
インターネットイニシアティブ
ヤマハ
古河電気工業		 - IPv6 を実装した複数の製品にサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		- 2010-01-25 11:47 2009-10-26 Show GitHub Exploit DB Packet Storm
253709 9.3 危険 マイクロソフト - 複数の Microsoft 製品のテキストコンバーターにおける整数オーバーフローの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2506 2010-01-22 10:27 2009-12-8 Show GitHub Exploit DB Packet Storm
253710 9 危険 マイクロソフト - Microsoft Windows の Active Directory フェデレーションサービスにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2509 2010-01-22 10:27 2009-12-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197621 5.3 MEDIUM
Network 		cisco application_policy_infrastructure_controller A vulnerability in the out of band (OOB) management interface IP table rule programming for Cisco Application Policy Infrastructure Controller (APIC) could allow an unauthenticated, remote attacker t… CWE-20
 Improper Input Validation  		CVE-2020-3139 2024-11-21 14:30 2020-01-26 Show GitHub Exploit DB Packet Storm
197622 6.1 MEDIUM
Network 		cisco jabber_guest A vulnerability in the web-based management interface of Cisco Jabber Guest could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-ba… CWE-79
Cross-site Scripting 		CVE-2020-3136 2024-11-21 14:30 2020-01-26 Show GitHub Exploit DB Packet Storm
197623 6.5 MEDIUM
Network 		cisco email_security_appliance A vulnerability in the zip decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) c… CWE-20
 Improper Input Validation  		CVE-2020-3134 2024-11-21 14:30 2020-01-26 Show GitHub Exploit DB Packet Storm
197624 6.5 MEDIUM
Network 		cisco webex_teams A vulnerability in the Cisco Webex Teams client for Windows could allow an authenticated, remote attacker to cause the client to crash, resulting in a denial of service (DoS) condition. The attacker … CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-3131 2024-11-21 14:30 2020-01-26 Show GitHub Exploit DB Packet Storm
197625 4.8 MEDIUM
Network 		cisco unity_connection A vulnerability in the web-based management interface of Cisco Unity Connection Software could allow an authenticated, remote attacker to perform a stored cross-site scripting (XSS) attack. The vulne… CWE-79
Cross-site Scripting 		CVE-2020-3129 2024-11-21 14:30 2020-01-26 Show GitHub Exploit DB Packet Storm
197626 6.1 MEDIUM
Network 		cisco sg250x-24_firmware
sg250x-24p_firmware
sg250x-48_firmware
sg250x-48p_firmware
sg250-08_firmware
sg250-08hp_firmware
sg250-10p_firmware
sg250-18_firmware
sg250-26_firmware
s… 		A vulnerability in the web-based management interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack… CWE-79
Cross-site Scripting 		CVE-2020-3121 2024-11-21 14:30 2020-01-26 Show GitHub Exploit DB Packet Storm
197627 5.4 MEDIUM
Network 		openmrs appointment_scheduling_module A vulnerability was found in OpenMRS Appointment Scheduling Module up to 1.12.x. It has been classified as problematic. This affects the function validateFieldName of the file api/src/main/java/org/o… CWE-79
Cross-site Scripting 		CVE-2020-36635 2024-11-21 14:29 2022-12-28 Show GitHub Exploit DB Packet Storm
197628 9.1 CRITICAL
Network 		unzip_project unzip Due to improper path sanitization, archives containing relative file paths can cause files to be written (or overwritten) outside of the target directory. CWE-22
Path Traversal 		CVE-2020-36561 2024-11-21 14:29 2022-12-28 Show GitHub Exploit DB Packet Storm
197629 5.4 MEDIUM
Network 		indeed util A vulnerability classified as problematic has been found in Indeed Engineering util up to 1.0.33. Affected is the function visit/appendTo of the file varexport/src/main/java/com/indeed/util/varexport… - CVE-2020-36634 2024-11-21 14:29 2022-12-27 Show GitHub Exploit DB Packet Storm
197630 5.3 MEDIUM
Network 		labstack echo Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has p… CWE-22
Path Traversal 		CVE-2020-36565 2024-11-21 14:29 2022-12-8 Show GitHub Exploit DB Packet Storm