Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254201 6.8 警告 マイクロソフト - Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2513 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
254202 6.8 警告 マイクロソフト - Microsoft Windows の kernel における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1127 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
254203 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
254204 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
254205 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2722 2010-01-4 14:56 2009-08-10 Show GitHub Exploit DB Packet Storm
254206 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2723 2010-01-4 14:55 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209921 9.8 CRITICAL
Network 		rukovoditel rukovoditel In Rukovoditel V2.5.2, attackers can upload an arbitrary file to the server just changing the the content-type value. As a result of that, an attacker can execute a command on the server. This specif… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-11817 2024-11-21 13:58 2020-04-28 Show GitHub Exploit DB Packet Storm
209922 3.7 LOW
Network 		openvpn
debian
fedoraproject 		openvpn
debian_linux
fedora 		An issue was discovered in OpenVPN 2.4.x before 2.4.9. An attacker can inject a data channel v2 (P_DATA_V2) packet using a victim's peer-id. Normally such packets are dropped, but if this packet arri… CWE-362
Race Condition 		CVE-2020-11810 2024-11-21 13:58 2020-04-28 Show GitHub Exploit DB Packet Storm
209923 9.8 CRITICAL
Network 		squid-cache
debian
opensuse
fedoraproject
canonical 		squid
debian_linux
leap
fedora
ubuntu_linux 		An issue was discovered in Squid before 5.0.2. A remote attacker can replay a sniffed Digest Authentication nonce to gain access to resources that are otherwise forbidden. This occurs because the att… CWE-190
 Integer Overflow or Wraparound 		CVE-2020-11945 2024-11-21 13:58 2020-04-24 Show GitHub Exploit DB Packet Storm
209924 7.5 HIGH
Network 		ntop ndpi In nDPI through 3.2 Stable, an out-of-bounds read in concat_hash_string in ssh.c can be exploited by a network-positioned attacker that can send malformed SSH protocol messages on a network segment m… CWE-125
Out-of-bounds Read 		CVE-2020-11940 2024-11-21 13:58 2020-04-24 Show GitHub Exploit DB Packet Storm
209925 9.8 CRITICAL
Network 		ntop ndpi In nDPI through 3.2 Stable, the SSH protocol dissector has multiple KEXINIT integer overflows that result in a controlled remote heap overflow in concat_hash_string in ssh.c. Due to the granular natu… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2020-11939 2024-11-21 13:58 2020-04-24 Show GitHub Exploit DB Packet Storm
209926 5.9 MEDIUM
Network 		mailstore mailstore_server In MailStore Outlook Add-in (and Email Archive Outlook Add-in) through 12.1.2, the login process does not validate the validity of the certificate presented by the server. CWE-295
Improper Certificate Validation  		CVE-2020-11806 2024-11-21 13:58 2020-04-24 Show GitHub Exploit DB Packet Storm
209927 6.5 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab CE and EE 8.15 through 12.9.2. Members of a group could still have access after the group is deleted. CWE-306
Missing Authentication for Critical Function 		CVE-2020-11649 2024-11-21 13:58 2020-04-23 Show GitHub Exploit DB Packet Storm
209928 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab 10.7.0 and later through 12.9.2. A Workhorse bypass could lead to job artifact uploads and file disclosure (Exposure of Sensitive Information) via request smuggling. CWE-444
HTTP Request Smuggling 		CVE-2020-11506 2024-11-21 13:58 2020-04-23 Show GitHub Exploit DB Packet Storm
209929 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) before 12.7.9, 12.8.x before 12.8.9, and 12.9.x before 12.9.3. A Workhorse bypass could lead to NuGet package and … CWE-444
HTTP Request Smuggling 		CVE-2020-11505 2024-11-21 13:58 2020-04-23 Show GitHub Exploit DB Packet Storm
209930 4.9 MEDIUM
Network 		jetbrains teamcity In JetBrains TeamCity 2018.2 through 2019.2.1, a project administrator was able to see scrambled password parameters used in a project. The issue was resolved in 2019.2.2. NVD-CWE-noinfo
CVE-2020-11938 2024-11-21 13:58 2020-04-22 Show GitHub Exploit DB Packet Storm