Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256231 3.5 注意 Drupal
サイバートラスト株式会社		 - Drupal の Contact モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4369 2010-02-2 11:42 2009-12-16 Show GitHub Exploit DB Packet Storm
256232 7.5 危険 日立 - Cosminexus、Processing Kit for XML および Hitachi Developer's Kit for Java におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		- 2010-02-2 11:42 2009-12-22 Show GitHub Exploit DB Packet Storm
256233 4.3 警告 VMware - 複数の VMware 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3731 2010-02-1 11:52 2009-12-15 Show GitHub Exploit DB Packet Storm
256234 10 危険 サイバートラスト株式会社
Linux		 - Linux kernel および gxsnmp パッケージの asn1 の実装における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2008-1673 2010-02-1 11:51 2008-06-10 Show GitHub Exploit DB Packet Storm
256235 10 危険 ヒューレット・パッカード - 複数の Symantec 製品の VRTSweb における任意のコードを実行される脆弱性 CWE-287
不適切な認証 		CVE-2009-3027 2010-02-1 11:51 2009-12-8 Show GitHub Exploit DB Packet Storm
256236 9.3 危険 KDE project
Glyph & Cog, LLC
GNOME Project
サイバートラスト株式会社
レッドハット		 - Xpdf、gpdf および kpdf の FoFiType1::parse 関数における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4035 2010-01-29 09:54 2009-12-16 Show GitHub Exploit DB Packet Storm
256237 7.8 危険 Mozilla Foundation - Mozilla Firefox/SeaMonkey の GeckoActiveXObject 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-3987 2010-01-29 09:54 2009-12-15 Show GitHub Exploit DB Packet Storm
256238 7.6 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox/SeaMonkey における任意の JavaScript を実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3986 2010-01-29 09:54 2009-12-15 Show GitHub Exploit DB Packet Storm
256239 6.8 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox/SeaMonkey におけるコンテンツを偽装される脆弱性 CWE-Other
その他 		CVE-2009-3985 2010-01-29 09:53 2009-12-15 Show GitHub Exploit DB Packet Storm
256240 6.8 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox/SeaMonkey における http URL または file URL の SSL インジケータを偽装される脆弱性 CWE-Other
その他 		CVE-2009-3984 2010-01-29 09:53 2009-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211271 9.8 CRITICAL
Network 		airforce nitf_extract_utility U.S. Air Force Sensor Data Management System extract75 has a buffer overflow that leads to code execution. An overflow in a global variable (sBuffer) leads to a Write-What-Where outcome. Writing beyo… CWE-787
 Out-of-bounds Write 		CVE-2020-13995 2024-11-21 14:02 2020-09-25 Show GitHub Exploit DB Packet Storm
211272 7.5 HIGH
Network 		jerryscript jerryscript vm/opcodes.c in JerryScript 2.2.0 allows attackers to hijack the flow of control by controlling a register. NVD-CWE-noinfo
CVE-2020-13991 2024-11-21 14:02 2020-09-25 Show GitHub Exploit DB Packet Storm
211273 7.2 HIGH
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The outbox functionality of the TXT File module can be used to delete all/most files in a folder. Because the product usually runs as N… NVD-CWE-noinfo
CVE-2020-14031 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211274 7.2 HIGH
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. By leveraging a path traversal vulnerability in the Autoreply module's Script Name, an attacker may write to or overwrite arbitrary fil… CWE-22
Path Traversal 		CVE-2020-14028 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211275 5.3 MEDIUM
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The database connection strings accept custom unsafe arguments, such as ENABLE_LOCAL_INFILE, that can be leveraged by attackers to enab… CWE-88
Argument Injection 		CVE-2020-14027 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211276 8.8 HIGH
Network 		ozeki ozeki_ng_sms_gateway CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the Export Of Contacts feature in Ozeki NG SMS Gateway through 4.17.6 via a value that is mishandled in a CSV export. CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2020-14026 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211277 8.8 HIGH
Network 		ozeki ozeki_ng_sms_gateway Ozeki NG SMS Gateway through 4.17.6 has multiple CSRF vulnerabilities. For example, an administrator, by following a link, can be tricked into making unwanted changes such as installing new modules o… CWE-352
 Origin Validation Error 		CVE-2020-14025 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211278 6.1 MEDIUM
Network 		ozeki ozeki_ng_sms_gateway Ozeki NG SMS Gateway through 4.17.6 has multiple authenticated stored and/or reflected XSS vulnerabilities via the (1) Receiver or Recipient field in the Mailbox feature, (2) OZFORM_GROUPNAME field i… CWE-79
Cross-site Scripting 		CVE-2020-14024 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211279 4.9 MEDIUM
Network 		ozeki ozeki_ng_sms_gateway Ozeki NG SMS Gateway through 4.17.6 allows SSRF via SMS WCF or RSS To SMS. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-14023 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211280 8.8 HIGH
Network 		ozeki ozeki_ng_sms_gateway Ozeki NG SMS Gateway 4.17.1 through 4.17.6 does not check the file type when bulk importing new contacts ("Import Contacts" functionality) from a file. It is possible to upload an executable or .bat … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-14022 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm