Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256271 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3673 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
256272 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3671 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
256273 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性 CWE-255
CWE-94
CVE-2009-3677 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
256274 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性 CWE-287
不適切な認証 		CVE-2009-2505 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
256275 6.9 警告 acpid - acpid の umask におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4235 2010-01-21 11:44 2009-12-7 Show GitHub Exploit DB Packet Storm
256276 6.9 警告 サイバートラスト株式会社
レッドハット
acpid		 - acpid のレッドハットパッチにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4033 2010-01-21 11:43 2009-12-7 Show GitHub Exploit DB Packet Storm
256277 10 危険 アドビシステムズ - Adobe Illustrator における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-3952 2010-01-21 11:43 2010-01-7 Show GitHub Exploit DB Packet Storm
256278 9.3 危険 アドビシステムズ - Adobe Illustrator における Encapsulated PostScript ファイルの処理に関する任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-4195 2010-01-21 11:43 2009-12-4 Show GitHub Exploit DB Packet Storm
256279 4.4 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux Kernel の exit_notify 関数における任意のシグナルをプロセスに送信可能な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1337 2010-01-21 11:23 2009-04-22 Show GitHub Exploit DB Packet Storm
256280 4.9 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux Kernel における sendmsg 関数の呼び出しに関するサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5300 2010-01-21 11:22 2008-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199021 6.1 MEDIUM
Network 		kibokolabs chained_quiz The chained-quiz plugin 1.1.8.1 for WordPress has reflected XSS via the wp-admin/admin-ajax.php total_questions parameter. CWE-79
Cross-site Scripting 		CVE-2020-7104 2024-11-21 14:36 2020-01-18 Show GitHub Exploit DB Packet Storm
199022 5.3 MEDIUM
Network 		zte f6x2w_firmware V6.0.10P2T2 and V6.0.10P2T5 of F6x2W product are impacted by Information leak vulnerability. Unauthorized users could log in directly to obtain page information without entering a verification code. CWE-669
 Incorrect Resource Transfer Between Spheres 		CVE-2020-6862 2024-11-21 14:36 2020-01-18 Show GitHub Exploit DB Packet Storm
199023 5.6 MEDIUM
Network 		libslirp_project
debian
opensuse
qemu 		libslirp
debian_linux
leap
qemu 		tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC. This can cause a heap-based buffer overflow or other out-of-bounds a… CWE-787
 Out-of-bounds Write 		CVE-2020-7039 2024-11-21 14:36 2020-01-17 Show GitHub Exploit DB Packet Storm
199024 9.1 CRITICAL
Network 		webfactoryltd wp_database_reset The WordPress plugin, WP Database Reset through 3.1, contains a flaw that allowed any unauthenticated user to reset any table in the database to the initial WordPress set-up state (deleting all site … CWE-306
Missing Authentication for Critical Function 		CVE-2020-7048 2024-11-21 14:36 2020-01-17 Show GitHub Exploit DB Packet Storm
199025 8.8 HIGH
Network 		webfactoryltd wp_database_reset The WordPress plugin, WP Database Reset through 3.1, contains a flaw that gave any authenticated user, with minimal permissions, the ability (with a simple wp-admin/admin.php?db-reset-tables[]=users … CWE-269
 Improper Privilege Management 		CVE-2020-7047 2024-11-21 14:36 2020-01-17 Show GitHub Exploit DB Packet Storm
199026 5.4 MEDIUM
Network 		learndash learndash The LearnDash LMS plugin before 3.1.2 for WordPress allows XSS via the ld-profile search field. CWE-79
Cross-site Scripting 		CVE-2020-7108 2024-11-21 14:36 2020-01-16 Show GitHub Exploit DB Packet Storm
199027 6.1 MEDIUM
Network 		etoilewebdesign ultimate_faq The Ultimate FAQ plugin before 1.8.30 for WordPress allows XSS via Display_FAQ to Shortcodes/DisplayFAQs.php. CWE-79
Cross-site Scripting 		CVE-2020-7107 2024-11-21 14:36 2020-01-16 Show GitHub Exploit DB Packet Storm
199028 6.1 MEDIUM
Network 		cacti
debian
opensuse
suse
fedoraproject 		cacti
debian_linux
leap
backports_sle
package_hub
fedora
extra_packages_for_enterprise_linux 		Cacti 1.2.8 has stored XSS in data_sources.php, color_templates_item.php, graphs.php, graph_items.php, lib/api_automation.php, user_admin.php, and user_group_admin.php, as demonstrated by the descrip… CWE-79
Cross-site Scripting 		CVE-2020-7106 2024-11-21 14:36 2020-01-16 Show GitHub Exploit DB Packet Storm
199029 7.5 HIGH
Network 		redislabs
debian
fedoraproject 		hiredis
debian_linux
fedora 		async.c and dict.c in libhiredis.a in hiredis through 0.14.0 allow a NULL pointer dereference because malloc return values are unchecked. CWE-476
 NULL Pointer Dereference 		CVE-2020-7105 2024-11-21 14:36 2020-01-16 Show GitHub Exploit DB Packet Storm
199030 6.5 MEDIUM
Adjacent 		wireshark
debian 		wireshark
debian_linux 		In Wireshark 3.0.x before 3.0.8, the BT ATT dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by validating opcodes. CWE-476
 NULL Pointer Dereference 		CVE-2020-7045 2024-11-21 14:36 2020-01-16 Show GitHub Exploit DB Packet Storm