Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256901	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256902	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

256903	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

256904	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209531	9.8	CRITICAL Network	autohotkey	autohotkey	A process injection vulnerability in setup.exe of AutoHotkey 1.1.32.00 allows attackers to escalate privileges.	NVD-CWE-noinfo	CVE-2020-18174	2024-11-21 14:08	2021-07-27	Show	GitHub Exploit DB Packet Storm

209532	7.8	HIGH Local	1password	1password	A DLL injection vulnerability in 1password.dll of 1Password 7.3.712 allows attackers to execute arbitrary code.	CWE-427 Uncontrolled Search Path Element	CVE-2020-18173	2024-11-21 14:08	2021-07-27	Show	GitHub Exploit DB Packet Storm

209533	9.8	CRITICAL Network	trezor	bridge	A code injection vulnerability in the SeDebugPrivilege component of Trezor Bridge 2.0.27 allows attackers to escalate privileges.	CWE-94 Code Injection	CVE-2020-18172	2024-11-21 14:08	2021-07-27	Show	GitHub Exploit DB Packet Storm

209534	8.8	HIGH Local	techsmith	snagit	TechSmith Snagit 19.1.0.2653 uses Object Linking and Embedding (OLE) which can allow attackers to obfuscate and embed crafted files used to escalate privileges. NOTE: This implies that Snagit's use o…	CWE-269 Improper Privilege Management	CVE-2020-18171	2024-11-21 14:08	2021-07-27	Show	GitHub Exploit DB Packet Storm

209535	9.8	CRITICAL Network	abloy	key_manager	An issue in the SeChangeNotifyPrivilege component of Abloy Key Manager Version 7.14301.0.0 allows attackers to escalate privileges via a change in permissions.	NVD-CWE-Other	CVE-2020-18170	2024-11-21 14:08	2021-07-27	Show	GitHub Exploit DB Packet Storm

209536	7.8	HIGH Local	techsmith	snagit	A vulnerability in the Windows installer XML (WiX) toolset of TechSmith Snagit 19.1.1.2860 allows attackers to escalate privileges. NOTE: Exploit of the Snagit installer would require the end user to…	CWE-269 Improper Privilege Management	CVE-2020-18169	2024-11-21 14:08	2021-07-27	Show	GitHub Exploit DB Packet Storm

209537	9.8	CRITICAL Network	twothink_project	twothink	A remote code execution (RCE) vulnerability in /library/think/App.php of Twothink v2.0 allows attackers to execute arbitrary PHP code.	NVD-CWE-noinfo	CVE-2020-17952	2024-11-21 14:08	2021-07-27	Show	GitHub Exploit DB Packet Storm

209538	9.8	CRITICAL Network	intelliants	subrion	SQL Injection vulnerability in Subrion CMS v4.2.1 in the search page if a website uses a PDO connection.	CWE-89 SQL Injection	CVE-2020-18155	2024-11-21 14:08	2021-07-15	Show	GitHub Exploit DB Packet Storm

209539	6.5	MEDIUM Network	thinkcmf	thinkcmf	Cross Site Request Forgery (CSRF) vulnerability in ThinkCMF v5.1.0, which can add an admin account.	CWE-352 Origin Validation Error	CVE-2020-18151	2024-11-21 14:08	2021-07-15	Show	GitHub Exploit DB Packet Storm

209540	6.1	MEDIUM Network	baidu	umeditor	Cross Site Scripting (XSS) vulnerability in umeditor v1.2.3 via /public/common/umeditor/php/getcontent.php.	CWE-79 Cross-site Scripting	CVE-2020-18145	2024-11-21 14:08	2021-07-15	Show	GitHub Exploit DB Packet Storm