Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258261 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3671 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
258262 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性 CWE-255
CWE-94
CVE-2009-3677 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
258263 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性 CWE-287
不適切な認証 		CVE-2009-2505 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
258264 6.9 警告 acpid - acpid の umask におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4235 2010-01-21 11:44 2009-12-7 Show GitHub Exploit DB Packet Storm
258265 6.9 警告 サイバートラスト株式会社
レッドハット
acpid		 - acpid のレッドハットパッチにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4033 2010-01-21 11:43 2009-12-7 Show GitHub Exploit DB Packet Storm
258266 10 危険 アドビシステムズ - Adobe Illustrator における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-3952 2010-01-21 11:43 2010-01-7 Show GitHub Exploit DB Packet Storm
258267 9.3 危険 アドビシステムズ - Adobe Illustrator における Encapsulated PostScript ファイルの処理に関する任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-4195 2010-01-21 11:43 2009-12-4 Show GitHub Exploit DB Packet Storm
258268 4.4 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux Kernel の exit_notify 関数における任意のシグナルをプロセスに送信可能な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1337 2010-01-21 11:23 2009-04-22 Show GitHub Exploit DB Packet Storm
258269 4.9 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux Kernel における sendmsg 関数の呼び出しに関するサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5300 2010-01-21 11:22 2008-12-1 Show GitHub Exploit DB Packet Storm
258270 6.8 警告 シスコシステムズ - 複数の SSL VPN (Web VPN) 製品においてウェブブラウザのセキュリティが迂回される問題 CWE-264
認可・権限・アクセス制御 		CVE-2009-2631 2010-01-20 14:15 2009-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209611 6.5 MEDIUM
Network 		biscom secure_file_transfer Biscom Secure File Transfer (SFT) before 5.1.1082 and 6.x before 6.0.1011 allows user credential theft. NVD-CWE-noinfo
CVE-2020-27646 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
209612 3.3 LOW
Local 		imagemagick
debian
opensuse 		imagemagick
debian_linux
leap 		ImageMagick 7.0.10-34 allows Division by Zero in OptimizeLayerFrames in MagickCore/layer.c, which may cause a denial of service. CWE-369
 Divide By Zero 		CVE-2020-27560 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
209613 6.1 MEDIUM
Network 		bigbluebutton greenlight A cross-site scripting (XSS) vulnerability exists in the 'merge account' functionality in admins.js in BigBlueButton Greenlight 2.7.6. CWE-79
Cross-site Scripting 		CVE-2020-27642 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
209614 7.5 HIGH
Network 		fastd_project
debian
fedoraproject 		fastd
debian_linux
fedora 		receive.c in fastd before v21 allows denial of service (assertion failure) when receiving packets with an invalid type code. CWE-617
 Reachable Assertion 		CVE-2020-27638 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
209615 4.3 MEDIUM
Network 		mediawiki mediawiki The FileImporter extension in MediaWiki through 1.35.0 was not properly attributing various user actions to a specific user's IP address. Instead, for various actions, it would report the IP address … NVD-CWE-Other
CVE-2020-27621 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
209616 6.1 MEDIUM
Network 		mediawiki skin\ The Cosmos Skin for MediaWiki through 1.35.0 has stored XSS because MediaWiki messages were not being properly escaped. This is related to wfMessage and Html::rawElement, as demonstrated by CosmosSoc… CWE-79
Cross-site Scripting 		CVE-2020-27620 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
209617 9.8 CRITICAL
Network 		python
fedoraproject
oracle 		python
fedora
communications_cloud_native_core_network_function_cloud_native_environment 		In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP. NVD-CWE-noinfo
CVE-2020-27619 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
209618 9.8 CRITICAL
Network 		loginizer loginizer The Loginizer plugin before 1.6.4 for WordPress allows SQL injection (with resultant XSS), related to loginizer_login_failed and lz_valid_ip. CWE-89
SQL Injection 		CVE-2020-27615 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
209619 6.1 MEDIUM
Network 		cminds cm_download_manager The cm-download-manager plugin before 2.8.0 for WordPress allows XSS. CWE-79
Cross-site Scripting 		CVE-2020-27344 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
209620 8.4 HIGH
Local 		bigbluebutton bigbluebutton The installation procedure in BigBlueButton before 2.2.28 (or earlier) uses ClueCon as the FreeSWITCH password, which allows local users to achieve unintended FreeSWITCH access. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-27613 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm