Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225471 4.3 警告 x10media - x10 Adult Media Script におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4729 2012-12-20 19:28 2010-03-18 Show GitHub Exploit DB Packet Storm
225472 7.5 危険 questions answered - Questions Answered の管理インターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4728 2012-12-20 19:28 2010-03-18 Show GitHub Exploit DB Packet Storm
225473 4.3 警告 phpscriptsnow - Real Time Currency Exchange の rates.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4715 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
225474 7.5 危険 tukanas - Tukanas Classifieds Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4712 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
225475 4.3 警告 Pligg - Pligg におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4788 2012-12-20 19:28 2009-11-30 Show GitHub Exploit DB Packet Storm
225476 6.8 警告 Pligg - Pligg におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-4787 2012-12-20 19:28 2009-11-30 Show GitHub Exploit DB Packet Storm
225477 4.3 警告 Pligg - Pligg におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4786 2012-12-20 19:28 2009-11-30 Show GitHub Exploit DB Packet Storm
225478 4.3 警告 phpMyFAQ - phpMyFAQ の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4780 2012-12-20 19:28 2009-12-1 Show GitHub Exploit DB Packet Storm
225479 6.8 警告 Ubercart - Drupal 用の Ubercart モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-4773 2012-12-20 19:28 2009-11-18 Show GitHub Exploit DB Packet Storm
225480 4.3 警告 Ubercart - Drupal 用の Ubercart モジュールにおける重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-4772 2012-12-20 19:28 2009-11-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348541 - jasio.net ragnarok_online_control_panel functions.php in Ragnarok Online Control Panel (ROCP) 4.3.4a allows remote attackers to bypass authentication by requesting account_manage.php with a trailing "/login.php" PHP_SELF value, which is no… CWE-287
Improper Authentication 		CVE-2005-4861 2008-09-6 05:58 2005-12-31 Show GitHub Exploit DB Packet Storm
348542 - xwiki xwiki The search functionality in XWiki 0.9.793 indexes cleartext user passwords, which allows remote attackers to obtain sensitive information via a search string that matches a password. CWE-255
Credentials Management 		CVE-2005-4862 2008-09-6 05:58 2005-12-31 Show GitHub Exploit DB Packet Storm
348543 - hitachi business_logic Multiple SQL injection vulnerabilities in Hitachi Business Logic - Container (BLC) P-2443-9114 01-00 through 02-06 on Windows, and P-1M43-9111 01-01 through 02-00 on AIX, allow remote attackers to ex… NVD-CWE-Other
CVE-2005-4578 2008-09-6 05:57 2005-12-29 Show GitHub Exploit DB Packet Storm
348544 - phpsurveyor phpsurveyor Multiple SQL injection vulnerabilities in PHPSurveyor before 0.991 allow remote attackers to execute arbitrary SQL commands via the (1) sql parameter in browse.php and the (2) sid, (3) lid, (4) gid, … NVD-CWE-Other
CVE-2005-4586 2008-09-6 05:57 2005-12-30 Show GitHub Exploit DB Packet Storm
348545 - juniper netscreen-security_manager_2004 Juniper NetScreen-Security Manager (NSM) 2004 FP2 and FP3 allow remote attackers to cause a denial of service (crash or hang of server components that are automatically restarted) via a long crafted … NVD-CWE-Other
CVE-2005-4587 2008-09-6 05:57 2005-12-30 Show GitHub Exploit DB Packet Storm
348546 - efilego efilego Directory traversal vulnerability in eFileGo 3.01 allows remote attackers to execute arbitrary code, read arbitrary files, and upload arbitrary files via a ... (triple dot) in (1) the URL on port 608… NVD-CWE-Other
CVE-2005-4622 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm
348547 - efilego efilego upload.exe in eFileGo 3.01 allows remote attackers to cause a denial of service (CPU consumption) via an argument with an invalid directory name. NVD-CWE-Other
CVE-2005-4623 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm
348548 - ptnet ptnet_ircd The m_join function in channel.c for PTnet ircd 1.5 and 1.6 allows remote attackers to cause a denial of service (memory exhaustion that triggers a daemon restart) via a large number of requests to j… NVD-CWE-Other
CVE-2005-4624 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm
348549 - 3cfr 3cfr SQL injection vulnerability in index.php in 3CFR allows remote attackers to execute arbitrary SQL commands via the LangueID parameter. NVD-CWE-Other
CVE-2005-4645 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm
348550 - illustrate dbpoweramp_music_converter Buffer overflow in Illustrate dBpowerAMP Music Converter 11.5 and earlier, possibly including (1) MusicConverter.exe, (2) playlist.exe, and (3) amp.exe, allows user-assisted attackers to cause a deni… NVD-CWE-Other
CVE-2005-4648 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm