Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 2:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225681	6.8	警告	usolved	-	USOLVED NEWSolved の newsscript.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2389	2012-12-20 19:10	2009-07-9	Show	GitHub Exploit DB Packet Storm

225682	6.8	警告	shalwan	-	Opial の admin/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2388	2012-12-20 19:10	2009-07-9	Show	GitHub Exploit DB Packet Storm

225683	4.9	警告	サン・マイクロシステムズ	-	Sun OpenSolaris の proc filesystem におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-2387	2012-12-20 19:10	2009-07-5	Show	GitHub Exploit DB Packet Storm

225684	4.3	警告	tangocms	-	TangoCMS の application/libraries/Html.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2376	2012-12-20 19:10	2009-07-8	Show	GitHub Exploit DB Packet Storm

225685	6.8	警告	wxwidgets	-	wxWidgets の src/common/image.cpp における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-2369	2012-12-20 19:10	2009-07-8	Show	GitHub Exploit DB Packet Storm

225686	9.3	危険	yukudr	-	KUDRSOFT AudioPLUS におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2363	2012-12-20 19:10	2009-07-8	Show	GitHub Exploit DB Packet Storm

225687	9.3	危険	yukudr	-	KUDRSOFT AudioPLUS におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2362	2012-12-20 19:10	2009-07-8	Show	GitHub Exploit DB Packet Storm

225688	7.5	危険	yasinkaplan	-	TekRADIUS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2359	2012-12-20 19:10	2009-07-7	Show	GitHub Exploit DB Packet Storm

225689	4.6	警告	yasinkaplan	-	TekRADIUS における難読化したデータベース資格情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-2358	2012-12-20 19:10	2009-07-7	Show	GitHub Exploit DB Packet Storm

225690	10	危険	yasinkaplan	-	TekRADIUS のデフォルト設定におけるデータベースへのアクセス権限を取得される脆弱性	CWE-16 環境設定	CVE-2009-2357	2012-12-20 19:10	2009-07-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314611	5.8	MEDIUM Network	chillcreations	com_ccnewsletter	Directory traversal vulnerability in the ccNewsletter (com_ccnewsletter) component 1.0.5 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter in …	CWE-22 Path Traversal	CVE-2010-0467	2024-01-27 02:44	2010-02-3	Show	GitHub Exploit DB Packet Storm

314612	9.8	CRITICAL Network	debian canonical	lintian debian_linux ubuntu_linux	Multiple directory traversal vulnerabilities in Lintian 1.23.x through 1.23.28, 1.24.x through 1.24.2.1, and 2.x before 2.3.2 allow remote attackers to overwrite arbitrary files or obtain sensitive i…	CWE-22 Path Traversal	CVE-2009-4013	2024-01-27 02:44	2010-02-3	Show	GitHub Exploit DB Packet Storm

314613	7.5	HIGH Network	ibm	websphere_application_server	IBM WebSphere server 3.0.2 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.	CWE-178 Improper Handling of Case Sensitivity	CVE-2000-0497	2024-01-27 02:43	2000-06-8	Show	GitHub Exploit DB Packet Storm

314614	7.5	HIGH Network	unify	ewave_servletexec	Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.	CWE-178 Improper Handling of Case Sensitivity	CVE-2000-0498	2024-01-27 02:43	2000-06-8	Show	GitHub Exploit DB Packet Storm

314615	7.5	HIGH Network	bea	weblogic_server	The default configuration of BEA WebLogic 3.1.8 through 4.5.1 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.	CWE-178 Improper Handling of Case Sensitivity	CVE-2000-0499	2024-01-27 02:43	2000-06-8	Show	GitHub Exploit DB Packet Storm

314616	7.1	HIGH Local	iss	blackice_server_protection blackice_pc_protection	BlackICE PC Protection and Server Protection installs (1) firewall.ini, (2) blackice.ini, (3) sigs.ini and (4) protect.ini with Everyone Full Control permissions, which allows local users to cause a …	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2004-1714	2024-01-27 02:21	2004-08-11	Show	GitHub Exploit DB Packet Storm

314617	7.0	HIGH Local	symantec	antivirus_scan_engine	The LiveUpdate capability (liveupdate.sh) in Symantec AntiVirus Scan Engine 4.0 and 4.3 for Red Hat Linux allows local users to create or append to arbitrary files via a symlink attack on /tmp/LiveUp…	CWE-59 Link Following	CVE-2004-0217	2024-01-27 02:21	2004-04-15	Show	GitHub Exploit DB Packet Storm

314618	5.5	MEDIUM Local	mgetty_project	mgetty	faxrunqd.in in mgetty 1.1.28 and earlier allows local users to overwrite files via a symlink attack on JOB files.	CWE-59 Link Following	CVE-2003-0517	2024-01-27 02:20	2003-08-18	Show	GitHub Exploit DB Packet Storm

314619	7.8	HIGH Local	ibm	u2_universe	cci_dir in IBM U2 UniVerse 10.0.0.9 and earlier creates hard links and unlinks files as root, which allows local users to gain privileges by deleting and overwriting arbitrary files.	CWE-59 Link Following	CVE-2003-0578	2024-01-27 02:19	2003-08-18	Show	GitHub Exploit DB Packet Storm

314620	7.8	HIGH Local	oracle	mysql	Buffer overflow in MySQL daemon (mysqld) before 3.23.50, and 4.0 beta before 4.02, on the Win32 platform, allows local users to execute arbitrary code via a long "datadir" parameter in the my.ini ini…	CWE-120 Classic Buffer Overflow	CVE-2002-0969	2024-01-27 02:19	2002-10-11	Show	GitHub Exploit DB Packet Storm