Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225831	7.5	危険	phpcityportal	-	PHPCityPortal の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4870	2012-12-20 19:28	2010-05-11	Show	GitHub Exploit DB Packet Storm

225832	4.3	警告	tony million	-	Tuniac におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4867	2012-12-20 19:28	2010-05-11	Show	GitHub Exploit DB Packet Storm

225833	4.3	警告	PunBB	-	PunBB の profile.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4894	2012-12-20 19:28	2009-05-20	Show	GitHub Exploit DB Packet Storm

225834	9.3	危険	ultraplayer	-	UltraPlayer Media Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4863	2012-12-20 19:28	2010-05-11	Show	GitHub Exploit DB Packet Storm

225835	4.3	警告	supportpro	-	SupportPRO SupportDesk の shownews.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4861	2012-12-20 19:28	2010-05-11	Show	GitHub Exploit DB Packet Storm

225836	4.3	警告	turnkeyforms	-	Yahoo Answers Clone の questiondetail.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4858	2012-12-20 19:28	2010-05-11	Show	GitHub Exploit DB Packet Storm

225837	7.5	危険	scripts.oldguy	-	TalkBack の addons/import.php における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-4854	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

225838	6.8	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4849	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

225839	4.3	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4848	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

225840	5	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro の設定ページにおける重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2009-4845	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313501	7.8	HIGH Local	google	chrome	Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege escalation via a malicious file. (Chromium security severity…	NVD-CWE-noinfo	CVE-2024-7977	2024-08-23 05:35	2024-08-22	Show	GitHub Exploit DB Packet Storm

313502	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: nfp: flower: Fix a potential leak in nfp_tunnel_add_shared_mac() ida_simple_get() returns an id between min (0) and max (NFP_MAX_…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2022-48934	2024-08-23 05:33	2024-08-22	Show	GitHub Exploit DB Packet Storm

313503	3.3	LOW Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: io_uring: add a schedule point in io_add_buffers() Looping ~65535 times doing kmalloc() calls can trigger soft lockups, especiall…	CWE-667 Improper Locking	CVE-2022-48937	2024-08-23 04:07	2024-08-22	Show	GitHub Exploit DB Packet Storm

313504	3.3	LOW Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bpf: Add schedule points in batch ops syzbot reported various soft lockups caused by bpf batch operations. INFO: task kworker/1…	CWE-834 Excessive Iteration	CVE-2022-48939	2024-08-23 04:02	2024-08-22	Show	GitHub Exploit DB Packet Storm

313505	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ice: fix concurrent reset and removal of VFs Commit c503e63200c6 ("ice: Stop processing VF messages during teardown") introduced …	CWE-362 Race Condition	CVE-2022-48941	2024-08-23 03:41	2024-08-22	Show	GitHub Exploit DB Packet Storm

313506	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bpf: Fix crash due to incorrect copy_map_value When both bpf_spin_lock and bpf_timer are present in a BPF map value, copy_map_val…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2022-48940	2024-08-23 03:37	2024-08-22	Show	GitHub Exploit DB Packet Storm

313507	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: make apf token non-zero to fix bug In current async pagefault logic, when a page is ready, KVM relies on kvm_arch_c…	NVD-CWE-noinfo	CVE-2022-48943	2024-08-23 03:27	2024-08-22	Show	GitHub Exploit DB Packet Storm

313508	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: hwmon: Handle failure to register sensor with thermal zone correctly If an attempt is made to a sensor with a thermal zone and it…	CWE-476 NULL Pointer Dereference	CVE-2022-48942	2024-08-23 03:25	2024-08-22	Show	GitHub Exploit DB Packet Storm

313509	-		-	-	SeaCMS 13.0 has a remote code execution vulnerability. The reason for this vulnerability is that although admin_editplayer.php imposes restrictions on edited files, attackers can still bypass these r…	-	CVE-2024-42598	2024-08-23 03:15	2024-08-21	Show	GitHub Exploit DB Packet Storm

313510	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: dma: fix call order in dmam_free_coherent dmam_free_coherent() frees a DMA allocation, which makes the freed vaddr available for …	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2024-43856	2024-08-23 02:57	2024-08-17	Show	GitHub Exploit DB Packet Storm