Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225981	7.5	危険	websitesrus	-	Accessories Me PHP Affiliate Script の browse.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4985	2012-12-20 19:28	2010-08-25	Show	GitHub Exploit DB Packet Storm

225982	4.3	警告	websitesrus	-	Accessories Me PHP Affiliate Script におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4984	2012-12-20 19:28	2010-08-25	Show	GitHub Exploit DB Packet Storm

225983	4.3	警告	snowhall	-	Silurus Classifieds におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4983	2012-12-20 19:28	2010-08-25	Show	GitHub Exploit DB Packet Storm

225984	5	警告	tufat	-	MyBackup の down.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4978	2012-12-20 19:28	2010-08-25	Show	GitHub Exploit DB Packet Storm

225985	6.5	警告	tufat	-	MyBackup の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-4977	2012-12-20 19:28	2010-08-25	Show	GitHub Exploit DB Packet Storm

225986	7.5	危険	sweetphp	-	TotalCalendar の box_display.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4974	2012-12-20 19:28	2010-07-28	Show	GitHub Exploit DB Packet Storm

225987	7.5	危険	sweetphp	-	TotalCalendar の rss.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4973	2012-12-20 19:28	2010-07-28	Show	GitHub Exploit DB Packet Storm

225988	7.5	危険	vincent tietz	-	TYPO3 用の AJAX Chat エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4971	2012-12-20 19:28	2010-07-28	Show	GitHub Exploit DB Packet Storm

225989	7.5	危険	typo3-macher	-	TYPO3 用の t3m_affiliate エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4970	2012-12-20 19:28	2010-07-28	Show	GitHub Exploit DB Packet Storm

225990	7.5	危険	TYPO3 Association	-	TYPO3 用の SBbanner エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4969	2012-12-20 19:28	2010-07-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212791	4.8	MEDIUM Network	chadhaajay	phpkb	The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/manage-subscribers.php by adding a questi…	CWE-79 Cross-site Scripting	CVE-2020-10430	2024-11-21 13:55	2020-03-12	Show	GitHub Exploit DB Packet Storm

212792	4.8	MEDIUM Network	chadhaajay	phpkb	The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/manage-settings.php by adding a question …	CWE-79 Cross-site Scripting	CVE-2020-10429	2024-11-21 13:55	2020-03-12	Show	GitHub Exploit DB Packet Storm

212793	4.8	MEDIUM Network	chadhaajay	phpkb	The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/manage-news.php by adding a question mark…	CWE-79 Cross-site Scripting	CVE-2020-10428	2024-11-21 13:55	2020-03-12	Show	GitHub Exploit DB Packet Storm

212794	4.8	MEDIUM Network	chadhaajay	phpkb	The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/manage-languages.php by adding a question…	CWE-79 Cross-site Scripting	CVE-2020-10427	2024-11-21 13:55	2020-03-12	Show	GitHub Exploit DB Packet Storm

212795	4.8	MEDIUM Network	chadhaajay	phpkb	The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/manage-groups.php by adding a question ma…	CWE-79 Cross-site Scripting	CVE-2020-10426	2024-11-21 13:55	2020-03-12	Show	GitHub Exploit DB Packet Storm

212796	4.8	MEDIUM Network	chadhaajay	phpkb	The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/manage-glossary.php by adding a question …	CWE-79 Cross-site Scripting	CVE-2020-10425	2024-11-21 13:55	2020-03-12	Show	GitHub Exploit DB Packet Storm

212797	4.8	MEDIUM Network	chadhaajay	phpkb	The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/manage-fields.php by adding a question ma…	CWE-79 Cross-site Scripting	CVE-2020-10424	2024-11-21 13:55	2020-03-12	Show	GitHub Exploit DB Packet Storm

212798	4.8	MEDIUM Network	chadhaajay	phpkb	The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/manage-feedbacks.php by adding a question…	CWE-79 Cross-site Scripting	CVE-2020-10423	2024-11-21 13:55	2020-03-12	Show	GitHub Exploit DB Packet Storm

212799	4.8	MEDIUM Network	chadhaajay	phpkb	The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/manage-drafts.php by adding a question ma…	CWE-79 Cross-site Scripting	CVE-2020-10422	2024-11-21 13:55	2020-03-12	Show	GitHub Exploit DB Packet Storm

212800	4.8	MEDIUM Network	chadhaajay	phpkb	The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/manage-departments.php by adding a questi…	CWE-79 Cross-site Scripting	CVE-2020-10421	2024-11-21 13:55	2020-03-12	Show	GitHub Exploit DB Packet Storm