Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226531 4.3 警告 XOOPS - XOOPS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2783 2012-12-20 19:10 2009-08-17 Show GitHub Exploit DB Packet Storm
226532 7.5 危険 sellatsite.com - Smart ASP Survey の showresult.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2776 2012-12-20 19:10 2009-08-14 Show GitHub Exploit DB Packet Storm
226533 7.5 危険 phparcadescript - PHP Arcade Script の linkout.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2775 2012-12-20 19:10 2009-08-14 Show GitHub Exploit DB Packet Storm
226534 7.5 危険 php-paid4mail - PHP Paid 4 Mail Script の paidbanner.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2774 2012-12-20 19:10 2009-08-14 Show GitHub Exploit DB Packet Storm
226535 7.5 危険 shop-020 - PHP Paid 4 Mail Script の home.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2773 2012-12-20 19:10 2009-08-14 Show GitHub Exploit DB Packet Storm
226536 4.3 警告 realtysoft - PG Roommate Finder Solution におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2772 2012-12-20 19:10 2009-08-14 Show GitHub Exploit DB Packet Storm
226537 7.5 危険 powerupload - PowerUpload における管理者アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2770 2012-12-20 19:10 2009-08-14 Show GitHub Exploit DB Packet Storm
226538 6.8 警告 ultrize - Ultrize TimeSheet の include/timesheet.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2769 2012-12-20 19:10 2009-08-14 Show GitHub Exploit DB Packet Storm
226539 7.5 危険 WordPress.org - WordPress の wp-login.php におけるデータベースの最初のユーザパスワードを強制的にリセットされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-2762 2012-12-20 19:10 2009-08-12 Show GitHub Exploit DB Packet Storm
226540 5.5 警告 Roundup - Roundup の cgi/actions.py におけるクラス内の任意の項目を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2737 2012-12-20 19:10 2009-08-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312791 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ixgbe: fix pci device refcount leak As the comment of pci_get_domain_bus_and_slot() says, it returns a PCI device with refcount i… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2022-48896 2024-09-12 01:06 2024-08-21 Show GitHub Exploit DB Packet Storm
312792 5.3 MEDIUM
Network 		erjemin roll_cms A vulnerability was found in erjemin roll_cms up to 1484fe2c4e0805946a7bcf46218509fcb34883a9. It has been classified as problematic. This affects an unknown part of the file roll_cms/roll_cms/views.p… CWE-209
Information Exposure Through an Error Message 		CVE-2024-8571 2024-09-12 01:05 2024-09-8 Show GitHub Exploit DB Packet Storm
312793 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu: Don't unregister on shutdown Michael Walle says he noticed the following stack trace while performing a shutdown … CWE-476
 NULL Pointer Dereference 		CVE-2022-48895 2024-09-12 01:01 2024-08-21 Show GitHub Exploit DB Packet Storm
312794 6.1 MEDIUM
Network 		gouniverse golang_cms A vulnerability was found in Gouniverse GoLang CMS 1.4.0. It has been declared as problematic. This vulnerability affects the function PageRenderHtmlByAlias of the file FrontendHandler.go. The manipu… CWE-79
Cross-site Scripting 		CVE-2024-8572 2024-09-12 00:59 2024-09-8 Show GitHub Exploit DB Packet Storm
312795 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-v3: Don't unregister on shutdown Similar to SMMUv2, this driver calls iommu_device_unregister() from the shutdown … CWE-476
 NULL Pointer Dereference 		CVE-2022-48894 2024-09-12 00:58 2024-08-21 Show GitHub Exploit DB Packet Storm
312796 6.1 MEDIUM
Network 		loway queuemetrics Loway - CWE-601: URL Redirection to Untrusted Site ('Open Redirect') CWE-601
Open Redirect 		CVE-2024-42341 2024-09-12 00:57 2024-09-8 Show GitHub Exploit DB Packet Storm
312797 7.5 HIGH
Network 		loway queuemetrics Loway - CWE-204: Observable Response Discrepancy CWE-203
 Information Exposure Through Discrepancy 		CVE-2024-42343 2024-09-12 00:56 2024-09-8 Show GitHub Exploit DB Packet Storm
312798 4.3 MEDIUM
Network 		loway queuemetrics Loway - CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') CWE-444
HTTP Request Smuggling 		CVE-2024-42342 2024-09-12 00:56 2024-09-8 Show GitHub Exploit DB Packet Storm
312799 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/i915/gt: Cleanup partial engine discovery failures If we abort driver initialisation in the middle of gt/engine discovery, so… CWE-459
 Incomplete Cleanup 		CVE-2022-48893 2024-09-12 00:55 2024-08-21 Show GitHub Exploit DB Packet Storm
312800 6.5 MEDIUM
Network 		learningdigital orca_hcm Orca HCM from LEARNING DIGITA does not properly restrict a specific parameter of the file download functionality, allowing a remote attacker with regular privileges to download arbitrary system files. CWE-22
Path Traversal 		CVE-2024-8585 2024-09-12 00:53 2024-09-9 Show GitHub Exploit DB Packet Storm