Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226661 6.8 警告 サン・マイクロシステムズ - Sun Java System Delegated Administrator の da/DA/Login における CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1357 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
226662 4 警告 sergey lyubka - Mongoose におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1354 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
226663 5 警告 sebastian fernandez - Zervit Webserver の libz/misc.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1353 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
226664 4.3 警告 レッドハット - C2Net Stronghold におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1349 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
226665 6 警告 TWiki - TWiki におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-1339 2012-12-20 19:10 2009-04-5 Show GitHub Exploit DB Packet Storm
226666 5 警告 サン・マイクロシステムズ - Sun Java System Directory Server および Enterprise Edition の Online Help 機能におけるファイルの一部のコンテンツを取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-1332 2012-12-20 19:10 2009-04-15 Show GitHub Exploit DB Packet Storm
226667 7.5 危険 webfileexplorer - Web File Explorer の body.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1323 2012-12-20 19:10 2009-04-17 Show GitHub Exploit DB Packet Storm
226668 4.3 警告 zazzle - Zazzle Store Builder の include/zstore.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1320 2012-12-20 19:10 2009-04-17 Show GitHub Exploit DB Packet Storm
226669 10 危険 webfileexplorer - Web File Explorer の body.asp における任意のファイルを作成される脆弱性 CWE-noinfo
情報不足 		CVE-2009-1314 2012-12-20 19:10 2009-04-16 Show GitHub Exploit DB Packet Storm
226670 5 警告 Rapid Leech - Rapidleech の upload.php における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1089 2012-12-20 19:10 2009-03-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312751 9.8 CRITICAL
Network 		htmldoc_project htmldoc HTMLDOC before 1.9.19 has an out-of-bounds write in parse_paragraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only node. CWE-787
 Out-of-bounds Write 		CVE-2024-45508 2024-09-5 01:44 2024-09-2 Show GitHub Exploit DB Packet Storm
312752 9.8 CRITICAL
Network 		oretnom23 computer_laboratory_management_system A vulnerability, which was classified as critical, has been found in SourceCodester Computer Laboratory Management System 1.0. Affected by this issue is the function delete_category of the file /clas… CWE-89
SQL Injection 		CVE-2024-8348 2024-09-5 01:43 2024-08-31 Show GitHub Exploit DB Packet Storm
312753 9.8 CRITICAL
Network 		oretnom23 computer_laboratory_management_system A vulnerability classified as critical was found in SourceCodester Computer Laboratory Management System 1.0. Affected by this vulnerability is the function delete_record of the file /classes/Master.… CWE-89
SQL Injection 		CVE-2024-8347 2024-09-5 01:42 2024-08-31 Show GitHub Exploit DB Packet Storm
312754 6.1 MEDIUM
Network 		tpmecms tpmecms TpMeCMS 1.3.3.2 is vulnerable to Cross Site Scripting (XSS) in /h.php/page?ref=addtabs via the "Title," "Images," and "Content" fields. CWE-79
Cross-site Scripting 		CVE-2024-44684 2024-09-5 01:42 2024-08-31 Show GitHub Exploit DB Packet Storm
312755 6.1 MEDIUM
Network 		seacms seacms Seacms v13 is vulnerable to Cross Site Scripting (XSS) via admin-video.php. CWE-79
Cross-site Scripting 		CVE-2024-44683 2024-09-5 01:41 2024-08-31 Show GitHub Exploit DB Packet Storm
312756 5.5 MEDIUM
Local 		openatom openharmony in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read. CWE-125
Out-of-bounds Read 		CVE-2024-39612 2024-09-5 01:38 2024-09-2 Show GitHub Exploit DB Packet Storm
312757 6.1 MEDIUM
Network 		shopxo shopxo ShopXO 6.2 is vulnerable to Cross Site Scripting (XSS) in the backend that allows attackers to execute code by changing POST parameters. CWE-79
Cross-site Scripting 		CVE-2024-44682 2024-09-5 01:38 2024-08-31 Show GitHub Exploit DB Packet Storm
312758 9.8 CRITICAL
Network 		oretnom23 computer_laboratory_management_system A vulnerability classified as critical has been found in SourceCodester Computer Laboratory Management System 1.0. Affected is the function update_settings_info of the file /classes/SystemSettings.ph… CWE-89
SQL Injection 		CVE-2024-8346 2024-09-5 01:37 2024-08-31 Show GitHub Exploit DB Packet Storm
312759 9.8 CRITICAL
Network 		oretnom23 music_gallery_site A vulnerability was found in SourceCodester Music Gallery Site 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /classes/Users.php?f=delete. The manipu… CWE-89
SQL Injection 		CVE-2024-8345 2024-09-5 01:35 2024-08-31 Show GitHub Exploit DB Packet Storm
312760 9.8 CRITICAL
Network 		oretnom23 sentiment_based_movie_rating_system A vulnerability, which was classified as critical, was found in SourceCodester Sentiment Based Movie Rating System 1.0. Affected is an unknown function of the file /classes/Users.php?f=save_client of… CWE-89
SQL Injection 		CVE-2024-8343 2024-09-5 01:34 2024-08-31 Show GitHub Exploit DB Packet Storm