Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226751	7.5	危険	サン・マイクロシステムズ	-	Sun VDI の VirtualBox Web サービスにおける不特定のアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2009-3923	2012-12-20 19:28	2009-11-3	Show	GitHub Exploit DB Packet Storm

226752	5	警告	Sean Robertson	-	Drupal 用の crmngp モジュールの管理ページにおけるログ情報を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3920	2012-12-20 19:28	2009-11-4	Show	GitHub Exploit DB Packet Storm

226753	4.3	警告	Sean Robertson	-	Drupal 用の crmngp モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3919	2012-12-20 19:28	2009-11-4	Show	GitHub Exploit DB Packet Storm

226754	4.3	警告	Ronan Dowling	-	Drupal 用の Node Hierarchy モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3916	2012-12-20 19:28	2009-11-4	Show	GitHub Exploit DB Packet Storm

226755	4.3	警告	drunomics	-	Drupal 用の Temporary Invitation モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3914	2012-12-20 19:28	2009-11-4	Show	GitHub Exploit DB Packet Storm

226756	7.5	危険	Xerox	-	Xerox Fiery Webtools の summary.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3913	2012-12-20 19:28	2009-11-9	Show	GitHub Exploit DB Packet Storm

226757	5	警告	tftgallery	-	TFTgallery の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-3912	2012-12-20 19:28	2009-11-9	Show	GitHub Exploit DB Packet Storm

226758	4.3	警告	tftgallery	-	TFTgallery の settings.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3911	2012-12-20 19:28	2009-11-9	Show	GitHub Exploit DB Packet Storm

226759	3.5	注意	WordPress.org	-	WordPress の wp-admin/press-this.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3891	2012-12-20 19:28	2009-11-12	Show	GitHub Exploit DB Packet Storm

226760	6	警告	WordPress.org	-	WordPress の wp-includes/functions.php における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3890	2012-12-20 19:28	2009-11-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312371	5.5	MEDIUM Local	apple	visionos	The issue was addressed with improved handling of caches. This issue is fixed in visionOS 2. An app may be able to read sensitive data from the GPU memory.	NVD-CWE-noinfo	CVE-2024-40790	2024-09-24 07:55	2024-09-17	Show	GitHub Exploit DB Packet Storm

312372	-		-	-	Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows OS Command Injection.This issue affects: ?Product Affected Versions LoadMaster From 7.…	CWE-20 Improper Input Validation	CVE-2024-6658	2024-09-24 05:15	2024-09-13	Show	GitHub Exploit DB Packet Storm

312373	7.5	HIGH Network	apple	macos	A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. A camera extension may be able to access the internet.	CWE-281 Improper Preservation of Permissions	CVE-2024-27795	2024-09-24 05:01	2024-09-17	Show	GitHub Exploit DB Packet Storm

312374	5.5	MEDIUM Local	apple	macos	A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access protected user data.	CWE-281 Improper Preservation of Permissions	CVE-2024-27858	2024-09-24 04:56	2024-09-17	Show	GitHub Exploit DB Packet Storm

312375	5.5	MEDIUM Local	apple	macos	The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15. An app may be able to cause a denial-of-service.	NVD-CWE-noinfo	CVE-2024-23237	2024-09-24 04:53	2024-09-17	Show	GitHub Exploit DB Packet Storm

312376	5.3	MEDIUM Network	contao	contao	Contao is an Open Source CMS. In affected versions an untrusted user can inject insert tags into the canonical tag, which are then replaced on the web page (front end). Users are advised to update to…	CWE-74 Injection	CVE-2024-45612	2024-09-24 04:33	2024-09-18	Show	GitHub Exploit DB Packet Storm

312377	6.1	MEDIUM Local	apple	macos iphone_os ipados	A privacy issue was addressed with improved handling of files. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15. An unencrypted document may be written to a temporary file when using pri…	NVD-CWE-noinfo	CVE-2024-40826	2024-09-24 04:25	2024-09-17	Show	GitHub Exploit DB Packet Storm

312378	3.3	LOW Local	apple	iphone_os ipados	This issue was addressed with improved data protection. This issue is fixed in iOS 18 and iPadOS 18. An app may be able to enumerate a user's installed apps.	NVD-CWE-noinfo	CVE-2024-40830	2024-09-24 04:19	2024-09-17	Show	GitHub Exploit DB Packet Storm

312379	5.5	MEDIUM Local	apple	macos	A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access a user's Photos Library.	CWE-281 Improper Preservation of Permissions	CVE-2024-40831	2024-09-24 04:18	2024-09-17	Show	GitHub Exploit DB Packet Storm

312380	-		-	-	An issue was discovered in Samsung Semiconductor Mobile Processor and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 13…	-	CVE-2024-25073	2024-09-24 04:15	2024-09-11	Show	GitHub Exploit DB Packet Storm