Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226881	4.3	警告	tbdev	-	TBDev.NET におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2141	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

226882	9.3	危険	サン・マイクロシステムズ	-	Go-oo の svtools/source/filter.vcl/wmf/enhwmf.cxx におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2139	2012-12-20 19:10	2009-09-8	Show	GitHub Exploit DB Packet Storm

226883	4.3	警告	tbdev	-	TBDev.NET におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2009-2138	2012-12-20 19:10	2009-06-19	Show	GitHub Exploit DB Packet Storm

226884	5	警告	pivot	-	Pivot の pivot/tb.php における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-2134	2012-12-20 19:10	2009-06-19	Show	GitHub Exploit DB Packet Storm

226885	4.3	警告	pivot	-	Pivot におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2133	2012-12-20 19:10	2009-06-19	Show	GitHub Exploit DB Packet Storm

226886	6.5	警告	tekbase	-	TekBase All-in-One における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2120	2012-12-20 19:10	2009-06-18	Show	GitHub Exploit DB Packet Storm

226887	7.5	危険	phportal	-	phPortal の uye_paneli.php における管理者アクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2009-2117	2012-12-20 19:10	2009-06-18	Show	GitHub Exploit DB Packet Storm

226888	4	警告	Iconify.it	-	SkyBlueCanvas の admin.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2116	2012-12-20 19:10	2009-06-18	Show	GitHub Exploit DB Packet Storm

226889	6.8	警告	Iconify.it	-	SkyBlueCanvas の admin.php における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-2115	2012-12-20 19:10	2009-06-18	Show	GitHub Exploit DB Packet Storm

226890	4.3	警告	Iconify.it	-	SkyBlueCanvas の admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2114	2012-12-20 19:10	2009-06-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222621	6.1	MEDIUM Physics	linux	linux_kernel	In the Linux kernel before 5.3.7, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/iowarrior.c driver, aka CID-edc4746f253d.	CWE-416 Use After Free	CVE-2019-19528	2024-11-21 13:34	2019-12-4	Show	GitHub Exploit DB Packet Storm

222622	6.8	MEDIUM Physics	linux debian opensuse	linux_kernel debian_linux leap	In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka CID-9c09b214f30e.	CWE-416 Use After Free	CVE-2019-19527	2024-11-21 13:34	2019-12-4	Show	GitHub Exploit DB Packet Storm

222623	4.6	MEDIUM Physics	linux canonical opensuse	linux_kernel ubuntu_linux leap	In the Linux kernel before 5.3.9, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/nfc/pn533/usb.c driver, aka CID-6af3aa57a098.	CWE-416 Use After Free	CVE-2019-19526	2024-11-21 13:34	2019-12-4	Show	GitHub Exploit DB Packet Storm

222624	4.6	MEDIUM Physics	linux debian opensuse	linux_kernel debian_linux leap	In the Linux kernel before 5.3.6, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/net/ieee802154/atusb.c driver, aka CID-7fd25e6fc035.	CWE-416 Use After Free	CVE-2019-19525	2024-11-21 13:34	2019-12-4	Show	GitHub Exploit DB Packet Storm

222625	4.6	MEDIUM Physics	linux debian canonical	linux_kernel debian_linux ubuntu_linux	In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka CID-fa3a5a1880c9.	CWE-416 Use After Free	CVE-2019-19524	2024-11-21 13:34	2019-12-4	Show	GitHub Exploit DB Packet Storm

222626	4.6	MEDIUM Physics	linux debian opensuse	linux_kernel debian_linux leap	In the Linux kernel before 5.3.7, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/adutux.c driver, aka CID-44efc269db79.	CWE-416 Use After Free	CVE-2019-19523	2024-11-21 13:34	2019-12-4	Show	GitHub Exploit DB Packet Storm

222627	6.5	MEDIUM Network	intelbras	wrn_150_firmware	Intelbras WRN 150 1.0.18 devices allow CSRF via GO=system_password.asp to the goform/SysToolChangePwd URI to change a password.	CWE-352 Origin Validation Error	CVE-2019-19516	2024-11-21 13:34	2019-12-3	Show	GitHub Exploit DB Packet Storm

222628	7.5	HIGH Network	hashicorp	terraform	When using the Azure backend with a shared access signature (SAS), Terraform versions prior to 0.12.17 may transmit the token and state snapshot using cleartext HTTP.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2019-19316	2024-11-21 13:34	2019-12-3	Show	GitHub Exploit DB Packet Storm

222629	5.3	MEDIUM Network	json_pattern_validator_project	json_pattern_validator	In jpv (aka Json Pattern Validator) before 2.1.1, compareCommon() can be bypassed because certain internal attributes can be overwritten via a conflicting name, as demonstrated by 'constructor': {'na…	CWE-287 Improper Authentication	CVE-2019-19507	2024-11-21 13:34	2019-12-3	Show	GitHub Exploit DB Packet Storm

222630	9.8	CRITICAL Network	titanhq	webtitan	An issue was discovered in TitanHQ WebTitan before 5.18. It has a hidden support account (with a hard-coded password) in the web administration interface, with administrator privileges. Anybody can l…	CWE-798 Use of Hard-coded Credentials	CVE-2019-19021	2024-11-21 13:34	2019-12-3	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed