Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226941	7.5	危険	sweetphp	-	TotalCalendar の rss.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4973	2012-12-20 19:28	2010-07-28	Show	GitHub Exploit DB Packet Storm

226942	7.5	危険	vincent tietz	-	TYPO3 用の AJAX Chat エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4971	2012-12-20 19:28	2010-07-28	Show	GitHub Exploit DB Packet Storm

226943	7.5	危険	typo3-macher	-	TYPO3 用の t3m_affiliate エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4970	2012-12-20 19:28	2010-07-28	Show	GitHub Exploit DB Packet Storm

226944	7.5	危険	TYPO3 Association	-	TYPO3 用の SBbanner エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4969	2012-12-20 19:28	2010-07-28	Show	GitHub Exploit DB Packet Storm

226945	7.5	危険	thomas waggershauser	-	TYPO3 用の AIRware Lexicon エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4965	2012-12-20 19:28	2010-07-28	Show	GitHub Exploit DB Packet Storm

226946	5	警告	ViewVC	-	ViewVC における非公開 root 名を発見される脆弱性	CWE-200 情報漏えい	CVE-2010-0004	2012-12-20 19:28	2009-12-2	Show	GitHub Exploit DB Packet Storm

226947	4.3	警告	Urs Wolfer	-	kwebkitpart の webkitpart.cpp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4976	2012-12-20 19:28	2009-12-5	Show	GitHub Exploit DB Packet Storm

226948	3.5	注意	TYPO3 Association	-	TYPO3 用の Commerce エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4963	2012-12-20 19:28	2010-07-28	Show	GitHub Exploit DB Packet Storm

226949	7.5	危険	stefan koch	-	TYPO3 用の t3m エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4959	2012-12-20 19:28	2010-07-28	Show	GitHub Exploit DB Packet Storm

226950	4.3	警告	wapplersystems	-	TYPO3 用の Visitor Tracking エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4956	2012-12-20 19:28	2010-07-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224421	6.1	MEDIUM Network	phpmywind	phpmywind	admin/infolist_add.php in PHPMyWind 5.6 has stored XSS.	CWE-79 Cross-site Scripting	CVE-2019-16703	2024-11-21 13:31	2019-09-23	Show	GitHub Exploit DB Packet Storm

224422	9.8	CRITICAL Network	integard_pro_project	integard_pro	Integard Pro 2.2.0.9026 allows remote attackers to execute arbitrary code via a buffer overflow involving a long NoJs parameter to the /LoginAdmin URI.	CWE-120 Classic Buffer Overflow	CVE-2019-16702	2024-11-21 13:31	2019-09-23	Show	GitHub Exploit DB Packet Storm

224423	9.8	CRITICAL Network	phpipam	phpipam	phpIPAM 1.4 allows SQL injection via the app/admin/custom-fields/edit.php table parameter when action=add is used.	CWE-89 SQL Injection	CVE-2019-16696	2024-11-21 13:31	2019-09-23	Show	GitHub Exploit DB Packet Storm

224424	7.8	HIGH Local	adobe	acrobat_dc acrobat_reader_dc	Adobe Acrobat Reader versions 2019.021.20056 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. …	CWE-787 Out-of-bounds Write	CVE-2019-16470	2024-11-21 13:30	2023-09-11	Show	GitHub Exploit DB Packet Storm

224425	-		-	-	An issue was found on the Ruijie EG-2000 series gateway. There is a buffer overflow in client.so. Consequently, an attacker can use login.php to login to any account, without providing its password. …	-	CVE-2019-16641	2024-11-21 13:30	2024-07-17	Show	GitHub Exploit DB Packet Storm

224426	-		-	-	An issue was found in upload.php on the Ruijie EG-2000 series gateway. A parameter passed to the class UploadFile is mishandled (%00 and /var/./html are not checked), which can allow an attacker to u…	-	CVE-2019-16640	2024-11-21 13:30	2024-07-17	Show	GitHub Exploit DB Packet Storm

224427	-		-	-	An issue was found on the Ruijie EG-2000 series gateway. There is a newcli.php API interface without access control, which can allow an attacker (who only has web interface access) to use TELNET comm…	-	CVE-2019-16639	2024-11-21 13:30	2024-07-17	Show	GitHub Exploit DB Packet Storm

224428	7.5	HIGH Network	ruijie	eg-2000se_firmware	An issue was found on the Ruijie EG-2000 series gateway. An attacker can easily dump cleartext stored passwords in /data/config.text with simple XORs. This affects EG-2000SE EG_RGOS 11.1(1)B1.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2019-16638	2024-11-21 13:30	2024-07-17	Show	GitHub Exploit DB Packet Storm

224429	7.8	HIGH Local	adobe	acrobat_dc acrobat_reader_dc	Adobe Acrobat Reader versions 2019.021.20056 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation …	-	CVE-2019-16471	2024-11-21 13:30	2023-09-11	Show	GitHub Exploit DB Packet Storm

224430	7.8	HIGH Local	hp	softpaq_installer	A potential security vulnerability has been identified with a version of the HP Softpaq installer that can lead to arbitrary code execution.	NVD-CWE-noinfo	CVE-2019-16283	2024-11-21 13:30	2023-06-10	Show	GitHub Exploit DB Packet Storm