Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226941 7.5 危険 sweetphp - TotalCalendar の rss.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4973 2012-12-20 19:28 2010-07-28 Show GitHub Exploit DB Packet Storm
226942 7.5 危険 vincent tietz - TYPO3 用の AJAX Chat エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4971 2012-12-20 19:28 2010-07-28 Show GitHub Exploit DB Packet Storm
226943 7.5 危険 typo3-macher - TYPO3 用の t3m_affiliate エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4970 2012-12-20 19:28 2010-07-28 Show GitHub Exploit DB Packet Storm
226944 7.5 危険 TYPO3 Association - TYPO3 用の SBbanner エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4969 2012-12-20 19:28 2010-07-28 Show GitHub Exploit DB Packet Storm
226945 7.5 危険 thomas waggershauser - TYPO3 用の AIRware Lexicon エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4965 2012-12-20 19:28 2010-07-28 Show GitHub Exploit DB Packet Storm
226946 5 警告 ViewVC - ViewVC における非公開 root 名を発見される脆弱性 CWE-200
情報漏えい 		CVE-2010-0004 2012-12-20 19:28 2009-12-2 Show GitHub Exploit DB Packet Storm
226947 4.3 警告 Urs Wolfer - kwebkitpart の webkitpart.cpp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4976 2012-12-20 19:28 2009-12-5 Show GitHub Exploit DB Packet Storm
226948 3.5 注意 TYPO3 Association - TYPO3 用の Commerce エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4963 2012-12-20 19:28 2010-07-28 Show GitHub Exploit DB Packet Storm
226949 7.5 危険 stefan koch - TYPO3 用の t3m エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4959 2012-12-20 19:28 2010-07-28 Show GitHub Exploit DB Packet Storm
226950 4.3 警告 wapplersystems - TYPO3 用の Visitor Tracking エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4956 2012-12-20 19:28 2010-07-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311941 - - - All versions of the package git-shallow-clone are vulnerable to Command injection due to missing sanitization or mitigation flags in the process variable of the gitShallowClone function. - CVE-2024-21531 2024-10-4 22:51 2024-10-1 Show GitHub Exploit DB Packet Storm
311942 - - - Versions of the package uplot before 1.6.31 are vulnerable to Prototype Pollution via the uplot.assign function due to missing check if the attribute resolves to the object prototype. - CVE-2024-21489 2024-10-4 22:51 2024-10-1 Show GitHub Exploit DB Packet Storm
311943 - - - NVIDIA Triton Inference Server contains a vulnerability where a user may cause an out-of-bounds read issue by releasing a shared memory region while it is in use. A successful exploit of this vulnera… - CVE-2024-0116 2024-10-4 22:51 2024-10-1 Show GitHub Exploit DB Packet Storm
311944 - - - A vulnerability was found in code-projects Restaurant Reservation System 1.0. It has been classified as critical. This affects an unknown part of the file /updatebal.php. The manipulation of the argu… - CVE-2024-9360 2024-10-4 22:51 2024-10-1 Show GitHub Exploit DB Packet Storm
311945 7.1 HIGH
Network 		- - The Broken Link Checker plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg in /app/admin-notices/features/class-view.php without appropriate escaping… - CVE-2024-8981 2024-10-4 22:51 2024-10-1 Show GitHub Exploit DB Packet Storm
311946 - - - A vulnerability was found in code-projects Restaurant Reservation System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /addcompany.php. The manipula… CWE-89
SQL Injection 		CVE-2024-9359 2024-10-4 22:51 2024-10-1 Show GitHub Exploit DB Packet Storm
311947 - - - A vulnerability has been found in ThingsBoard up to 3.7.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component HTTP RPC API. The manipulation lea… CWE-400
 Uncontrolled Resource Consumption 		CVE-2024-9358 2024-10-4 22:51 2024-10-1 Show GitHub Exploit DB Packet Storm
311948 - - - RevoWorks Cloud Client 3.0.91 and earlier contains an incorrect authorization vulnerability. If this vulnerability is exploited, unintended processes may be executed in the sandbox environment. Even … - CVE-2024-47560 2024-10-4 22:51 2024-10-1 Show GitHub Exploit DB Packet Storm
311949 4.8 MEDIUM
Network 		- - IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering t… - CVE-2024-45073 2024-10-4 22:51 2024-10-1 Show GitHub Exploit DB Packet Storm
311950 - - - An issue was discovered in Infinera hiT 7300 5.60.50. Cleartext storage of sensitive information in the memory of the @CT desktop management application allows guest OS administrators to obtain vario… - CVE-2024-28807 2024-10-4 22:51 2024-10-1 Show GitHub Exploit DB Packet Storm