Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226951 7.5 危険 thomas hempel - TYPO3 用の ultraCards エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4955 2012-12-20 19:28 2010-07-22 Show GitHub Exploit DB Packet Storm
226952 7.5 危険 websedit - TYPO3 用の sk_calendar エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4954 2012-12-20 19:28 2010-07-22 Show GitHub Exploit DB Packet Storm
226953 4.3 警告 stefan geith - TYPO3 用の sg_userdata エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4953 2012-12-20 19:28 2010-07-22 Show GitHub Exploit DB Packet Storm
226954 10 危険 serge gebhardt - TYPO3 用の Directory Listing エクステンションにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4952 2012-12-20 19:28 2010-07-22 Show GitHub Exploit DB Packet Storm
226955 7.5 危険 tim lochmueller & thomas buss - TYPO3 用の A21glossary Advanced Output エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4950 2012-12-20 19:28 2010-07-22 Show GitHub Exploit DB Packet Storm
226956 7.5 危険 q2solutions - Q2 Solutions ConnX の frmLoginPwdReminderPopup.aspx における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4947 2012-12-20 19:28 2010-07-22 Show GitHub Exploit DB Packet Storm
226957 6.8 警告 thetricky - Joomla! 用の Messaging コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4946 2012-12-20 19:28 2010-07-22 Show GitHub Exploit DB Packet Storm
226958 7.5 危険 zeuscart - Zeus Cart の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4940 2012-12-20 19:28 2010-07-22 Show GitHub Exploit DB Packet Storm
226959 7.5 危険 warphd - Joomla! 用の JVideo! コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4938 2012-12-20 19:28 2010-07-22 Show GitHub Exploit DB Packet Storm
226960 4.3 警告 spirate - SPirate におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4937 2012-12-20 19:28 2010-07-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222071 4.3 MEDIUM
Network 		microsoft windows_7 An information disclosure vulnerability exists in Windows Media Player when it fails to properly handle objects in memory, aka 'Windows Media Player Information Disclosure Vulnerability'. This CVE ID… CWE-125
Out-of-bounds Read 		CVE-2019-1480 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
222072 7.8 HIGH
Local 		microsoft windows_server_2008
windows_7 		An elevation of privilege vulnerability exists when Windows improperly handles COM object creation, aka 'Windows COM Server Elevation of Privilege Vulnerability'. NVD-CWE-noinfo
CVE-2019-1478 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
222073 7.8 HIGH
Local 		microsoft windows_server_2019
windows_10 		An elevation of privilege vulnerability exists when the Windows Printer Service improperly validates file paths while loading printer drivers, aka 'Windows Printer Service Elevation of Privilege Vuln… NVD-CWE-noinfo
CVE-2019-1477 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
222074 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique … NVD-CWE-noinfo
CVE-2019-1476 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
222075 5.5 MEDIUM
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-… CWE-200
Information Exposure 		CVE-2019-1474 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
222076 5.5 MEDIUM
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-… CWE-200
Information Exposure 		CVE-2019-1472 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
222077 8.2 HIGH
Local 		microsoft windows_server_2016
windows_10
windows_server_2019 		A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Remote… CWE-20
 Improper Input Validation  		CVE-2019-1471 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
222078 6.0 MEDIUM
Local 		microsoft windows_10
windows_server_2008
windows_server_2012
windows_server_2016
windows_7
windows_8.1
windows_server_2019 		An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hy… CWE-200
CWE-20
Information Exposure
 Improper Input Validation  		CVE-2019-1470 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
222079 5.5 MEDIUM
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. CWE-200
Information Exposure 		CVE-2019-1469 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
222080 8.8 HIGH
Network 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Win32k Graphics Remote Code Execution Vulnerability'. CWE-787
 Out-of-bounds Write 		CVE-2019-1468 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm