Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227101 4.3 警告 SQLiteManager - SQLiteManager の main.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4539 2012-12-20 19:28 2010-01-4 Show GitHub Exploit DB Packet Storm
227102 4 警告 vsecurity - TANDBERG Video Communication Server (VCS) が稼動している Web 管理インターフェースにおけるディレクトリトラバーサルの脆弱性 CWE-200
情報漏えい 		CVE-2009-4511 2012-12-20 19:28 2010-04-9 Show GitHub Exploit DB Packet Storm
227103 8.5 危険 vsecurity - TANDBERG VCS 上で稼動している SSH サービスにおける任意のサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2009-4510 2012-12-20 19:28 2010-04-9 Show GitHub Exploit DB Packet Storm
227104 10 危険 vsecurity - ANDBERG VCS 上で稼動している管理 Web コンソールにおける認証を回避される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4509 2012-12-20 19:28 2010-04-9 Show GitHub Exploit DB Packet Storm
227105 5 警告 Yaws - Yaws におけるウィンドウのタイトルを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4495 2012-12-20 19:28 2010-01-13 Show GitHub Exploit DB Packet Storm
227106 5 警告 valenok - Mongoose におけるソースコードなどを取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-4535 2012-12-20 19:28 2009-12-31 Show GitHub Exploit DB Packet Storm
227107 5 警告 sergey lyubka - Mongoose における Web ページのソースコードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-4530 2012-12-20 19:28 2009-12-31 Show GitHub Exploit DB Packet Storm
227108 4.3 警告 zainu - Zainu の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4523 2012-12-20 19:28 2009-12-31 Show GitHub Exploit DB Packet Storm
227109 5 警告 speedtech - Drupal 用の Storm モジュールにおけるノードタイトルを読み取られる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4515 2012-12-20 19:28 2009-10-28 Show GitHub Exploit DB Packet Storm
227110 10 危険 tversity - TVersity の MediaServer.exe におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4482 2012-12-20 19:28 2009-12-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222001 7.8 HIGH
Local 		microsoft windows_server_2012
windows_server_2008
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1 		An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. NVD-CWE-noinfo
CVE-2019-1458 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
222002 7.5 HIGH
Network 		microsoft windows_server_2012
windows_server_2008
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Pr… NVD-CWE-noinfo
CVE-2019-1453 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
222003 5.5 MEDIUM
Local 		microsoft office
office_365_proplus 		An information disclosure vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory, aka 'Microsoft Access Information Disclosure Vulnerability'. … CWE-200
Information Exposure 		CVE-2019-1400 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
222004 6.1 MEDIUM
Network 		microsoft power_bi_report_server
sql_server_2017_reporting_services
sql_server_2019_reporting_services 		A cross-site scripting (XSS) vulnerability exists when Microsoft SQL Server Reporting Services (SSRS) does not properly sanitize a specially-crafted web request to an affected SSRS server, aka 'Micro… CWE-79
Cross-site Scripting 		CVE-2019-1332 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
222005 5.3 MEDIUM
Network 		openssl
opensuse
oracle
canonical
fedoraproject
debian
tenable 		openssl
leap
peoplesoft_enterprise_peopletools
mysql_enterprise_monitor
enterprise_manager_ops_center
ubuntu_linux
fedora
debian_linux
log_correlation_engine 		There is an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024,… CWE-190
 Integer Overflow or Wraparound 		CVE-2019-1551 2024-11-21 13:36 2019-12-7 Show GitHub Exploit DB Packet Storm
222006 7.8 HIGH
Local 		microsoft office A security feature bypass vulnerability exists in Microsoft Office software by not enforcing macro settings on an Excel document, aka 'Microsoft Office Excel Security Feature Bypass'. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-1457 2024-11-21 13:36 2019-11-13 Show GitHub Exploit DB Packet Storm
222007 8.8 HIGH
Network 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts, aka 'OpenType Font Parsing Remote Co… CWE-787
 Out-of-bounds Write 		CVE-2019-1456 2024-11-21 13:36 2019-11-13 Show GitHub Exploit DB Packet Storm
222008 9.8 CRITICAL
Network 		microsoft office_365_proplus
office 		A security feature bypass vulnerability exists in the way that Office Click-to-Run (C2R) components handle a specially crafted file, which could lead to a standard user, any AppContainer sandbox, and… NVD-CWE-noinfo
CVE-2019-1449 2024-11-21 13:36 2019-11-13 Show GitHub Exploit DB Packet Storm
222009 7.8 HIGH
Local 		microsoft excel
office
office_365_proplus 		A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. NVD-CWE-noinfo
CVE-2019-1448 2024-11-21 13:36 2019-11-13 Show GitHub Exploit DB Packet Storm
222010 5.4 MEDIUM
Network 		microsoft office_online_server A spoofing vulnerability exists when Office Online does not validate origin in cross-origin communications handlers correctly, aka 'Microsoft Office Online Spoofing Vulnerability'. This CVE ID is uni… CWE-346
 Origin Validation Error 		CVE-2019-1447 2024-11-21 13:36 2019-11-13 Show GitHub Exploit DB Packet Storm