Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227181 9.3 危険 stonetrip - StoneTrip Ston3D StandalonePlayer および WebPlayer の system.openURL 関数における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2009-1792 2012-12-20 19:10 2009-05-29 Show GitHub Exploit DB Packet Storm
227182 7.5 危険 phpdirsubmit - PHP Dir Submit における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1787 2012-12-20 19:10 2009-05-26 Show GitHub Exploit DB Packet Storm
227183 4.3 警告 ulteo - Ulteo Open Virtual Desktop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1785 2012-12-20 19:10 2009-05-22 Show GitHub Exploit DB Packet Storm
227184 6.8 警告 roboform - Frax.dk Php Recommend の admin.php における phpre_config.php へ任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-1781 2012-12-20 19:10 2009-05-22 Show GitHub Exploit DB Packet Storm
227185 7.5 危険 roboform - Frax.dk Php Recommend の admin.php における管理者権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1780 2012-12-20 19:10 2009-05-22 Show GitHub Exploit DB Packet Storm
227186 6.8 警告 roboform - Frax.dk Php Recommend の admin.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-1779 2012-12-20 19:10 2009-05-22 Show GitHub Exploit DB Packet Storm
227187 4.3 警告 ulteo - Ulteo Open Virtual Desktop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1775 2012-12-20 19:10 2009-05-22 Show GitHub Exploit DB Packet Storm
227188 9.3 危険 strawberry - Strawberry の plugins/ddb/foot.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1774 2012-12-20 19:10 2009-05-22 Show GitHub Exploit DB Packet Storm
227189 5 警告 ramazeiten - Rama Zaiten CMS の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1768 2012-12-20 19:10 2009-05-22 Show GitHub Exploit DB Packet Storm
227190 6.4 警告 teozkr - LightOpenCMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1766 2012-12-20 19:10 2009-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311911 4.3 MEDIUM
Network 		hasthemes ht_mega The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.5 via the render function in includes/widget… NVD-CWE-noinfo
CVE-2024-8910 2024-10-4 02:34 2024-09-25 Show GitHub Exploit DB Packet Storm
311912 8.8 HIGH
Adjacent 		silabs gecko_os Silicon Labs Gecko OS Debug Interface Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected insta… CWE-787
 Out-of-bounds Write 		CVE-2024-23938 2024-10-4 02:29 2024-09-28 Show GitHub Exploit DB Packet Storm
311913 5.3 MEDIUM
Network 		wpfactory eu\/uk_vat_manager_for_woocommerce The EU/UK VAT Manager for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the alg_wc_eu_vat_exempt_vat_from_admin() function i… CWE-862
 Missing Authorization 		CVE-2024-9189 2024-10-4 02:26 2024-09-28 Show GitHub Exploit DB Packet Storm
311914 6.1 MEDIUM
Network 		wpfactory eu\/uk_vat_manager_for_woocommerce The EU/UK VAT Manager for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up t… CWE-79
Cross-site Scripting 		CVE-2024-8788 2024-10-4 02:25 2024-09-28 Show GitHub Exploit DB Packet Storm
311915 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: btrfs: do not clear page dirty inside extent_write_locked_range() [BUG] For subpage + zoned case, the following workload can lead… NVD-CWE-noinfo
CVE-2024-44972 2024-10-4 01:10 2024-09-5 Show GitHub Exploit DB Packet Storm
311916 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: usbnet: ipheth: do not stop RX on failing RX callback RX callbacks can fail for multiple reasons: * Payload too short * Payload … NVD-CWE-noinfo
CVE-2024-46861 2024-10-4 00:36 2024-09-27 Show GitHub Exploit DB Packet Storm
311917 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: soc-acpi-intel-mtl-match: add missing empty item There is no links_num in struct snd_soc_acpi_mach {}, and we test !… NVD-CWE-noinfo
CVE-2024-46862 2024-10-4 00:34 2024-09-27 Show GitHub Exploit DB Packet Storm
311918 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: soc-acpi-intel-lnl-match: add missing empty item There is no links_num in struct snd_soc_acpi_mach {}, and we test !… NVD-CWE-noinfo
CVE-2024-46863 2024-10-4 00:32 2024-09-27 Show GitHub Exploit DB Packet Storm
311919 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: x86/hyperv: fix kexec crash due to VP assist page corruption commit 9636be85cc5b ("x86/hyperv: Fix hyperv_pcpu_input_arg handling… NVD-CWE-noinfo
CVE-2024-46864 2024-10-4 00:29 2024-09-27 Show GitHub Exploit DB Packet Storm
311920 7.8 HIGH
Local 		papercut papercut_ng
papercut_mf 		An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local lo… CWE-59
Link Following 		CVE-2024-8404 2024-10-4 00:19 2024-09-26 Show GitHub Exploit DB Packet Storm