Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227601	7.5	危険	questions answered	-	Questions Answered の管理インターフェースにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4728	2012-12-20 19:28	2010-03-18	Show	GitHub Exploit DB Packet Storm

227602	4.3	警告	phpscriptsnow	-	Real Time Currency Exchange の rates.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4715	2012-12-20 19:28	2010-03-15	Show	GitHub Exploit DB Packet Storm

227603	7.5	危険	tukanas	-	Tukanas Classifieds Script の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4712	2012-12-20 19:28	2010-03-15	Show	GitHub Exploit DB Packet Storm

227604	4.3	警告	Pligg	-	Pligg におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2009-4788	2012-12-20 19:28	2009-11-30	Show	GitHub Exploit DB Packet Storm

227605	6.8	警告	Pligg	-	Pligg におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4787	2012-12-20 19:28	2009-11-30	Show	GitHub Exploit DB Packet Storm

227606	4.3	警告	Pligg	-	Pligg におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4786	2012-12-20 19:28	2009-11-30	Show	GitHub Exploit DB Packet Storm

227607	4.3	警告	phpMyFAQ	-	phpMyFAQ の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4780	2012-12-20 19:28	2009-12-1	Show	GitHub Exploit DB Packet Storm

227608	6.8	警告	Ubercart	-	Drupal 用の Ubercart モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4773	2012-12-20 19:28	2009-11-18	Show	GitHub Exploit DB Packet Storm

227609	4.3	警告	Ubercart	-	Drupal 用の Ubercart モジュールにおける重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2009-4772	2012-12-20 19:28	2009-11-18	Show	GitHub Exploit DB Packet Storm

227610	5	警告	Ubercart	-	Drupal 用の Ubercart モジュールにおける不特定の "複製操作" を誘発される脆弱性	CWE-20 不適切な入力確認	CVE-2009-4771	2012-12-20 19:28	2009-11-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311521	5.4	MEDIUM Network	oretnom23	online_eyewear_shop	A vulnerability, which was classified as problematic, was found in SourceCodester Online Eyewear Shop 1.0. Affected is an unknown function of the file /admin/?page=inventory/view_inventory&id=2. The …	CWE-79 Cross-site Scripting	CVE-2024-9906	2024-10-17 07:12	2024-10-13	Show	GitHub Exploit DB Packet Storm

311522	8.8	HIGH Network	oretnom23	online_eyewear_shop	A vulnerability, which was classified as critical, has been found in SourceCodester Online Eyewear Shop 1.0. This issue affects some unknown processing of the file /admin/?page=inventory/view_invento…	CWE-89 SQL Injection	CVE-2024-9905	2024-10-17 07:12	2024-10-13	Show	GitHub Exploit DB Packet Storm

311523	9.8	CRITICAL Network	usualtool	usualtoolcms	A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected by this issue is some unknown functionality of the file app/modules/ut-cac/admin/cli.php. The manipula…	CWE-78 OS Command	CVE-2024-9916	2024-10-17 07:11	2024-10-14	Show	GitHub Exploit DB Packet Storm

311524	9.8	CRITICAL Network	ragic	enterprise_cloud_database	Enterprise Cloud Database from Ragic does not authenticate access to specific functionality, allowing unauthenticated remote attackers to use this functionality to obtain any user's session cookie.	CWE-306 Missing Authentication for Critical Function	CVE-2024-9984	2024-10-17 07:03	2024-10-15	Show	GitHub Exploit DB Packet Storm

311525	7.5	HIGH Network	ragic	enterprise_cloud_database	Enterprise Cloud Database from Ragic does not properly validate a specific page parameter, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files.	CWE-22 Path Traversal	CVE-2024-9983	2024-10-17 07:03	2024-10-15	Show	GitHub Exploit DB Packet Storm

311526	9.8	CRITICAL Network	ragic	enterprise_cloud_database	Enterprise Cloud Database from Ragic does not properly validate the file type for uploads. Attackers with regular privileges can upload a webshell and use it to execute arbitrary code on the remote s…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-9985	2024-10-17 07:02	2024-10-15	Show	GitHub Exploit DB Packet Storm

311527	7.1	HIGH Network	microsoft	windows_server_2022_23h2 windows_10_1809 windows_server_2022 windows_11_21h2 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_22h2 windows_server_…	Microsoft OpenSSH for Windows Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43581	2024-10-17 06:54	2024-10-9	Show	GitHub Exploit DB Packet Storm

311528	7.8	HIGH Local	microsoft	365_apps office_long_term_servicing_channel	Microsoft Office Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43576	2024-10-17 06:54	2024-10-9	Show	GitHub Exploit DB Packet Storm

311529	7.5	HIGH Network	microsoft	windows_server_2016 windows_server_2022_23h2 windows_server_2022 windows_server_2019	Windows Hyper-V Denial of Service Vulnerability	NVD-CWE-noinfo	CVE-2024-43575	2024-10-17 06:53	2024-10-9	Show	GitHub Exploit DB Packet Storm

311530	7.3	HIGH Local	microsoft	windows_11_24h2	Sudo for Windows Spoofing Vulnerability	NVD-CWE-noinfo	CVE-2024-43571	2024-10-17 06:53	2024-10-9	Show	GitHub Exploit DB Packet Storm