Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227891 6.8 警告 phpgroupware - phpGroupWare の phpgwapi /inc/class.auth_sql.inc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4414 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
227892 5 警告 pps.jussieu - Polipo の client.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2009-4413 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
227893 6 警告 s9y - Serendipity における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2009-4412 2012-12-20 19:28 2009-12-21 Show GitHub Exploit DB Packet Storm
227894 3.7 注意 xfs - XFS acl の setfacl および getfacl コマンドにおける任意のファイルなど対する ACL を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4411 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
227895 4.3 警告 pyforum - PyForum および zForum の models.parser におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4408 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
227896 6.8 警告 pyforum - PyForum などにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-4407 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
227897 4.3 警告 rumbacms - Rumba XML の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4403 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
227898 7.5 危険 sql-ledger - SQL-Ledger の初期設定における管理操作を実行される脆弱性 CWE-16
環境設定 		CVE-2009-4402 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
227899 7.5 危険 fr.simon rundell
TYPO3 Association		 - TYPO3 用の Portsmouth Resources Database エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4396 2012-12-20 19:28 2009-12-22 Show GitHub Exploit DB Packet Storm
227900 7.5 危険 TYPO3 Association - TYPO3 用の XDS Staff List エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4392 2012-12-20 19:28 2009-12-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
225301 7.5 HIGH
Network 		iterm2 iterm2 iTerm2 through 3.3.6 has potentially insufficient documentation about the presence of search history in com.googlecode.iterm2.plist, which might allow remote attackers to obtain sensitive information… CWE-200
Information Exposure 		CVE-2019-19022 2024-11-21 13:34 2019-11-18 Show GitHub Exploit DB Packet Storm
225302 6.1 MEDIUM
Network 		hp futuresmart_3
futuresmart_4 		A potential security vulnerability has been identified for certain HP printers and MFPs that would allow redirection page Cross-Site Scripting in a client’s browser by clicking on a third-party malic… CWE-79
Cross-site Scripting 		CVE-2019-18914 2024-11-21 13:33 2021-11-10 Show GitHub Exploit DB Packet Storm
225303 7.8 HIGH
Local 		hp futuresmart_4 A potential security vulnerability has been identified for certain HP printers and MFPs with Troy solutions. For affected printers with FutureSmart Firmware bundle version 4.9 or 4.9.0.1 the potentia… NVD-CWE-noinfo
CVE-2019-18912 2024-11-21 13:33 2021-11-10 Show GitHub Exploit DB Packet Storm
225304 7.8 HIGH
Local 		hp color_laserjet_pro_mfp_m277_b3q11a_firmware
color_laserjet_pro_mfp_m277_b3q11v_firmware
color_laserjet_pro_mfp_m277_b3q10a_firmware
color_laserjet_pro_mfp_m277_b3q10v_firmware
color_laser… 		A potential security vulnerability has been identified for HP LaserJet Solution Software (for certain HP LaserJet Printers) which may lead to unauthorized elevation of privilege on the client. CWE-269
 Improper Privilege Management 		CVE-2019-18916 2024-11-21 13:33 2021-11-9 Show GitHub Exploit DB Packet Storm
225305 9.8 CRITICAL
Network 		opensuse cryptctl A Improper Authentication vulnerability in cryptctl of SUSE Linux Enterprise Server for SAP 12-SP5, SUSE Manager Server 4.0 allows attackers with access to the hashed password to use it without havin… - CVE-2019-18906 2024-11-21 13:33 2021-06-30 Show GitHub Exploit DB Packet Storm
225306 7.5 HIGH
Network 		xerox altalink_b8045_firmware
altalink_b8055_firmware
altalink_b8065_firmware
altalink_b8075_firmware
altalink_b8090_firmware
altalink_c8030_firmware
altalink_c8035_firmware
altalink_c… 		On Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200, portions of the drive containing executable c… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2019-18630 2024-11-21 13:33 2021-03-5 Show GitHub Exploit DB Packet Storm
225307 8.1 HIGH
Network 		xerox altalink_b8045_firmware
altalink_b8055_firmware
altalink_b8065_firmware
altalink_b8075_firmware
altalink_b8090_firmware
altalink_c8030_firmware
altalink_c8035_firmware
altalink_c… 		Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200 allow an attacker to execute an unwanted binary d… NVD-CWE-noinfo
CVE-2019-18629 2024-11-21 13:33 2021-03-4 Show GitHub Exploit DB Packet Storm
225308 4.9 MEDIUM
Network 		xerox altalink_b8045_firmware
altalink_b8055_firmware
altalink_b8065_firmware
altalink_b8075_firmware
altalink_b8090_firmware
altalink_c8030_firmware
altalink_c8035_firmware
altalink_c… 		Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200 allow a user with administrative privileges to tu… NVD-CWE-noinfo
CVE-2019-18628 2024-11-21 13:33 2021-03-4 Show GitHub Exploit DB Packet Storm
225309 3.5 LOW
Adjacent 		microfocus solutions_business_manager Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to information disclosure. CWE-209
Information Exposure Through an Error Message 		CVE-2019-18947 2024-11-21 13:33 2021-02-26 Show GitHub Exploit DB Packet Storm
225310 4.8 MEDIUM
Adjacent 		microfocus solutions_business_manager Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to session fixation. CWE-384
 Session Fixation 		CVE-2019-18946 2024-11-21 13:33 2021-02-26 Show GitHub Exploit DB Packet Storm