Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228391 4.3 警告 udo von eynern - TYPO3 用の Modern Guestbook / Commenting System エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2104 2012-12-20 19:10 2009-06-17 Show GitHub Exploit DB Packet Storm
228392 7.5 危険 steve grundell - TYPO3 用の fe_mp3player エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2103 2012-12-20 19:10 2009-06-17 Show GitHub Exploit DB Packet Storm
228393 7.5 危険 zokisoft - Zoki Soft Zoki Catalog の system/application/controllers/catalog.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2097 2012-12-20 19:10 2009-06-17 Show GitHub Exploit DB Packet Storm
228394 4.3 警告 phpwebthings - phpWebThings の help.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2081 2012-12-20 19:10 2009-06-16 Show GitHub Exploit DB Packet Storm
228395 6 警告 ricardo alexandre de oliveira staudt - Yogurt の writemessage.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2034 2012-12-20 19:10 2009-06-12 Show GitHub Exploit DB Packet Storm
228396 4.3 警告 ricardo alexandre de oliveira staudt - Yogurt の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2033 2012-12-20 19:10 2009-06-12 Show GitHub Exploit DB Packet Storm
228397 2.1 注意 サン・マイクロシステムズ - Sun OpenSolaris の smbfs における CIFS ボリューム上で任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2009-2031 2012-12-20 19:10 2009-06-9 Show GitHub Exploit DB Packet Storm
228398 10 危険 サン・マイクロシステムズ
IBM		 - IBM OS/400 i5/OS V5R4M0 および V6R1M0 の JDK における脆弱性 CWE-noinfo
情報不足 		CVE-2009-2030 2012-12-20 19:10 2009-06-11 Show GitHub Exploit DB Packet Storm
228399 5 警告 vt.rovno - Vlad Titarenko ASP VT Auth におけるユーザ名などを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2024 2012-12-20 19:10 2009-06-9 Show GitHub Exploit DB Packet Storm
228400 6.8 警告 shop-script - Shop-Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2023 2012-12-20 19:10 2009-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
310771 4.9 MEDIUM
Network 		mayurik petrol_pump_management A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/invoic… CWE-89
SQL Injection 		CVE-2024-10355 2024-10-31 02:13 2024-10-25 Show GitHub Exploit DB Packet Storm
310772 3.3 LOW
Local 		apple iphone_os
ipados 		This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18 and iPadOS 18. An attacker may be able to use Siri to enable Auto-Answer Calls. NVD-CWE-noinfo
CVE-2024-40853 2024-10-31 02:08 2024-10-29 Show GitHub Exploit DB Packet Storm
310773 3.3 LOW
Local 		apple macos A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15. An app may be able to read sensitive location information. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2024-27849 2024-10-31 02:07 2024-10-29 Show GitHub Exploit DB Packet Storm
310774 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: io_uring/sqpoll: ensure task state is TASK_RUNNING when running task_work When the sqpoll is exiting and cancels pending work ite… NVD-CWE-noinfo
CVE-2024-50079 2024-10-31 02:05 2024-10-29 Show GitHub Exploit DB Packet Storm
310775 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: pinctrl: nuvoton: fix a double free in ma35_pinctrl_dt_node_to_map_func() 'new_map' is allocated using devm_* which takes care of… CWE-415
 Double Free 		CVE-2024-50071 2024-10-31 02:02 2024-10-29 Show GitHub Exploit DB Packet Storm
310776 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: pinctrl: stm32: check devm_kasprintf() returned value devm_kasprintf() can return a NULL pointer on failure but this returned val… CWE-476
 NULL Pointer Dereference 		CVE-2024-50070 2024-10-31 01:59 2024-10-29 Show GitHub Exploit DB Packet Storm
310777 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: pinctrl: apple: check devm_kasprintf() returned value devm_kasprintf() can return a NULL pointer on failure but this returned val… CWE-476
 NULL Pointer Dereference 		CVE-2024-50069 2024-10-31 01:58 2024-10-29 Show GitHub Exploit DB Packet Storm
310778 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm/damon/tests/sysfs-kunit.h: fix memory leak in damon_sysfs_test_add_targets() The sysfs_target->regions allocated in damon_sysf… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2024-50068 2024-10-31 01:57 2024-10-29 Show GitHub Exploit DB Packet Storm
310779 9.8 CRITICAL
Network 		codezips sales_management_system A vulnerability was found in Codezips Sales Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /addcustcom.php. The manipu… CWE-89
SQL Injection 		CVE-2024-10369 2024-10-31 01:50 2024-10-25 Show GitHub Exploit DB Packet Storm
310780 9.8 CRITICAL
Network 		codezips sales_management_system A vulnerability was found in Codezips Sales Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /addstock.php. The manipulation of the argument prod… CWE-89
SQL Injection 		CVE-2024-10368 2024-10-31 01:46 2024-10-25 Show GitHub Exploit DB Packet Storm