Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228551	7.5	危険	scripts.oldguy	-	TalkBack の addons/import.php における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-4854	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

228552	6.8	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4849	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

228553	4.3	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4848	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

228554	5	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro の設定ページにおける重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2009-4845	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

228555	5	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro における重要な Tomcat の情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-4844	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

228556	7.5	危険	toutvirtual	-	ToutVirtual VirtualIQ Pro における任意のコマンドを実行される脆弱性	CWE-287 不適切な認証	CVE-2009-4843	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

228557	4.3	警告	toutvirtual	-	ToutVirtual VirtualIQ Pro におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4842	2012-12-20 19:28	2010-05-7	Show	GitHub Exploit DB Packet Storm

228558	9.3	危険	ROXIO	-	Roxio CinePlayer の SonicMediaPlayer.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4841	2012-12-20 19:28	2010-05-6	Show	GitHub Exploit DB Packet Storm

228559	9.3	危険	ROXIO	-	Roxio CinePlayer の IAManager.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4840	2012-12-20 19:28	2010-05-6	Show	GitHub Exploit DB Packet Storm

228560	6.8	警告	xpressengine	-	Zeroboard の lib.php における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4834	2012-12-20 19:28	2010-05-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
226251	6.1	MEDIUM Network	wordpress debian	wordpress debian_linux	In wp-includes/formatting.php in WordPress 3.7 to 5.3.0, the function wp_targeted_link_rel() can be used in a particular way to result in a stored cross-site scripting (XSS) vulnerability. This has b…	CWE-79 Cross-site Scripting	CVE-2019-20042	2024-11-21 13:37	2019-12-27	Show	GitHub Exploit DB Packet Storm

226252	9.8	CRITICAL Network	wordpress debian	wordpress debian_linux	wp_kses_bad_protocol in wp-includes/kses.php in WordPress before 5.3.1 mishandles the HTML5 colon named entity, allowing attackers to bypass input sanitization, as demonstrated by the javascript&colo…	CWE-20 Improper Input Validation	CVE-2019-20041	2024-11-21 13:37	2019-12-27	Show	GitHub Exploit DB Packet Storm

226253	5.5	MEDIUM Local	upx_project fedoraproject	upx fedora	A heap-based buffer over-read was discovered in canUnpack in p_mach.cpp in UPX 3.95 via a crafted Mach-O file.	CWE-125 Out-of-bounds Read	CVE-2019-20021	2024-11-21 13:37	2019-12-27	Show	GitHub Exploit DB Packet Storm

226254	6.5	MEDIUM Network	matio_project	matio	A stack-based buffer over-read was discovered in ReadNextStructField in mat5.c in matio 1.5.17.	CWE-125 Out-of-bounds Read	CVE-2019-20020	2024-11-21 13:37	2019-12-27	Show	GitHub Exploit DB Packet Storm

226255	6.5	MEDIUM Network	matio_project	matio	An attempted excessive memory allocation was discovered in Mat_VarRead5 in mat5.c in matio 1.5.17.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2019-20019	2024-11-21 13:37	2019-12-27	Show	GitHub Exploit DB Packet Storm

226256	6.5	MEDIUM Network	matio_project	matio	A stack-based buffer over-read was discovered in ReadNextCell in mat5.c in matio 1.5.17.	CWE-125 Out-of-bounds Read	CVE-2019-20018	2024-11-21 13:37	2019-12-27	Show	GitHub Exploit DB Packet Storm

226257	6.5	MEDIUM Network	matio_project	matio	A stack-based buffer over-read was discovered in Mat_VarReadNextInfo5 in mat5.c in matio 1.5.17.	CWE-125 Out-of-bounds Read	CVE-2019-20017	2024-11-21 13:37	2019-12-27	Show	GitHub Exploit DB Packet Storm

226258	6.5	MEDIUM Network	symonics	libmysofa	libmysofa before 2019-11-24 does not properly restrict recursive function calls, as demonstrated by reports of stack consumption in readOHDRHeaderMessageDatatype in dataobject.c and directblockRead i…	CWE-787 Out-of-bounds Write	CVE-2019-20016	2024-11-21 13:37	2019-12-27	Show	GitHub Exploit DB Packet Storm

226259	6.5	MEDIUM Network	gnu opensuse	libredwg leap backports_sle	An issue was discovered in GNU LibreDWG 0.92. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_LWPOLYLINE_private in dwg.spec.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2019-20015	2024-11-21 13:37	2019-12-27	Show	GitHub Exploit DB Packet Storm

226260	8.8	HIGH Network	gnu opensuse	libredwg leap backports_sle	An issue was discovered in GNU LibreDWG before 0.93. There is a double-free in dwg_free in free.c.	CWE-415 Double Free	CVE-2019-20014	2024-11-21 13:37	2019-12-27	Show	GitHub Exploit DB Packet Storm