Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228591 4.3 警告 Pligg - Pligg におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4788 2012-12-20 19:28 2009-11-30 Show GitHub Exploit DB Packet Storm
228592 6.8 警告 Pligg - Pligg におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-4787 2012-12-20 19:28 2009-11-30 Show GitHub Exploit DB Packet Storm
228593 4.3 警告 Pligg - Pligg におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4786 2012-12-20 19:28 2009-11-30 Show GitHub Exploit DB Packet Storm
228594 4.3 警告 phpMyFAQ - phpMyFAQ の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4780 2012-12-20 19:28 2009-12-1 Show GitHub Exploit DB Packet Storm
228595 6.8 警告 Ubercart - Drupal 用の Ubercart モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-4773 2012-12-20 19:28 2009-11-18 Show GitHub Exploit DB Packet Storm
228596 4.3 警告 Ubercart - Drupal 用の Ubercart モジュールにおける重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-4772 2012-12-20 19:28 2009-11-18 Show GitHub Exploit DB Packet Storm
228597 5 警告 Ubercart - Drupal 用の Ubercart モジュールにおける不特定の "複製操作" を誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4771 2012-12-20 19:28 2009-11-18 Show GitHub Exploit DB Packet Storm
228598 9 危険 Codeorigin - Sysax Multi Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4790 2012-12-20 19:28 2010-04-22 Show GitHub Exploit DB Packet Storm
228599 7.2 危険 tukeva - TUKEVA Password Reminder における資格情報を発見される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-4781 2012-12-20 19:28 2010-04-21 Show GitHub Exploit DB Packet Storm
228600 7.5 危険 robert garrigos - NukeHall における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4779 2012-12-20 19:28 2010-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194561 5.4 MEDIUM
Network 		if-me ifme In “ifme”, versions 1.0.0 to v7.31.4 are vulnerable against stored XSS vulnerability in the markdown editor. It can be exploited by making a victim a Leader of a group which triggers the payload for … CWE-79
Cross-site Scripting 		CVE-2021-25989 2024-11-21 14:55 2021-12-29 Show GitHub Exploit DB Packet Storm
194562 5.4 MEDIUM
Network 		if-me ifme In “ifme”, versions 1.0.0 to v7.31.4 are vulnerable against stored XSS vulnerability (notifications section) which can be directly triggered by sending an ally request to the admin. CWE-79
Cross-site Scripting 		CVE-2021-25988 2024-11-21 14:55 2021-12-29 Show GitHub Exploit DB Packet Storm
194563 3.3 LOW
Local 		samsung pay Improper export of Android application components vulnerability in Samsung Pay (India only) prior to version 4.1.77 allows attacker to access Bill Pay and Recharge menu without authentication. NVD-CWE-Other
CVE-2021-25527 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm
194564 5.5 MEDIUM
Local 		samsung blockchain_wallet Intent redirection vulnerability in Samsung Blockchain Wallet prior to version 1.3.02.8 allows attacker to execute privileged action. NVD-CWE-Other
CVE-2021-25526 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm
194565 6.5 MEDIUM
Adjacent 		samsung pay Improper check or handling of exception conditions vulnerability in Samsung Pay (US only) prior to version 4.0.65 allows attacker to use NFC without user recognition. CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2021-25525 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm
194566 3.3 LOW
Local 		samsung contacts Insecure storage of device information in Contacts prior to version 12.7.05.24 allows attacker to get Samsung Account ID. CWE-922
 Insecure Storage of Sensitive Information 		CVE-2021-25524 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm
194567 3.3 LOW
Local 		samsung dialer Insecure storage of device information in Samsung Dialer prior to version 12.7.05.24 allows attacker to get Samsung Account ID. CWE-922
 Insecure Storage of Sensitive Information 		CVE-2021-25523 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm
194568 3.3 LOW
Local 		samsung smart_capture Insecure storage of sensitive information vulnerability in Smart Capture prior to version 4.8.02.10 allows attacker to access victim's captured images without permission. CWE-922
 Insecure Storage of Sensitive Information 		CVE-2021-25522 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm
194569 3.3 LOW
Local 		samsung internet Insecure caller check in sharevia deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to get current tab URL in Samsung Internet. CWE-552
 Files or Directories Accessible to External Parties 		CVE-2021-25521 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm
194570 6.1 MEDIUM
Network 		samsung internet Insecure caller check and input validation vulnerabilities in SearchKeyword deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to execute script codes in Samsung Internet. CWE-79
Cross-site Scripting 		CVE-2021-25520 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm