Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228651	9.3	危険	sonicspot	-	Sonic Spot Audioactive Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1815	2012-12-20 19:10	2009-05-29	Show	GitHub Exploit DB Packet Storm

228652	7.5	危険	submitterscript	-	Submitter Script の admin/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1813	2012-12-20 19:10	2009-05-29	Show	GitHub Exploit DB Packet Storm

228653	7.5	危険	videoscript	-	VideoScript.us YouTube Video Script の admin/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1804	2012-12-20 19:10	2009-05-28	Show	GitHub Exploit DB Packet Storm

228654	6.8	警告	sebastian-thiele	-	ST-Gallery の st_admin/gallery_output.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1799	2012-12-20 19:10	2009-05-28	Show	GitHub Exploit DB Packet Storm

228655	4.3	警告	サン・マイクロシステムズ	-	Sun Java System Portal Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1796	2012-12-20 19:10	2009-05-22	Show	GitHub Exploit DB Packet Storm

228656	9.3	危険	stonetrip	-	StoneTrip Ston3D StandalonePlayer および WebPlayer の system.openURL 関数における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2009-1792	2012-12-20 19:10	2009-05-29	Show	GitHub Exploit DB Packet Storm

228657	7.5	危険	phpdirsubmit	-	PHP Dir Submit における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1787	2012-12-20 19:10	2009-05-26	Show	GitHub Exploit DB Packet Storm

228658	4.3	警告	ulteo	-	Ulteo Open Virtual Desktop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1785	2012-12-20 19:10	2009-05-22	Show	GitHub Exploit DB Packet Storm

228659	6.8	警告	roboform	-	Frax.dk Php Recommend の admin.php における phpre_config.php へ任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2009-1781	2012-12-20 19:10	2009-05-22	Show	GitHub Exploit DB Packet Storm

228660	7.5	危険	roboform	-	Frax.dk Php Recommend の admin.php における管理者権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1780	2012-12-20 19:10	2009-05-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
220641	7.1	HIGH Local	nvidia	virtual_gpu_manager	NVIDIA Virtual GPU Manager, all versions, contains a vulnerability in which it may grant a guest access to memory that it does not own, which may lead to information disclosure or denial of service.	NVD-CWE-noinfo	CVE-2019-5697	2024-11-21 13:45	2019-11-9	Show	GitHub Exploit DB Packet Storm

220642	5.5	MEDIUM Local	nvidia	virtual_gpu_manager	NVIDIA Virtual GPU Manager, all versions, contains a vulnerability in which the provision of an incorrectly sized buffer by a guest VM leads to GPU out-of-bound access, which may lead to a denial of …	CWE-131 Incorrect Calculation of Buffer Size	CVE-2019-5696	2024-11-21 13:45	2019-11-9	Show	GitHub Exploit DB Packet Storm

220643	6.5	MEDIUM Local	nvidia	gpu_driver	NVIDIA Windows GPU Display Driver, R390 driver version, contains a vulnerability in NVIDIA Control Panel in which it incorrectly loads Windows system DLLs without validating the path or signature (al…	CWE-427 Uncontrolled Search Path Element	CVE-2019-5694	2024-11-21 13:45	2019-11-9	Show	GitHub Exploit DB Packet Storm

220644	5.5	MEDIUM Local	nvidia	gpu_driver	NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) in which the program accesses or uses a pointer that has not been initialized, which …	CWE-824 Access of Uninitialized Pointer	CVE-2019-5693	2024-11-21 13:45	2019-11-9	Show	GitHub Exploit DB Packet Storm

220645	7.8	HIGH Local	nvidia	gpu_driver	NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the product uses untrusted input when calculating …	CWE-129 Improper Validation of Array Index	CVE-2019-5692	2024-11-21 13:45	2019-11-9	Show	GitHub Exploit DB Packet Storm

220646	7.8	HIGH Local	nvidia	gpu_driver	NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which a NULL pointer is dereferenced, which may lead to …	CWE-476 NULL Pointer Dereference	CVE-2019-5691	2024-11-21 13:45	2019-11-9	Show	GitHub Exploit DB Packet Storm

220647	7.8	HIGH Local	nvidia	gpu_driver	NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the size of an input buffer is not validated, whic…	CWE-787 Out-of-bounds Write	CVE-2019-5690	2024-11-21 13:45	2019-11-9	Show	GitHub Exploit DB Packet Storm

220648	7.8	HIGH Local	nvidia	geforce_experience	NVIDIA GeForce Experience, all versions prior to 3.20.1, contains a vulnerability in the Downloader component in which a user with local system access can craft input that may allow malicious files t…	NVD-CWE-noinfo	CVE-2019-5689	2024-11-21 13:45	2019-11-9	Show	GitHub Exploit DB Packet Storm

220649	9.8	CRITICAL Network	gatech	computing_for_good\'s_basic_laboratory_information_system	Computing For Good's Basic Laboratory Information System (also known as C4G BLIS) version 3.5 and earlier suffers from an instance of CWE-284, "Improper Access Control." As a result, an unauthenticat…	CWE-306 Missing Authentication for Critical Function	CVE-2019-5644	2024-11-21 13:45	2019-11-7	Show	GitHub Exploit DB Packet Storm

220650	5.3	MEDIUM Network	gatech	computing_for_good\'s_basic_laboratory_information_system	Computing For Good's Basic Laboratory Information System (also known as C4G BLIS) version 3.5 and earlier suffers from an instance of CWE-284, "Improper Access Control." As a result, an unauthenticat…	CWE-306 Missing Authentication for Critical Function	CVE-2019-5643	2024-11-21 13:45	2019-11-7	Show	GitHub Exploit DB Packet Storm