Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228761	4.3	警告	roytanck	-	WordPress 用の WP-Cumulus プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4169	2012-12-20 19:28	2009-09-27	Show	GitHub Exploit DB Packet Storm

228762	4.3	警告	roytanck	-	WordPress、Joomulus モジュール、および Joomla! 用の WP-Cumulus モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4168	2012-12-20 19:28	2009-11-15	Show	GitHub Exploit DB Packet Storm

228763	7.5	危険	simple glossar	-	TYPO3 用の simple_glossar エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4165	2012-12-20 19:28	2009-12-2	Show	GitHub Exploit DB Packet Storm

228764	4.3	警告	simple glossar	-	TYPO3 用の simple_glossar エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4164	2012-12-20 19:28	2009-12-2	Show	GitHub Exploit DB Packet Storm

228765	7.5	危険	tw productfinder	-	TYPO3 用の TW Productfinder エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4163	2012-12-20 19:28	2009-12-2	Show	GitHub Exploit DB Packet Storm

228766	7.5	危険	Piwik teethgrinder.co.uk	-	Piwik などの製品で使用される Open Flash Chart Lug Wyrm Charmer における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2009-4140	2012-12-20 19:28	2009-10-21	Show	GitHub Exploit DB Packet Storm

228767	7.5	危険	Piwik	-	Piwik の core/Cookie.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-4137	2012-12-20 19:28	2009-12-9	Show	GitHub Exploit DB Packet Storm

228768	9.3	危険	wikipedia	-	Firefox の Wikipedia Toolbar エクステンションにおける Chrome 権限を伴う任意の JavaScript を実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4127	2012-12-20 19:28	2009-12-2	Show	GitHub Exploit DB Packet Storm

228769	10	危険	Ruby-lang.org	-	Ruby の string.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4124	2012-12-20 19:28	2009-12-11	Show	GitHub Exploit DB Packet Storm

228770	3.5	注意	TYPSoft	-	TYPSoft FTP Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-4105	2012-12-20 19:28	2009-11-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194511	9.8	CRITICAL Network	google	android	An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. The USB laf gadget has a use-after-free. The LG ID is LVE-SMP-200031 (February 2021).	CWE-416 Use After Free	CVE-2021-26689	2024-11-21 14:56	2021-02-4	Show	GitHub Exploit DB Packet Storm

194512	9.8	CRITICAL Network	google	android	An issue was discovered on LG Wing mobile devices with Android OS 10 software. The biometric sensor has weak security properties. The LG ID is LVE-SMP-200030 (February 2021).	NVD-CWE-noinfo	CVE-2021-26688	2024-11-21 14:56	2021-02-4	Show	GitHub Exploit DB Packet Storm

194513	9.8	CRITICAL Network	google	android	An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. In preloaded applications, the HostnameVerified default is mishandled. The LG ID is LVE-SMP-200029 (Februa…	NVD-CWE-noinfo	CVE-2021-26687	2024-11-21 14:56	2021-02-4	Show	GitHub Exploit DB Packet Storm

194514	7.5	HIGH Network	marc_project	marc	An issue was discovered in the marc crate before 2.0.0 for Rust. A user-provided Read implementation can gain access to the old contents of newly allocated memory, violating soundness.	NVD-CWE-noinfo	CVE-2021-26308	2024-11-21 14:56	2021-01-29	Show	GitHub Exploit DB Packet Storm

194515	5.5	MEDIUM Local	raw-cpuid_project	raw-cpuid	An issue was discovered in the raw-cpuid crate before 9.0.0 for Rust. It allows __cpuid_count() calls even if the processor does not support the CPUID instruction, which is unsound and causes a deter…	NVD-CWE-Other	CVE-2021-26307	2024-11-21 14:56	2021-01-29	Show	GitHub Exploit DB Packet Storm

194516	7.5	HIGH Network	raw-cpuid_project	raw-cpuid	An issue was discovered in the raw-cpuid crate before 9.0.0 for Rust. It has unsound transmute calls within as_string() methods.	NVD-CWE-Other	CVE-2021-26306	2024-11-21 14:56	2021-01-29	Show	GitHub Exploit DB Packet Storm

194517	9.8	CRITICAL Network	cdr_project	cdr	An issue was discovered in Deserializer::read_vec in the cdr crate before 0.2.4 for Rust. A user-provided Read implementation can gain access to the old contents of newly allocated heap memory, viola…	CWE-908 Use of Uninitialized Resource	CVE-2021-26305	2024-11-21 14:56	2021-01-29	Show	GitHub Exploit DB Packet Storm

194518	5.4	MEDIUM Network	phpgurukul	daily_expense_tracker_system	PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS via the add-expense.php Item parameter.	CWE-79 Cross-site Scripting	CVE-2021-26304	2024-11-21 14:56	2021-01-29	Show	GitHub Exploit DB Packet Storm

194519	6.1	MEDIUM Network	phpgurukul	daily_expense_tracker_system	PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS via the user-profile.php Full Name field.	CWE-79 Cross-site Scripting	CVE-2021-26303	2024-11-21 14:56	2021-01-29	Show	GitHub Exploit DB Packet Storm

194520	5.3	MEDIUM Network	godaddy	node-config-shield	scripts/cli.js in the GoDaddy node-config-shield (aka Config Shield) package before 0.2.2 for Node.js calls eval when processing a set command. NOTE: the vendor reportedly states that this is not a v…	CWE-913 Improper Control of Dynamically-Managed Code Resources	CVE-2021-26276	2024-11-21 14:56	2021-01-28	Show	GitHub Exploit DB Packet Storm