Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228981	6.5	警告	ravenphpscripts	-	Raven Web Services RavenNuke の Resend_Email モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0672	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

228982	6	警告	Plone Foundation	-	Plone 用の PlonePAS 製品における任意のユーザの ID を取得される脆弱性	CWE-287 不適切な認証	CVE-2009-0662	2012-12-20 19:10	2009-04-21	Show	GitHub Exploit DB Packet Storm

228983	5	警告	tptest	-	TPTEST の GetStatsFromLine 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0659	2012-12-20 19:10	2009-02-20	Show	GitHub Exploit DB Packet Storm

228984	5.1	警告	The Tor Project	-	Tor における送信元および送信先間の通信を特定される脆弱性	CWE-Other その他	CVE-2009-0654	2012-12-20 19:10	2009-02-20	Show	GitHub Exploit DB Packet Storm

228985	10	危険	tptest	-	TPTEST の GetStatsFromLine 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0650	2012-12-20 19:10	2009-02-20	Show	GitHub Exploit DB Packet Storm

228986	5	警告	swannsecurity	-	Swann DVR4-SecuraNet の HTTP インターフェースにおける昇格したアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-0644	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

228987	5	警告	swannsecurity	-	Swann DVR4-SecuraNet の管理 Web サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-0640	2012-12-20 19:10	2009-02-20	Show	GitHub Exploit DB Packet Storm

228988	7.5	危険	phpyabs	-	phpyabs の moduli/libri/index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-0639	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

228989	7.5	危険	wikkitikkitavi	-	WikkiTikkiTavi の upload.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-0602	2012-12-20 19:10	2009-02-16	Show	GitHub Exploit DB Packet Storm

228990	7.5	危険	phpmesfilms	-	PhpMesFilms の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0598	2012-12-20 19:10	2009-02-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
220881	7.5	HIGH Network	lenovo ibm	flex_system_x240_m4_firmware flex_system_x240_m5_firmware flex_system_x280_x6_firmware flex_system_x440_m4_firmware flex_system_x480_x6_firmware flex_system_x880_firmware nextscale_…	In various firmware versions of Lenovo System x, the integrated management module II (IMM2)'s first failure data capture (FFDC) includes the web server's private key in the generated log file for sup…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2019-6157	2024-11-21 13:46	2019-04-23	Show	GitHub Exploit DB Packet Storm

220882	8.8	HIGH Network	siemens	sinema_remote_connect_server	A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0). Due to insufficient checking of user permissions, an attacker may access URLs that require special authoriza…	-	CVE-2019-6570	2024-11-21 13:46	2019-04-17	Show	GitHub Exploit DB Packet Storm

220883	9.8	CRITICAL Network	siemens	spectrum_power_4	A vulnerability has been identified in Spectrum Power 4 (with Web Office Portal). An attacker with network access to the web server on port 80/TCP or 443/TCP could execute system commands with admini…	NVD-CWE-noinfo	CVE-2019-6579	2024-11-21 13:46	2019-04-17	Show	GitHub Exploit DB Packet Storm

220884	7.5	HIGH Network	siemens	simatic_cp443-1_opc_ua_firmware simatic_et_200_open_controller_cpu_1515sp_pc2_firmware simatic_ipc_diagmonitor_firmware simatic_net_pc_software_firmware simatic_rf188c_firmware simatic…	A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V2.7), SIMATIC HMI Comfort Outdo…	-	CVE-2019-6575	2024-11-21 13:46	2019-04-17	Show	GitHub Exploit DB Packet Storm

220885	7.5	HIGH Network	siemens	cp1604_firmware cp1616_firmware simatic_rf185c_firmware simatic_cp343-1_advanced_firmware simatic_cp443-1_firmware simatic_cp443-1_advanced_firmware simatic_et_200_sp_open_controlle…	The webserver of the affected devices contains a vulnerability that may lead to a denial of service condition. An attacker may cause a denial of service situation which leads to a restart of the we…	-	CVE-2019-6568	2024-11-21 13:46	2019-04-17	Show	GitHub Exploit DB Packet Storm

220886	9.8	CRITICAL Network	f5	big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<…	Platform dependent weakness. This issue only impacts iSeries platforms. On these platforms, in BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccele…	CWE-522 Insufficiently Protected Credentials	CVE-2019-6609	2024-11-21 13:46	2019-04-16	Show	GitHub Exploit DB Packet Storm

220887	9.8	CRITICAL Network	moxa	iks-g6824a_firmware eds-405a_firmware eds-408a_firmware eds-510a_firmware	Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of se…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2019-6526	2024-11-21 13:46	2019-04-15	Show	GitHub Exploit DB Packet Storm

220888	7.8	HIGH Local	gemalto	sentinel_ultrapro_client_library	The uncontrolled search path element vulnerability in Gemalto Sentinel UltraPro Client Library ux32w.dll Versions 1.3.0, 1.3.1, and 1.3.2 enables an attacker to load and execute a malicious file.	CWE-427 Uncontrolled Search Path Element	CVE-2019-6534	2024-11-21 13:46	2019-04-12	Show	GitHub Exploit DB Packet Storm

220889	8.8	HIGH Network	aveva	wonderware_system_platform	AVEVA Wonderware System Platform 2017 Update 2 and prior uses an ArchestrA network user account for authentication of system processes and inter-node communications. A user with low privileges could …	CWE-269 Improper Privilege Management	CVE-2019-6525	2024-11-21 13:46	2019-04-12	Show	GitHub Exploit DB Packet Storm

220890	5.5	MEDIUM Local	iobit	smart_defrag	SmartDefragDriver.sys (2.0) in IObit Smart Defrag 6 never frees an executable kernel pool that is allocated with user defined bytes and size when IOCTL 0x9C401CC0 is called. This kernel pointer can b…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-6493	2024-11-21 13:46	2019-04-12	Show	GitHub Exploit DB Packet Storm