Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229021 7.5 危険 web-album - WEBalbum の photo.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0446 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
229022 7.5 危険 SIRINI.NET - GRBoard における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0444 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
229023 6.8 警告 phpbbbook - PHPbbBook の bbcode.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0442 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
229024 6.8 警告 technote - Technote の skin_shop/standard/2_view_body/body_default.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0441 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
229025 7.5 危険 Tincan - phpList の lists/admin.php におけるローカルファイルをインクルードされる脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0422 2012-12-20 19:10 2009-02-4 Show GitHub Exploit DB Packet Storm
229026 7.5 危険 rd-media - Joomla! 用の RD-Autos コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0420 2012-12-20 19:10 2009-02-4 Show GitHub Exploit DB Packet Storm
229027 6.9 警告 Standards Based Linux Instrumentation (SBLIM) - SBLIM sblim-sfcb の SSL certificate setup program における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2009-0416 2012-12-20 19:10 2009-02-3 Show GitHub Exploit DB Packet Storm
229028 10 危険 The Tor Project - Tor における脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0414 2012-12-20 19:10 2009-02-3 Show GitHub Exploit DB Packet Storm
229029 4.3 警告 Roundcube.net - roundcubemail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0413 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
229030 7.5 危険 smartsitecms - smartSite CMS の articles.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0405 2012-12-20 19:10 2009-02-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194981 5.5 MEDIUM
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		Windows Event Tracing Information Disclosure Vulnerability NVD-CWE-noinfo
CVE-2021-24107 2024-11-21 14:52 2021-03-12 Show GitHub Exploit DB Packet Storm
194982 4.6 MEDIUM
Local 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		Microsoft SharePoint Server Spoofing Vulnerability NVD-CWE-noinfo
CVE-2021-24104 2024-11-21 14:52 2021-03-12 Show GitHub Exploit DB Packet Storm
194983 7.0 HIGH
Local 		microsoft windows_10
windows_server_2019
windows_server_2016 		DirectX Elevation of Privilege Vulnerability CWE-269
 Improper Privilege Management 		CVE-2021-24095 2024-11-21 14:52 2021-03-12 Show GitHub Exploit DB Packet Storm
194984 7.8 HIGH
Local 		microsoft windows_server_2016
windows_10 		Windows Error Reporting Elevation of Privilege Vulnerability CWE-269
 Improper Privilege Management 		CVE-2021-24090 2024-11-21 14:52 2021-03-12 Show GitHub Exploit DB Packet Storm
194985 7.8 HIGH
Local 		microsoft high_efficiency_video_coding HEVC Video Extensions Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2021-24089 2024-11-21 14:52 2021-03-12 Show GitHub Exploit DB Packet Storm
194986 9.8 CRITICAL
Network 		facebook gameroom The fbgames protocol handler registered as part of Facebook Gameroom does not properly quote arguments passed to the executable. That allows a malicious URL to cause code execution. This issue affect… CWE-88
Argument Injection 		CVE-2021-24030 2024-11-21 14:52 2021-03-11 Show GitHub Exploit DB Packet Storm
194987 9.8 CRITICAL
Network 		facebook hhvm Due to incorrect string size calculations inside the preg_quote function, a large input string passed to the function can trigger an integer overflow leading to a heap overflow. This issue affects HH… CWE-190
 Integer Overflow or Wraparound 		CVE-2021-24025 2024-11-21 14:52 2021-03-11 Show GitHub Exploit DB Packet Storm
194988 5.6 MEDIUM
Network 		facebook react-dev-utils react-dev-utils prior to v11.0.4 exposes a function, getProcessForPort, where an input argument is concatenated into a command string to be executed. This function is typically used from react-script… CWE-78
OS Command  		CVE-2021-24033 2024-11-21 14:52 2021-03-9 Show GitHub Exploit DB Packet Storm
194989 4.7 MEDIUM
Local 		facebook zstandard Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions… CWE-276
Incorrect Default Permissions  		CVE-2021-24032 2024-11-21 14:52 2021-03-5 Show GitHub Exploit DB Packet Storm
194990 5.5 MEDIUM
Local 		facebook zstandard In the Zstandard command-line utility prior to v1.4.1, output files were created with default permissions. Correct file permissions (matching the input) would only be set at completion time. Output f… CWE-276
Incorrect Default Permissions  		CVE-2021-24031 2024-11-21 14:52 2021-03-5 Show GitHub Exploit DB Packet Storm