Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229181 7.5 危険 phpwebthings - phpWebThings の fdown.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2147 2012-12-20 19:10 2009-06-22 Show GitHub Exploit DB Packet Storm
229182 6 警告 SugarCRM - Sugar Community Edition の Emails モジュールにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2009-2146 2012-12-20 19:10 2009-06-22 Show GitHub Exploit DB Packet Storm
229183 7.5 危険 zipstore - Zip Store Chat の admin/index.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2142 2012-12-20 19:10 2009-06-22 Show GitHub Exploit DB Packet Storm
229184 4.3 警告 tbdev - TBDev.NET におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2141 2012-12-20 19:10 2009-06-22 Show GitHub Exploit DB Packet Storm
229185 9.3 危険 サン・マイクロシステムズ - Go-oo の svtools/source/filter.vcl/wmf/enhwmf.cxx におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-2139 2012-12-20 19:10 2009-09-8 Show GitHub Exploit DB Packet Storm
229186 4.3 警告 tbdev - TBDev.NET におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2138 2012-12-20 19:10 2009-06-19 Show GitHub Exploit DB Packet Storm
229187 5 警告 pivot - Pivot の pivot/tb.php における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-2134 2012-12-20 19:10 2009-06-19 Show GitHub Exploit DB Packet Storm
229188 4.3 警告 pivot - Pivot におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2133 2012-12-20 19:10 2009-06-19 Show GitHub Exploit DB Packet Storm
229189 6.5 警告 tekbase - TekBase All-in-One における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2120 2012-12-20 19:10 2009-06-18 Show GitHub Exploit DB Packet Storm
229190 7.5 危険 phportal - phPortal の uye_paneli.php における管理者アクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2009-2117 2012-12-20 19:10 2009-06-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4051 7.5 HIGH
Network 		mozilla firefox
firefox_focus 		Sandbox escape in Firefox and Firefox Focus for Android. This vulnerability was fixed in Firefox 151. CWE-693
 Protection Mechanism Failure 		CVE-2026-8945 2026-05-22 05:56 2026-05-19 Show GitHub Exploit DB Packet Storm
4052 4.8 MEDIUM
Network 		samba rsync Rsync version 3.4.2 and prior contain an authorization bypass vulnerability in the rsync daemon's hostname-based access control list enforcement when configured with chroot. Attackers can bypass host… CWE-289
 Authentication Bypass by Alternate Name 		CVE-2026-43617 2026-05-22 05:54 2026-05-20 Show GitHub Exploit DB Packet Storm
4053 3.7 LOW
Network 		samba rsync Rsync versions before 3.4.3 contain an off-by-one out-of-bounds stack write vulnerability in the establish_proxy_connection() function in socket.c that allows network attackers to corrupt stack memor… CWE-193
 Off-by-one Error 		CVE-2026-45232 2026-05-22 05:52 2026-05-20 Show GitHub Exploit DB Packet Storm
4054 5.5 MEDIUM
Local 		samba rsync Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recv_files() in receiver.c that allows a malicious rsync server to crash the rsync client process. Atta… CWE-125
Out-of-bounds Read 		CVE-2026-43620 2026-05-22 05:47 2026-05-20 Show GitHub Exploit DB Packet Storm
4055 6.3 MEDIUM
Local 		samba rsync Rsync version 3.4.2 and prior contain symlink race condition vulnerabilities in path-based system calls including chmod, lchown, utimes, rename, unlink, mkdir, symlink, mknod, link, rmdir, and lstat … CWE-59
CWE-367
Link Following
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2026-43619 2026-05-22 05:42 2026-05-20 Show GitHub Exploit DB Packet Storm
4056 8.1 HIGH
Network 		samba rsync Rsync version 3.4.2 and prior contain an integer overflow vulnerability in the compressed-token decoder where a 32-bit signed counter is not checked for overflow, allowing a malicious sender to trigg… CWE-125
CWE-190
Out-of-bounds Read
 Integer Overflow or Wraparound 		CVE-2026-43618 2026-05-22 05:34 2026-05-20 Show GitHub Exploit DB Packet Storm
4057 6.5 MEDIUM
Network 		faraday_project faraday Faraday is an HTTP client library abstraction layer that provides a common interface over many adapters. Versions 2.0.0 through 2.14.1 still allow protocol-relative host override when the request tar… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-33637 2026-05-22 05:17 2026-05-20 Show GitHub Exploit DB Packet Storm
4058 8.1 HIGH
Network 		- - NGINX JavaScript has a vulnerability when the js_fetch_proxy directive is configured with at least one client-controlled NGINX variable (for example, $http_*, $arg_*, $cookie_*) and a location invoki… CWE-122
Heap-based Buffer Overflow 		CVE-2026-8711 2026-05-22 04:16 2026-05-20 Show GitHub Exploit DB Packet Storm
4059 - - - A possible information disclosure vulnerability exists in the Vaadin Maven plugin and Vaadin Gradle plugin that exposes the full set of environment variables in build logs whenever the frontend build… CWE-209
Information Exposure Through an Error Message 		CVE-2026-7860 2026-05-22 04:16 2026-05-19 Show GitHub Exploit DB Packet Storm
4060 7.5 HIGH
Network 		progress moveit_automation Allocation of resources without limits or throttling vulnerability in Progress Software MOVEit Automation allows Excessive Allocation. This issue affects MOVEit Automation: before 2025.0.11, from 20… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-8488 2026-05-22 04:00 2026-05-21 Show GitHub Exploit DB Packet Storm