Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229361	7.5	危険	riotpix	-	RiotPix の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0109	2012-12-20 19:10	2009-01-9	Show	GitHub Exploit DB Packet Storm

229362	7.5	危険	phpauctions	-	PHPAuctions における管理者アクセス権を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-0108	2012-12-20 19:10	2009-01-9	Show	GitHub Exploit DB Packet Storm

229363	4.3	警告	phpauctions	-	PHPAuctions の profile.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0107	2012-12-20 19:10	2009-01-9	Show	GitHub Exploit DB Packet Storm

229364	7.5	危険	phpauctions	-	PHPAuctions の profile.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0106	2012-12-20 19:10	2009-01-9	Show	GitHub Exploit DB Packet Storm

229365	4.3	警告	se-ed	-	EZpack の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0105	2012-12-20 19:10	2009-01-9	Show	GitHub Exploit DB Packet Storm

229366	7.5	危険	se-ed	-	EZpack の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0104	2012-12-20 19:10	2009-01-9	Show	GitHub Exploit DB Packet Storm

229367	7.5	危険	playSMS	-	playSMS における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-0103	2012-12-20 19:10	2009-01-9	Show	GitHub Exploit DB Packet Storm

229368	10	危険	The phpMyAdmin Project	-	phpMyAdmin の libraries/File.class.php における脆弱性	CWE-310 暗号の問題	CVE-2008-7252	2012-12-20 19:10	2010-01-15	Show	GitHub Exploit DB Packet Storm

229369	10	危険	The phpMyAdmin Project	-	phpMyAdmin の libraries/File.class.php における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7251	2012-12-20 19:10	2010-01-19	Show	GitHub Exploit DB Packet Storm

229370	9	危険	シマンテック	-	Symantec Brightmail Gateway Appliance の Control Center における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2009-0064	2012-12-20 19:10	2009-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
225311	5.5	MEDIUM Local	gpac debian	gpac debian_linux	An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function gf_odf_avc_cfg_write_bs() in odf/descriptors.c.	CWE-476 NULL Pointer Dereference	CVE-2019-20163	2024-11-21 13:38	2019-12-31	Show	GitHub Exploit DB Packet Storm

225312	5.5	MEDIUM Local	gpac debian	gpac debian_linux	An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is heap-based buffer overflow in the function gf_isom_box_parse_ex() in isomedia/box_funcs.c.	CWE-787 Out-of-bounds Write	CVE-2019-20162	2024-11-21 13:38	2019-12-31	Show	GitHub Exploit DB Packet Storm

225313	5.5	MEDIUM Local	gpac debian	gpac debian_linux	An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is heap-based buffer overflow in the function ReadGF_IPMPX_WatermarkingInit() in odf/ipmpx_code.c.	CWE-787 Out-of-bounds Write	CVE-2019-20161	2024-11-21 13:38	2019-12-31	Show	GitHub Exploit DB Packet Storm

225314	5.5	MEDIUM Local	gpac	gpac	An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a stack-based buffer overflow in the function av1_parse_tile_group() in media_tools/av_parsers.c.	CWE-787 Out-of-bounds Write	CVE-2019-20160	2024-11-21 13:38	2019-12-31	Show	GitHub Exploit DB Packet Storm

225315	5.5	MEDIUM Local	gpac	gpac	An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a memory leak in dinf_New() in isomedia/box_code_base.c.	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-20159	2024-11-21 13:38	2019-12-31	Show	GitHub Exploit DB Packet Storm

225316	7.5	HIGH Network	kind-of_project	kind-of	ctorName in index.js in kind-of v6.0.2 allows external user input to overwrite certain internal attributes via a conflicting name, as demonstrated by 'constructor': {'name':'Symbol'}. Hence, a crafte…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2019-20149	2024-11-21 13:38	2019-12-31	Show	GitHub Exploit DB Packet Storm

225317	6.1	MEDIUM Network	laborator	neon	An XSS issue was discovered in the Laborator Neon theme 2.0 for WordPress via the data/autosuggest-remote.php q parameter.	CWE-79 Cross-site Scripting	CVE-2019-20141	2024-11-21 13:38	2019-12-31	Show	GitHub Exploit DB Packet Storm

225318	5.4	MEDIUM Network	nagios	nagios_xi	In Nagios XI 5.6.9, XSS exists via the nocscreenapi.php host, hostgroup, or servicegroup parameter, or the schedulereport.php hour or frequency parameter. Any authenticated user can attack the admin …	CWE-79 Cross-site Scripting	CVE-2019-20139	2024-11-21 13:38	2019-12-31	Show	GitHub Exploit DB Packet Storm

225319	7.5	HIGH Network	http_authentication_library_project	http_authentication_library	The HTTP Authentication library before 2019-12-27 for Nim has weak password hashing because the default algorithm for libsodium's crypto_pwhash_str is not used.	CWE-327 CWE-916 Use of a Broken or Risky Cryptographic Algorithm Use of Password Hash With Insufficient Computational Effort	CVE-2019-20138	2024-11-21 13:38	2019-12-30	Show	GitHub Exploit DB Packet Storm

225320	5.5	MEDIUM Local	linux debian canonical	linux_kernel debian_linux ubuntu_linux	In the Linux kernel before 5.1, there is a memory leak in __feat_register_sp() in net/dccp/feat.c, which may cause denial of service, aka CID-1d3ff0950e2b.	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-20096	2024-11-21 13:38	2019-12-30	Show	GitHub Exploit DB Packet Storm