Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229591 4.3 警告 Plohni - An image gallery におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3367 2012-12-20 19:28 2009-09-24 Show GitHub Exploit DB Packet Storm
229592 5 警告 Plohni - An image gallery の navigation.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3366 2012-12-20 19:28 2009-09-24 Show GitHub Exploit DB Packet Storm
229593 7.5 危険 traza - Aurora CMS の add-ons/modules/sysmanager/plugins/install.plugin.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3365 2012-12-20 19:28 2009-09-24 Show GitHub Exploit DB Packet Storm
229594 4.3 警告 ufku bayburt - Drupal 用の BUEditor モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3363 2012-12-20 19:28 2009-09-9 Show GitHub Exploit DB Packet Storm
229595 7.5 危険 sznews - SZNews の printnews.php3 における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3362 2012-12-20 19:28 2009-09-24 Show GitHub Exploit DB Packet Storm
229596 7.5 危険 tourismscripts - Tourism Scripts Adult Portal エスコートリストの profile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3358 2012-12-20 19:28 2009-09-24 Show GitHub Exploit DB Packet Storm
229597 7.5 危険 Plohni - Image voting の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3356 2012-12-20 19:28 2009-09-24 Show GitHub Exploit DB Packet Storm
229598 10 危険 Steve Lockwood - Drupal 用の Node2Node モジュールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3353 2012-12-20 19:28 2009-09-9 Show GitHub Exploit DB Packet Storm
229599 10 危険 roshan shah - Drupal 用の Quota by role モジュールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3352 2012-12-20 19:28 2009-09-9 Show GitHub Exploit DB Packet Storm
229600 10 危険 roshan shah - Drupal 用の Subdomain Manager モジュールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3350 2012-12-20 19:28 2009-09-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4091 - - - In the Linux kernel, the following vulnerability has been resolved: md/raid1: fix memory leak in raid1_run() raid1_run() calls setup_conf() which registers a thread via md_register_thread(). If rai… - CVE-2026-45888 2026-05-27 23:48 2026-05-27 Show GitHub Exploit DB Packet Storm
4092 - - - In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix & Optimize table creation from possibly unaligned memory Source blob may come from userspace and might be unaligned… - CVE-2026-45893 2026-05-27 23:48 2026-05-27 Show GitHub Exploit DB Packet Storm
4093 - - - In the Linux kernel, the following vulnerability has been resolved: mtd: intel-dg: Fix accessing regions before setting nregions The regions array is counted by nregions, but it's set only after ac… - CVE-2026-45896 2026-05-27 23:48 2026-05-27 Show GitHub Exploit DB Packet Storm
4094 - - - In the Linux kernel, the following vulnerability has been resolved: power: supply: wm97xx: Fix NULL pointer dereference in power_supply_changed() In `probe()`, `request_irq()` is called before allo… - CVE-2026-45869 2026-05-27 23:48 2026-05-27 Show GitHub Exploit DB Packet Storm
4095 - - - In the Linux kernel, the following vulnerability has been resolved: SUNRPC: auth_gss: fix memory leaks in XDR decoding error paths The gssx_dec_ctx(), gssx_dec_status(), and gssx_dec_name() functio… - CVE-2026-45870 2026-05-27 23:48 2026-05-27 Show GitHub Exploit DB Packet Storm
4096 - - - In the Linux kernel, the following vulnerability has been resolved: HID: intel-ish-hid: fix NULL-ptr-deref in ishtp_bus_remove_all_clients During a warm reset flow, the cl->device pointer may be NU… - CVE-2026-45877 2026-05-27 23:48 2026-05-27 Show GitHub Exploit DB Packet Storm
4097 - - - In the Linux kernel, the following vulnerability has been resolved: power: supply: bq25980: Fix use-after-free in power_supply_changed() Using the `devm_` variant for requesting IRQ _before_ the `d… - CVE-2026-45879 2026-05-27 23:48 2026-05-27 Show GitHub Exploit DB Packet Storm
4098 - - - In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_bms_vm: Fix use-after-free in power_supply_changed() Using the `devm_` variant for requesting IRQ _before_ … - CVE-2026-45882 2026-05-27 23:48 2026-05-27 Show GitHub Exploit DB Packet Storm
4099 - - - In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_counter: serialize reset with spinlock Add a global static spinlock to serialize counter fetch+reset operations, p… - CVE-2026-45897 2026-05-27 23:48 2026-05-27 Show GitHub Exploit DB Packet Storm
4100 - - - In the Linux kernel, the following vulnerability has been resolved: ext4: drop extent cache when splitting extent fails When the split extent fails, we might leave some extents still being processe… - CVE-2026-45899 2026-05-27 23:48 2026-05-27 Show GitHub Exploit DB Packet Storm