Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
243771 6.5 警告 CutePHP - CutePHP CuteNews の Categories モジュールにおける任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4115 2012-06-26 16:18 2009-11-30 Show GitHub Exploit DB Packet Storm
243772 6.5 警告 korn19
CutePHP		 - CutePHP CuteNews および UTF-8 CuteNews における任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4113 2012-06-26 16:18 2009-11-30 Show GitHub Exploit DB Packet Storm
243773 9 危険 The Cacti Group - Cacti における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4112 2012-06-26 16:18 2009-11-30 Show GitHub Exploit DB Packet Storm
243774 4.3 警告 DNN - DotNetNuke の search 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4110 2012-06-26 16:18 2009-11-26 Show GitHub Exploit DB Packet Storm
243775 5 警告 DNN - DotNetNuke のインストールウィザードにおけるバージョン情報などの重要な情報へアクセスされる脆弱性 CWE-200
情報漏えい 		CVE-2009-4109 2012-06-26 16:18 2009-11-26 Show GitHub Exploit DB Packet Storm
243776 4 警告 dxm2008 - XM Easy Personal FTP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-4108 2012-06-26 16:18 2009-11-29 Show GitHub Exploit DB Packet Storm
243777 9.3 危険 amplusnet - Invisible Browsing におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4107 2012-06-26 16:18 2009-11-29 Show GitHub Exploit DB Packet Storm
243778 7.5 危険 Debian - Lintian における任意のコマンドを実行される脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4015 2012-06-26 16:18 2010-01-27 Show GitHub Exploit DB Packet Storm
243779 4.3 警告 GForge Group - GForge におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4069 2012-06-26 16:18 2009-11-24 Show GitHub Exploit DB Packet Storm
243780 6.8 警告 Drupal
paul beaney		 - Drupal 用の PHPList Integration モジュールの "My Account" 機能におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-4066 2012-06-26 16:18 2009-11-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
641 8.8 HIGH
Network 		- - A flaw has been found in UTT HiPER 1200GW up to 2.5.3-170306. This impacts the function strcpy of the file /goform/formFireWall. This manipulation of the argument Profile causes stack-based buffer ov… New CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-10293 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
642 4.3 MEDIUM
Network 		- - A vulnerability has been found in PackageKit up to 1.3.5. Affected is the function g_file_test of the file src/pk-transaction.c of the component API. Such manipulation of the argument frontend-socket… New CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-10294 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
643 3.3 LOW
Local 		- - A vulnerability was found in SourceCodester Customer Review App 1.0. Affected by this vulnerability is the function add_review/save_review/get_all_reviews of the file review_app.py. Performing a mani… New CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-10295 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
644 6.3 MEDIUM
Network 		- - A vulnerability was determined in itsourcecode Fees Management System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php. Executing a manipulation of the argument Usernam… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-10296 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
645 6.3 MEDIUM
Network 		- - A vulnerability was identified in itsourcecode Fees Management System 1.0. This affects an unknown part of the file /manage_course.php. The manipulation of the argument ID leads to sql injection. It … New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-10297 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
646 3.3 LOW
Local 		- - A security flaw has been discovered in ggml-org whisper.cpp up to 1.8.2. This vulnerability affects the function whisper_model_load of the file ggml/src/ggml.c. The manipulation results in null point… New CWE-404
CWE-476
 Improper Resource Shutdown or Release
 NULL Pointer Dereference 		CVE-2026-10298 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
647 3.8 LOW
Network 		- - A weakness has been identified in code-projects Online Hospital Management System 1.0. This issue affects some unknown processing of the file viewdoctortimings.php. This manipulation of the argument … New CWE-99
Resource Injection 		CVE-2026-10299 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
648 3.7 LOW
Network 		- - A security vulnerability has been detected in SGLang 0.5.10.post1. Impacted is an unknown function of the file python/sglang/srt/lora/lora_manager.py of the component Inference HTTP Endpoint. Such ma… New CWE-617
 Reachable Assertion 		CVE-2026-10300 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
649 4.3 MEDIUM
Network 		- - A vulnerability was detected in itsourcecode Fees Management System 1.0. The affected element is an unknown function of the file index.php. Performing a manipulation of the argument page results in c… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-10301 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
650 6.3 MEDIUM
Network 		- - A flaw has been found in itsourcecode Fees Management System 1.0. The impacted element is an unknown function of the file /manage_fee.php. Executing a manipulation of the argument ID can lead to sql … New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-10302 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm