Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250311 7.5 危険 ELITE LADDAERS - Elite Gaming Ladders における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5016 2011-12-9 14:00 2011-11-2 Show GitHub Exploit DB Packet Storm
250312 7.5 危険 ELITE LADDAERS - Elite Gaming Ladders における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5017 2011-12-9 13:59 2011-11-2 Show GitHub Exploit DB Packet Storm
250313 4.3 警告 2daybiz - 2daybiz Online Classified Script におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5018 2011-12-9 13:59 2011-11-2 Show GitHub Exploit DB Packet Storm
250314 7.5 危険 2daybiz - 2daybiz Online Classified Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5019 2011-12-9 13:58 2011-11-2 Show GitHub Exploit DB Packet Storm
250315 7.5 危険 NetArt Media - NetArt Media iBoutique における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5020 2011-12-9 13:56 2011-11-2 Show GitHub Exploit DB Packet Storm
250316 7.5 危険 Cramer Development - Digital Interchange Document Library における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5021 2011-12-9 13:56 2011-11-2 Show GitHub Exploit DB Packet Storm
250317 7.5 危険 Jextensions - Joomla! 用 JExtensions JE Story Submit コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5022 2011-12-9 13:55 2011-11-2 Show GitHub Exploit DB Packet Storm
250318 7.5 危険 Cramer Development - Digital Interchange Calendar における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5023 2011-12-9 13:54 2011-11-2 Show GitHub Exploit DB Packet Storm
250319 6 警告 CuteSITE - CuteSITE CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5024 2011-12-9 13:54 2011-11-2 Show GitHub Exploit DB Packet Storm
250320 4.3 警告 CuteSITE - CuteSITE CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5025 2011-12-9 13:50 2011-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213331 9.8 CRITICAL
Network 		phpshe phpshe A SQL Injection was discovered in PHPSHE 1.7 in include/plugin/payment/alipay/pay.php with the parameter id. The vulnerability does not need any authentication. CWE-89
SQL Injection 		CVE-2019-9762 2024-11-21 13:52 2019-03-14 Show GitHub Exploit DB Packet Storm
213332 7.5 HIGH
Network 		phpshe phpshe An XXE issue was discovered in PHPSHE 1.7, which can be used to read any file in the system or scan the internal network without authentication. This occurs because of the call to wechat_getxml in in… CWE-611
XXE 		CVE-2019-9761 2024-11-21 13:52 2019-03-14 Show GitHub Exploit DB Packet Storm
213333 9.8 CRITICAL
Network 		ftpgetter ftpgetter FTPGetter Standard v.5.97.0.177 allows remote code execution when a user initiates an FTP connection to an attacker-controlled machine that sends crafted responses. Long responses can also crash the … CWE-787
 Out-of-bounds Write 		CVE-2019-9760 2024-11-21 13:52 2019-03-14 Show GitHub Exploit DB Packet Storm
213334 5.5 MEDIUM
Local 		tinycc tinycc An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. Compiling a crafted source file leads to an 1 byte out of bounds write in the end_macro function in tccpp.c. CWE-787
 Out-of-bounds Write 		CVE-2019-9754 2024-11-21 13:52 2019-03-14 Show GitHub Exploit DB Packet Storm
213335 5.4 MEDIUM
Network 		otrs
opensuse 		otrs
leap
backports_sle 		An issue was discovered in Open Ticket Request System (OTRS) 5.x before 5.0.34, 6.x before 6.0.16, and 7.x before 7.0.4. An attacker who is logged into OTRS as an agent or a customer user may upload … CWE-79
Cross-site Scripting 		CVE-2019-9752 2024-11-21 13:52 2019-03-14 Show GitHub Exploit DB Packet Storm
213336 4.8 MEDIUM
Network 		otrs otrs An issue was discovered in Open Ticket Request System (OTRS) 6.x before 6.0.17 and 7.x before 7.0.5. An attacker who is logged into OTRS as an admin user may manipulate the URL to cause execution of … CWE-79
Cross-site Scripting 		CVE-2019-9751 2024-11-21 13:52 2019-03-14 Show GitHub Exploit DB Packet Storm
213337 9.1 CRITICAL
Network 		iotivity iotivity In IoTivity through 1.3.1, the CoAP server interface can be used for Distributed Denial of Service attacks using source IP address spoofing and UDP-based traffic amplification. The reflected traffic … CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-9750 2024-11-21 13:52 2019-03-14 Show GitHub Exploit DB Packet Storm
213338 7.5 HIGH
Network 		treasuredata fluent_bit An issue was discovered in the MQTT input plugin in Fluent Bit through 1.0.4. When this plugin acts as an MQTT broker (server), it mishandles incoming network messages. After processing a crafted pac… CWE-681
 Incorrect Conversion between Numeric Types 		CVE-2019-9749 2024-11-21 13:52 2019-03-14 Show GitHub Exploit DB Packet Storm
213339 9.1 CRITICAL
Network 		tinysvcmdns_project tinysvcmdns In tinysvcmdns through 2018-01-16, an mDNS server processing a crafted packet can perform arbitrary data read operations up to 16383 bytes from the start of the buffer. This can lead to a segmentatio… CWE-125
Out-of-bounds Read 		CVE-2019-9748 2024-11-21 13:52 2019-03-14 Show GitHub Exploit DB Packet Storm
213340 7.5 HIGH
Network 		tinysvcmdns_project tinysvcmdns In tinysvcmdns through 2018-01-16, a maliciously crafted mDNS (Multicast DNS) packet triggers an infinite loop while parsing an mDNS query. When mDNS compressed labels point to each other, the functi… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2019-9747 2024-11-21 13:52 2019-03-14 Show GitHub Exploit DB Packet Storm