Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252281	7.8	危険	ModSecurity	-	ModSecurity の multipart processor におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-1902	2011-06-7 10:11	2009-03-12	Show	GitHub Exploit DB Packet Storm

252282	5	警告	ModSecurity	-	ModSecurity モジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-5676	2011-06-7 10:08	2010-08-1	Show	GitHub Exploit DB Packet Storm

252283	7.5	危険	Ecava	-	Ecava IntegraXor HMI における認証を回避される脆弱性	CWE-89 SQLインジェクション	CVE-2011-1562	2011-06-6 14:47	2011-04-5	Show	GitHub Exploit DB Packet Storm

252284	6.8	警告	IntelliCom Innovation AB	-	複数の IntelliCom 製品の cgi-bin/read.cgi における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4731	2011-06-6 14:46	2011-02-15	Show	GitHub Exploit DB Packet Storm

252285	9	危険	IntelliCom Innovation AB	-	複数の IntelliCom 製品の cgi-bin/read.cgi における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-4732	2011-06-6 14:44	2011-02-15	Show	GitHub Exploit DB Packet Storm

252286	6.8	警告	IntelliCom Innovation AB	-	複数の IntelliCom 製品の cgi-bin/read.cgi におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4730	2011-06-6 14:34	2011-02-15	Show	GitHub Exploit DB Packet Storm

252287	7.8	危険	Imperva Inc.	-	Imperva SecureSphere の Web Application Firewall および Database Firewall における intrusion-prevention 機能を回避される脆弱性	CWE-noinfo 情報不足	CVE-2010-1329	2011-06-6 14:29	2010-04-5	Show	GitHub Exploit DB Packet Storm

252288	4.3	警告	Imperva Inc.	-	Imperva SecureSphere MX Management Server の management GUI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1463	2011-06-6 14:27	2008-03-18	Show	GitHub Exploit DB Packet Storm

252289	6.5	警告	バラクーダネットワークス	-	Barracuda Spam Firewall の Account View ページ内にある index.cgi における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1094	2011-06-6 14:23	2008-12-15	Show	GitHub Exploit DB Packet Storm

252290	3.5	注意	バラクーダネットワークス	-	複数の Barracuda 製品の index.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0971	2011-06-6 14:21	2008-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222551	9.8	CRITICAL Network	pega	platform	Pega Platform 8.2.1 allows LDAP injection because a username can contain a * character and can be of unlimited length. An attacker can specify four characters of a username, followed by the * charact…	NVD-CWE-Other	CVE-2019-16374	2024-11-21 13:30	2020-08-13	Show	GitHub Exploit DB Packet Storm

222552	9.8	CRITICAL Network	openmicroscopy	omero.server	OMERO.server before 5.6.1 allows attackers to bypass the security filters and access hidden objects via a crafted query.	NVD-CWE-noinfo	CVE-2019-16244	2024-11-21 13:30	2020-07-23	Show	GitHub Exploit DB Packet Storm

222553	8.8	HIGH Network	tendacn	pa6_firmware	Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially crafted string, an attacker could modify th…	CWE-78 OS Command	CVE-2019-16213	2024-11-21 13:30	2020-06-26	Show	GitHub Exploit DB Packet Storm

222554	5.3	MEDIUM Network	openmicroscopy	omero	OMERO before 5.6.1 makes the details of each user available to all users.	NVD-CWE-noinfo	CVE-2019-16245	2024-11-21 13:30	2020-06-18	Show	GitHub Exploit DB Packet Storm

222555	5.9	MEDIUM Network	nutfind	nutfind	Missing SSL Certificate Validation in the Nutfind.com application through 3.9.12 for Android allows a man-in-the-middle attacker to sniff and manipulate all API requests, including login credentials …	CWE-295 Improper Certificate Validation	CVE-2019-16252	2024-11-21 13:30	2020-06-13	Show	GitHub Exploit DB Packet Storm

222556	6.1	MEDIUM Network	cybelesoft	thinfinity_virtualui	Cybele Thinfinity VirtualUI 2.5.17.2 allows HTTP response splitting via the mimetype parameter within a PDF viewer request, as demonstrated by an example.pdf?mimetype= substring. The victim user must…	CWE-79 CWE-74 Cross-site Scripting Injection	CVE-2019-16385	2024-11-21 13:30	2020-06-5	Show	GitHub Exploit DB Packet Storm

222557	6.5	MEDIUM Network	cybelesoft	thinfinity_virtualui	Cybele Thinfinity VirtualUI 2.5.17.2 allows ../ path traversal that can be used for data exfiltration. This enables files outside of the web directory to be retrieved if the exact location is known a…	CWE-22 Path Traversal	CVE-2019-16384	2024-11-21 13:30	2020-06-5	Show	GitHub Exploit DB Packet Storm

222558	5.5	MEDIUM Local	fortinet	forticlient	Use of a hard-coded cryptographic key to encrypt security sensitive data in local storage and configuration in FortiClient for Windows prior to 6.4.0 may allow an attacker with access to the local st…	CWE-798 Use of Hard-coded Credentials	CVE-2019-16150	2024-11-21 13:30	2020-06-4	Show	GitHub Exploit DB Packet Storm

222559	8.8	HIGH Network	tylertech	eagle	TylerTech Eagle 2018.3.11 deserializes untrusted user input, resulting in remote code execution via a crafted Java object to the recorder/ServiceManager?service=tyler.empire.settings.SettingManager U…	CWE-502 Deserialization of Untrusted Data	CVE-2019-16112	2024-11-21 13:30	2020-05-14	Show	GitHub Exploit DB Packet Storm

222560	8.8	HIGH Network	geniusbytes	genius_server	An application plugin in Genius Bytes Genius Server (Genius CDDS) 3.2.2 allows remote authenticated users to gain admin privileges.	NVD-CWE-noinfo	CVE-2019-16653	2024-11-21 13:30	2020-04-29	Show	GitHub Exploit DB Packet Storm