Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252931	7.5	危険	FamilyCMS	-	Family Connections Who is Chatting における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2010-4988	2011-12-9 14:33	2011-11-1	Show	GitHub Exploit DB Packet Storm

252932	7.5	危険	Farsi CMS	-	Ziggurat Farsi CMS の main.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4989	2011-12-9 14:28	2011-11-1	Show	GitHub Exploit DB Packet Storm

252933	7.5	危険	B-Elektro	-	Joomla! 用 Front-edit Address Book コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4990	2011-12-9 14:28	2011-11-1	Show	GitHub Exploit DB Packet Storm

252934	7.5	危険	Ninja Forge	-	Joomla! 用 NinjaMonials コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4991	2011-12-9 14:27	2011-11-1	Show	GitHub Exploit DB Packet Storm

252935	7.5	危険	Payments Plus	-	Joomla! 用 Payments Plus コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4992	2011-12-9 14:26	2011-11-1	Show	GitHub Exploit DB Packet Storm

252936	7.5	危険	Kay Messerschmidt	-	Joomla! 用 eventcal コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4993	2011-12-9 14:26	2011-11-1	Show	GitHub Exploit DB Packet Storm

252937	7.5	危険	Instant Php	-	Joomla! 用 Jobs Pro コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4994	2011-12-9 14:25	2011-11-1	Show	GitHub Exploit DB Packet Storm

252938	7.5	危険	NeoJoomla	-	Joomla! 用 NeoRecruit コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4995	2011-12-9 14:23	2011-11-1	Show	GitHub Exploit DB Packet Storm

252939	7.5	危険	esoftpro	-	esoftpro Online Guestbook Pro の ogp_show.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4996	2011-12-9 14:22	2011-11-1	Show	GitHub Exploit DB Packet Storm

252940	7.5	危険	esoftpro	-	esoftpro Online Photo Pro の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4999	2011-12-9 14:21	2011-11-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
225201	7.5	HIGH Network	microsoft	edge chakracore	A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. Th…	CWE-787 Out-of-bounds Write	CVE-2019-1217	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

225202	5.5	MEDIUM Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1	An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Information Disclosure Vulnerability'.	CWE-200 Information Exposure	CVE-2019-1216	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

225203	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_server_2019 windows_7 windows_rt_8.1	An elevation of privilege vulnerability exists in the way that ws2ifsl.sys (Winsock) handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019…	NVD-CWE-noinfo	CVE-2019-1215	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

225204	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Priv…	NVD-CWE-noinfo	CVE-2019-1214	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

225205	6.5	MEDIUM Network	microsoft	lync	An information disclosure vulnerability exists in Lync 2013, aka 'Lync 2013 Information Disclosure Vulnerability'.	CWE-200 Information Exposure	CVE-2019-1209	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

225206	7.5	HIGH Network	microsoft	internet_explorer	A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-123…	CWE-416 Use After Free	CVE-2019-1208	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

225207	5.5	MEDIUM Local	microsoft	.net_framework	An elevation of privilege vulnerability exists when the .NET Framework common language runtime (CLR) allows file creation in arbitrary locations, aka '.NET Framework Elevation of Privilege Vulnerabil…	CWE-22 Path Traversal	CVE-2019-1142	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

225208	7.5	HIGH Network	microsoft	edge chakracore	A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. Th…	CWE-787 Out-of-bounds Write	CVE-2019-1138	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

225209	3.7	LOW Network	openssl	openssl	In situations where an attacker receives automated notification of the success or failure of a decryption attempt an attacker, after sending a very large number of messages to be decrypted, can recov…	CWE-327 CWE-203 Use of a Broken or Risky Cryptographic Algorithm Information Exposure Through Discrepancy	CVE-2019-1563	2024-11-21 13:36	2019-09-11	Show	GitHub Exploit DB Packet Storm

225210	5.3	MEDIUM Network	openssl	openssl	OpenSSL 1.1.1 introduced a rewritten random number generator (RNG). This was intended to include protection in the event of a fork() system call in order to ensure that the parent and child processes…	CWE-330 Use of Insufficiently Random Values	CVE-2019-1549	2024-11-21 13:36	2019-09-11	Show	GitHub Exploit DB Packet Storm