Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":April 28, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253071 | 9.3 | 危険 | Mozilla Foundation | - | 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3980 | 2010-01-28 12:15 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 253072 | 10 | 危険 | アドビシステムズ | - | Adobe Flash Media Server におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2009-3792 | 2010-01-27 10:02 | 2009-12-18 | Show | GitHub Exploit DB Packet Storm |
| 253073 | 5 | 警告 | アドビシステムズ | - | Adobe Flash Media Server におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3791 | 2010-01-27 10:02 | 2009-12-18 | Show | GitHub Exploit DB Packet Storm |
| 253074 | 5.8 | 警告 | PostgreSQL.org ターボリナックス サン・マイクロシステムズ |
- | PostgreSQL における X.509 証明書の処理に関する任意の SSL-based PostgreSQL サーバになりすまされる脆弱性 |
CWE-310
暗号の問題 |
CVE-2009-4034 | 2010-01-26 11:48 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 253075 | 7.8 | 危険 | サイバートラスト株式会社 Linux レッドハット |
- | Linux kernel の do_insn_fetch 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-4031 | 2010-01-26 11:47 | 2009-11-29 | Show | GitHub Exploit DB Packet Storm |
| 253076 | 7.8 | 危険 | サイバートラスト株式会社 Linux レッドハット |
- | Linux Kernel の r8169 ドライバにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3613 | 2010-01-26 11:38 | 2009-10-19 | Show | GitHub Exploit DB Packet Storm |
| 253077 | 4.6 | 警告 | サイバートラスト株式会社 Linux レッドハット |
- | Linux kernel の NFSv4 における権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-3286 | 2010-01-26 11:38 | 2009-09-22 | Show | GitHub Exploit DB Packet Storm |
| 253078 | 4.9 | 警告 | サイバートラスト株式会社 Linux レッドハット |
- | Linux Kernel の d_delete 関数における任意のコードを実行される脆弱性 |
CWE-Other
その他 |
CVE-2009-2908 | 2010-01-26 11:38 | 2009-10-13 | Show | GitHub Exploit DB Packet Storm |
| 253079 | 7.2 | 危険 | サイバートラスト株式会社 Linux レッドハット |
- | Linux Kernel における権限昇格の脆弱性 |
CWE-119
バッファエラー |
CVE-2009-2695 | 2010-01-26 11:38 | 2009-08-28 | Show | GitHub Exploit DB Packet Storm |
| 253080 | 9.3 | 危険 | アップル サイバートラスト株式会社 サン・マイクロシステムズ レッドハット |
- | JDK および JRE の Sun Java SE にある Deployment Toolkit プラグインにおける任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3865 | 2010-01-26 11:37 | 2009-11-3 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 28, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 213061 | 6.5 |
MEDIUM
Network |
digium | asterisk | An Integer Signedness issue (for a return code) in the res_pjsip_sdp_rtp module in Digium Asterisk versions 15.7.1 and earlier and 16.1.1 and earlier allows remote authenticated users to crash Asteri… |
CWE-190
Integer Overflow or Wraparound |
CVE-2019-7251 | 2024-11-21 13:47 | 2019-03-29 | Show | GitHub Exploit DB Packet Storm |
| 213062 | 7.5 |
HIGH
Network |
z.cash | zcash | Zcash, before the Sapling network upgrade (2018-10-28), had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced ce… |
CWE-754
Improper Check for Unusual or Exceptional Conditions |
CVE-2019-7167 | 2024-11-21 13:47 | 2019-03-27 | Show | GitHub Exploit DB Packet Storm |
| 213063 | 6.1 |
MEDIUM
Network |
wpsupportplus | wp_support_plus_responsive_ticket_system | A stored cross-site scripting (XSS) vulnerability in the submit_ticket.php module in the WP Support Plus Responsive Ticket System plugin 9.1.1 for WordPress allows remote attackers to inject arbitrar… |
CWE-79
Cross-site Scripting |
CVE-2019-7299 | 2024-11-21 13:47 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 213064 | 5.4 |
MEDIUM
Network |
invoiceplane | invoiceplane | InvoicePlane 1.5 has stored XSS via the index.php/invoices/ajax/save invoice_password parameter, aka the "PDF password" field to the "Create Invoice" option. The XSS payload is rendered at an index.p… |
CWE-79
Cross-site Scripting |
CVE-2019-7223 | 2024-11-21 13:47 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 213065 | 5.5 |
MEDIUM
Local |
linux fedoraproject opensuse debian canonical netapp redhat |
linux_kernel fedora leap debian_linux ubuntu_linux element_software_management_node active_iq_performance_analytics_services enterprise_linux_desktop enterprise_linux_workstat… |
The KVM implementation in the Linux kernel through 4.20.5 has an Information Leak. |
NVD-CWE-noinfo
|
CVE-2019-7222 | 2024-11-21 13:47 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 213066 | 7.8 |
HIGH
Local |
linux opensuse fedoraproject debian canonical netapp redhat |
linux_kernel leap fedora debian_linux ubuntu_linux element_software_management_node active_iq_performance_analytics_services enterprise_linux_desktop enterprise_linux_workstat… |
The KVM implementation in the Linux kernel through 4.20.5 has a Use-after-Free. |
CWE-416
Use After Free |
CVE-2019-7221 | 2024-11-21 13:47 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 213067 | 7.5 |
HIGH
Network |
zohocorp | manageengine_adselfservice_plus | An issue was discovered in Zoho ManageEngine ADSelfService Plus 5.x through build 5704. It uses fixed ciphering keys to protect information, giving the capacity for an attacker to decipher any protec… |
CWE-798
Use of Hard-coded Credentials |
CVE-2019-7161 | 2024-11-21 13:47 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 213068 | 7.5 |
HIGH
Network |
genivia | gsoap | Sricam IP CCTV cameras are vulnerable to denial of service via multiple incomplete HTTP requests because the web server (based on gSOAP 2.8.x) is configured for an iterative queueing approach (aka no… |
NVD-CWE-noinfo
|
CVE-2019-6973 | 2024-11-21 13:47 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 213069 | 7.5 |
HIGH
Network |
moodle | moodle | Moodle 3.5.x before 3.5.4 allows SSRF. |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2019-6970 | 2024-11-21 13:47 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 213070 | 8.8 |
HIGH
Network |
airties | air_5341_firmware | AirTies Air5341 1.0.0.12 devices allow cgi-bin/login CSRF. |
CWE-352
Origin Validation Error |
CVE-2019-6967 | 2024-11-21 13:47 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |