Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":April 28, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253081 | 4.9 | 警告 | サイバートラスト株式会社 Linux レッドハット |
- | Linux kernel の tc_fill_tclass 関数における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2009-3228 | 2010-01-26 11:37 | 2009-10-19 | Show | GitHub Exploit DB Packet Storm |
| 253082 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の Indeo32 コーデックの ir32_32.dll におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4313 | 2010-01-25 11:53 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253083 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の Indeo コーデックにおける任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-4312 | 2010-01-25 11:52 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253084 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の Indeo コーデックにおける任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-4311 | 2010-01-25 11:52 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253085 | 9.3 | 危険 | マイクロソフト | - | Indeo コーデックに複数の脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4310 | 2010-01-25 11:52 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 253086 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の Windows Media Player 用の Intel Indeo41 コーデックにおけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4309 | 2010-01-25 11:51 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253087 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の Indeo コーデックにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-4210 | 2010-01-25 11:51 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253088 | 5 | 警告 | アップル サイバートラスト株式会社 IPsec-Tools レッドハット |
- | Ipsec-tools の証明書検証および NAT-Traversal におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-1632 | 2010-01-25 11:48 | 2009-05-14 | Show | GitHub Exploit DB Packet Storm |
| 253089 | 4 | 警告 | PostgreSQL.org サイバートラスト株式会社 ターボリナックス サン・マイクロシステムズ レッドハット |
- | PostgreSQL のエラーメッセージの変換処理に関するサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-0922 | 2010-01-25 11:48 | 2009-03-17 | Show | GitHub Exploit DB Packet Storm |
| 253090 | 5.7 | 警告 | 日本電気 インターネットイニシアティブ ヤマハ 古河電気工業 |
- | IPv6 を実装した複数の製品にサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
- | 2010-01-25 11:47 | 2009-10-26 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 29, 2026, 4:51 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 211031 | 6.1 |
MEDIUM
Network |
upcoming_events_project | upcoming_events | An XSS issue was discovered in upcoming_events.php in the Upcoming Events plugin before 1.33 for MyBB via a crafted name for an event. |
CWE-79
Cross-site Scripting |
CVE-2019-9650 | 2024-11-21 13:52 | 2019-03-11 | Show | GitHub Exploit DB Packet Storm |
| 211032 | 6.1 |
MEDIUM
Network |
codepeople | contact_form_email | The Contact Form Email plugin before 1.2.66 for WordPress allows wp-admin/admin.php item XSS, related to cp_admin_int_edition.inc.php in the "custom edition area." |
CWE-79
Cross-site Scripting |
CVE-2019-9646 | 2024-11-21 13:52 | 2019-03-11 | Show | GitHub Exploit DB Packet Storm |
| 211033 | 9.8 |
CRITICAL
Network |
php debian canonical opensuse netapp |
php debian_linux ubuntu_linux leap storage_automation_store |
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_TIFF. |
CWE-908
Use of Uninitialized Resource |
CVE-2019-9641 | 2024-11-21 13:52 | 2019-03-9 | Show | GitHub Exploit DB Packet Storm |
| 211034 | 7.5 |
HIGH
Network |
php canonical debian opensuse netapp redhat |
php ubuntu_linux debian_linux leap storage_automation_store software_collections |
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an Invalid Read in exif_process_SOFn. |
CWE-125
Out-of-bounds Read |
CVE-2019-9640 | 2024-11-21 13:52 | 2019-03-9 | Show | GitHub Exploit DB Packet Storm |
| 211035 | 7.5 |
HIGH
Network |
php debian canonical opensuse netapp redhat |
php debian_linux ubuntu_linux leap storage_automation_store software_collections |
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling… |
CWE-908 CWE-909 Use of Uninitialized Resource Missing Initialization of Resource |
CVE-2019-9639 | 2024-11-21 13:52 | 2019-03-9 | Show | GitHub Exploit DB Packet Storm |
| 211036 | 7.5 |
HIGH
Network |
php debian canonical opensuse netapp redhat |
php debian_linux ubuntu_linux leap storage_automation_store software_collections |
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling… |
CWE-125
Out-of-bounds Read |
CVE-2019-9638 | 2024-11-21 13:52 | 2019-03-9 | Show | GitHub Exploit DB Packet Storm |
| 211037 | 7.5 |
HIGH
Network |
php debian canonical opensuse netapp |
php debian_linux ubuntu_linux leap storage_automation_store |
An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. Due to the way rename() across filesystems is implemented, it is possible that file being renamed is briefly… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2019-9637 | 2024-11-21 13:52 | 2019-03-9 | Show | GitHub Exploit DB Packet Storm |
| 211038 | 9.8 |
CRITICAL
Network |
python fedoraproject opensuse debian canonical redhat oracle |
python fedora leap debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_aus enterprise_linux e… |
Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding (with an incorrect netloc) during NFKC normalization. The impact is: Information disclosure (cr… |
NVD-CWE-noinfo
|
CVE-2019-9636 | 2024-11-21 13:52 | 2019-03-9 | Show | GitHub Exploit DB Packet Storm |
| 211039 | 7.8 |
HIGH
Local |
golang | go | Go through 1.12 on Windows misuses certain LoadLibrary functionality, leading to DLL injection. |
CWE-427
Uncontrolled Search Path Element |
CVE-2019-9634 | 2024-11-21 13:52 | 2019-03-9 | Show | GitHub Exploit DB Packet Storm |
| 211040 | 6.5 |
MEDIUM
Network |
gnome | glib | gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent GTask remains alive during the execution of a connection-attempting enumeration, which allows remote attackers to cause a denial… |
CWE-754
Improper Check for Unusual or Exceptional Conditions |
CVE-2019-9633 | 2024-11-21 13:52 | 2019-03-8 | Show | GitHub Exploit DB Packet Storm |