Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253301 7.5 危険 Automattic Inc. - WordPress 用 Jetpack プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4673 2011-12-6 16:26 2011-12-2 Show GitHub Exploit DB Packet Storm
253302 7.5 危険 Valid - Valid tiny-erp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4672 2011-12-6 16:25 2011-12-2 Show GitHub Exploit DB Packet Storm
253303 7.5 危険 AdRotate Plugin - WordPress 用 AdRotate プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4671 2011-12-6 16:24 2011-12-2 Show GitHub Exploit DB Packet Storm
253304 10 危険 Iron Mountain - Iron Mountain Connected Backup の Agent service における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2397 2011-12-6 16:22 2011-12-5 Show GitHub Exploit DB Packet Storm
253305 6.4 警告 Widelands - Widelands の io/filesystem/filesystem.cc におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-1932 2011-12-6 16:22 2011-12-5 Show GitHub Exploit DB Packet Storm
253306 4.3 警告 Etomite Project - Etomite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4264 2011-12-6 12:01 2011-12-6 Show GitHub Exploit DB Packet Storm
253307 7.5 危険 jonkemp - WordPress 用 WordPress Users プラグインの wp-users.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4669 2011-12-5 16:08 2011-12-2 Show GitHub Exploit DB Packet Storm
253308 7.5 危険 IBM - IBM Tivoli Netcool/Reporter における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4668 2011-12-5 16:07 2011-12-2 Show GitHub Exploit DB Packet Storm
253309 5 警告 Schneider Electric - Schneider Electric の複数の製品におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4036 2011-12-5 16:06 2011-10-24 Show GitHub Exploit DB Packet Storm
253310 4.3 警告 Schneider Electric - Schneider Electric の複数の製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4035 2011-12-5 16:05 2011-10-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219701 7.5 HIGH
Network 		w1.fi
fedoraproject 		hostapd
wpa_supplicant
fedora 		An invalid authentication sequence could result in the hostapd process terminating due to missing state validation steps when processing the SAE confirm message when in hostapd/AP mode. All version o… CWE-287
Improper Authentication 		CVE-2019-9496 2024-11-21 13:51 2019-04-17 Show GitHub Exploit DB Packet Storm
219702 3.7 LOW
Network 		w1.fi
fedoraproject
opensuse
debian
synology
freebsd 		hostapd
wpa_supplicant
fedora
leap
backports_sle
debian_linux
radius_server
router_manager
freebsd 		The implementations of EAP-PWD in hostapd and wpa_supplicant are vulnerable to side-channel attacks as a result of cache access patterns. All versions of hostapd and wpa_supplicant with EAP-PWD suppo… CWE-203
 Information Exposure Through Discrepancy 		CVE-2019-9495 2024-11-21 13:51 2019-04-17 Show GitHub Exploit DB Packet Storm
219703 5.9 MEDIUM
Network 		w1.fi
fedoraproject
opensuse
synology
freebsd 		hostapd
wpa_supplicant
fedora
leap
backports_sle
radius_server
router_manager
freebsd 		The implementations of SAE in hostapd and wpa_supplicant are vulnerable to side channel attacks as a result of observable timing differences and cache access patterns. An attacker may be able to gain… CWE-203
 Information Exposure Through Discrepancy 		CVE-2019-9494 2024-11-21 13:51 2019-04-17 Show GitHub Exploit DB Packet Storm
219704 9.8 CRITICAL
Network 		solideos architectural_information_system Architectural Information System 1.0 and earlier versions have a Stack-based buffer overflow, allows remote attackers to execute arbitrary code. CWE-787
 Out-of-bounds Write 		CVE-2019-9134 2024-11-21 13:51 2019-04-10 Show GitHub Exploit DB Packet Storm
219705 5.5 MEDIUM
Local 		kmplayer
fedoraproject 		kmplayer
fedora 		When processing subtitles format media file, KMPlayer version 2018.12.24.14 or lower doesn't check object size correctly, which leads to integer underflow then to memory out-of-bound read/write. An a… CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2019-9133 2024-11-21 13:51 2019-04-10 Show GitHub Exploit DB Packet Storm
219706 8.8 HIGH
Network 		trendmicro interscan_web_security_virtual_appliance A vulnerability in Trend Micro InterScan Web Security Virtual Appliance version 6.5 SP2 could allow an non-authorized user to disclose administrative credentials. An attacker must be an authenticated… NVD-CWE-noinfo
CVE-2019-9490 2024-11-21 13:51 2019-04-6 Show GitHub Exploit DB Packet Storm
219707 7.5 HIGH
Network 		trendmicro apex_one
apex_one_as_a_service
business_security
officescan
worry-free_business_security 		A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (versions XG and 11.0), and Worry-Free Business Security (versions 10.0, 9.5 and 9.0) could allow an attacker to modify arbitra… CWE-22
Path Traversal 		CVE-2019-9489 2024-11-21 13:51 2019-04-6 Show GitHub Exploit DB Packet Storm
219708 7.2 HIGH
Network 		postgresql postgresql In PostgreSQL 9.3 through 11.2, the "COPY TO/FROM PROGRAM" function allows superusers and users in the 'pg_execute_server_program' group to execute arbitrary code in the context of the database's ope… CWE-78
OS Command  		CVE-2019-9193 2024-11-21 13:51 2019-04-2 Show GitHub Exploit DB Packet Storm
219709 8.8 HIGH
Network 		kakaocorp kakaotalk Remote code execution vulnerability exists in KaKaoTalk PC messenger when user clicks specially crafted link in the message window. This affects KaKaoTalk windows version 2.7.5.2024 or lower. NVD-CWE-noinfo
CVE-2019-9132 2024-11-21 13:51 2019-04-2 Show GitHub Exploit DB Packet Storm
219710 5.4 MEDIUM
Network 		online_lottery_php_readymade_script_project online_lottery_php_readymade_script PHP Scripts Mall Online Lottery PHP Readymade Script 1.7.0 has Reflected Cross-site Scripting (XSS) via the err value in a .ico picture upload. CWE-79
Cross-site Scripting 		CVE-2019-9605 2024-11-21 13:51 2019-03-29 Show GitHub Exploit DB Packet Storm