Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 12, 2026, 4:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 255071 | 9.3 | 危険 | アドビシステムズ | - | Adobe Shockwave Player における任意のコードを実行される脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-4003 | 2010-02-16 11:44 | 2010-01-19 | Show | GitHub Exploit DB Packet Storm |
| 255072 | 9.3 | 危険 | アドビシステムズ | - | Adobe Shockwave Player における任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4002 | 2010-02-16 11:44 | 2010-01-19 | Show | GitHub Exploit DB Packet Storm |
| 255073 | 6.9 | 警告 | サイバートラスト株式会社 Linux レッドハット |
- | Linux kernel における競合状態の脆弱性 |
CWE-362
競合状態 |
CVE-2009-3547 | 2010-02-16 11:44 | 2009-11-3 | Show | GitHub Exploit DB Packet Storm |
| 255074 | 4.9 | 警告 | サイバートラスト株式会社 Linux レッドハット |
- | Linux kernel の netlink サブシステムにおける重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2005-4881 | 2010-02-16 11:43 | 2009-10-19 | Show | GitHub Exploit DB Packet Storm |
| 255075 | 4.7 | 警告 | サイバートラスト株式会社 Linux レッドハット |
- | Linux kernel の execve 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-2848 | 2010-02-16 11:43 | 2009-08-18 | Show | GitHub Exploit DB Packet Storm |
| 255076 | 4.9 | 警告 | サイバートラスト株式会社 Linux レッドハット |
- | Linux kernel の do_sigaltstack 関数における情報漏えいの脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-2847 | 2010-02-16 11:43 | 2009-08-18 | Show | GitHub Exploit DB Packet Storm |
| 255077 | 7.2 | 危険 | サイバートラスト株式会社 Linux レッドハット |
- | Linux kernel の personality サブシステムにおける NULL ポインタ参照の脆弱性 |
CWE-16
環境設定 |
CVE-2009-1895 | 2010-02-16 11:43 | 2009-07-16 | Show | GitHub Exploit DB Packet Storm |
| 255078 | 4.3 | 警告 | オラクル | - | BEA Product Suite の WebLogic Server コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0069 | 2010-02-15 19:32 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 255079 | 5 | 警告 | オラクル | - | BEA Product Suite の WebLogic Server コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0078 | 2010-02-15 19:32 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 255080 | 5 | 警告 | オラクル | - | BEA Product Suite の WebLogic Server コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0074 | 2010-02-15 19:32 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 12, 2026, 5:06 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 223841 | 5.3 |
MEDIUM
Network |
telegram | telegram | The Privacy > Phone Number feature in the Telegram app 5.10 for Android and iOS provides an incorrect indication that the access level is Nobody, because attackers can find these numbers via the Grou… |
NVD-CWE-noinfo
|
CVE-2019-15514 | 2024-11-21 13:28 | 2019-08-23 | Show | GitHub Exploit DB Packet Storm |
| 223842 | 9.8 |
CRITICAL
Network |
it-novum | openitcockpit | openITCOCKPIT before 3.7.1 allows SSRF, aka RVID 5-445b21. |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2019-15494 | 2024-11-21 13:28 | 2019-08-23 | Show | GitHub Exploit DB Packet Storm |
| 223843 | 7.5 |
HIGH
Network |
it-novum | openitcockpit | openITCOCKPIT before 3.7.1 allows deletion of files, aka RVID 4-445b21. |
NVD-CWE-noinfo
|
CVE-2019-15493 | 2024-11-21 13:28 | 2019-08-23 | Show | GitHub Exploit DB Packet Storm |
| 223844 | 6.1 |
MEDIUM
Network |
it-novum | openitcockpit | openITCOCKPIT before 3.7.1 has reflected XSS, aka RVID 3-445b21. |
CWE-79
Cross-site Scripting |
CVE-2019-15492 | 2024-11-21 13:28 | 2019-08-23 | Show | GitHub Exploit DB Packet Storm |
| 223845 | 8.8 |
HIGH
Network |
it-novum | openitcockpit | openITCOCKPIT before 3.7.1 has CSRF, aka RVID 2-445b21. |
CWE-352
Origin Validation Error |
CVE-2019-15491 | 2024-11-21 13:28 | 2019-08-23 | Show | GitHub Exploit DB Packet Storm |
| 223846 | 9.8 |
CRITICAL
Network |
it-novum | openitcockpit | openITCOCKPIT before 3.7.1 allows code injection, aka RVID 1-445b21. |
CWE-78
OS Command |
CVE-2019-15490 | 2024-11-21 13:28 | 2019-08-23 | Show | GitHub Exploit DB Packet Storm |
| 223847 | 6.1 |
MEDIUM
Network |
igniterealtime | openfire | Ignite Realtime Openfire before 4.4.1 has reflected XSS via an LDAP setup test. |
CWE-79
Cross-site Scripting |
CVE-2019-15488 | 2024-11-21 13:28 | 2019-08-23 | Show | GitHub Exploit DB Packet Storm |
| 223848 | 6.1 |
MEDIUM
Network |
schoolexperience | department_for_education_school_experience | DfE School Experience before v16333-GA has XSS via a teacher training URL. |
CWE-79
Cross-site Scripting |
CVE-2019-15487 | 2024-11-21 13:28 | 2019-08-23 | Show | GitHub Exploit DB Packet Storm |
| 223849 | 6.1 |
MEDIUM
Network |
django_js_reverse_project | django_js_reserve | django-js-reverse (aka Django JS Reverse) before 0.9.1 has XSS via js_reverse_inline. |
CWE-79
Cross-site Scripting |
CVE-2019-15486 | 2024-11-21 13:28 | 2019-08-23 | Show | GitHub Exploit DB Packet Storm |
| 223850 | 6.1 |
MEDIUM
Network |
boltcms | bolt | Bolt before 3.6.10 has XSS via createFolder or createFile in Controller/Async/FilesystemManager.php. |
CWE-79
Cross-site Scripting |
CVE-2019-15485 | 2024-11-21 13:28 | 2019-08-23 | Show | GitHub Exploit DB Packet Storm |