Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255291 4.3 警告 シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン) - APC Network Management Card におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1798 2010-03-12 15:13 2009-12-28 Show GitHub Exploit DB Packet Storm
255292 6.8 警告 シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン) - APC Network Management Card におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-1797 2010-03-12 15:12 2009-12-28 Show GitHub Exploit DB Packet Storm
255293 6.6 警告 日立 - JP1/Cm2/Network Node Manager のリモートコンソールにおけるファイルパーミッションの脆弱性 CWE-264
認可・権限・アクセス制御 		- 2010-03-12 15:12 2010-02-26 Show GitHub Exploit DB Packet Storm
255294 9.3 危険 Panda Security - Panda Security ActiveScan におけるコンポーネントのデジタル署名を検証しない問題 CWE-94
コード・インジェクション 		CVE-2009-3735 2010-03-12 15:12 2010-02-12 Show GitHub Exploit DB Packet Storm
255295 5 警告 サイバートラスト株式会社
OpenSSL Project
IBM
レッドハット		 - OpenSSL の dtls1_retrieve_buffered_fragment 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1379 2010-03-12 14:44 2009-05-19 Show GitHub Exploit DB Packet Storm
255296 5 警告 サイバートラスト株式会社
OpenSSL Project
IBM
レッドハット		 - OpenSSL の dtls1_process_out_of_seq_message 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1378 2010-03-12 14:44 2009-05-19 Show GitHub Exploit DB Packet Storm
255297 5 警告 サイバートラスト株式会社
OpenSSL Project
IBM
レッドハット		 - OpenSSL の dtls1_buffer_record 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-1377 2010-03-12 14:43 2009-05-19 Show GitHub Exploit DB Packet Storm
255298 5 警告 アップル
サイバートラスト株式会社
OpenSSL Project
Apache Software Foundation
レッドハット		 - OpenSSL の zlib_stateful_init 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-1678 2010-03-12 14:43 2008-07-10 Show GitHub Exploit DB Packet Storm
255299 5.8 警告 OpenPNEプロジェクト - OpenPNE におけるアクセス制限回避の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1040 2010-03-11 12:39 2010-03-5 Show GitHub Exploit DB Packet Storm
255300 10 危険 アドビシステムズ - Adobe Download Manager における任意のプログラムをダウンロードおよびインストールされる脆弱性 CWE-noinfo
情報不足 		CVE-2010-0189 2010-03-11 12:07 2010-02-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214801 6.8 MEDIUM
Physics 		symantec norton_core_firmware Norton Core prior to v278 may be susceptible to an arbitrary code execution issue, which is a type of vulnerability that has the potential of allowing an individual to execute arbitrary commands or c… NVD-CWE-noinfo
CVE-2019-9695 2024-11-21 13:52 2019-03-29 Show GitHub Exploit DB Packet Storm
214802 6.5 MEDIUM
Network 		amazon_affiliate_store_project amazon_affiliate_store PHP Scripts Mall Amazon Affiliate Store 2.1.6 allows Parameter Tampering of the payment amount. NVD-CWE-noinfo
CVE-2019-9864 2024-11-21 13:52 2019-03-29 Show GitHub Exploit DB Packet Storm
214803 9.8 CRITICAL
Network 		abus secvest_wireless_alarm_system_fuaa50000_firmware
secvest_wireless_remote_control_fube50014_firmware
secvest_wireless_remote_control_fube50015_firmware 		Due to the use of an insecure algorithm for rolling codes in the ABUS Secvest wireless alarm system FUAA50000 3.01.01 and its remote controls FUBE50014 and FUBE50015, an attacker is able to predict v… CWE-330
 Use of Insufficiently Random Values 		CVE-2019-9863 2024-11-21 13:52 2019-03-27 Show GitHub Exploit DB Packet Storm
214804 6.5 MEDIUM
Adjacent 		abus secvest_wireless_alarm_system_fuaa50000_firmware
secvest_wireless_remote_control_fube50014_firmware
secvest_wireless_remote_control_fube50015_firmware 		An issue was discovered on ABUS Secvest wireless alarm system FUAA50000 3.01.01 in conjunction with Secvest remote control FUBE50014 or FUBE50015. Because "encrypted signal transmission" is missing, … CWE-311
Missing Encryption of Sensitive Data 		CVE-2019-9862 2024-11-21 13:52 2019-03-27 Show GitHub Exploit DB Packet Storm
214805 7.5 HIGH
Network 		abus secvest_wireless_alarm_system_fuaa50000_firmware
secvest_wireless_remote_control_fube50014_firmware
secvest_wireless_remote_control_fube50015_firmware 		Due to unencrypted signal communication and predictability of rolling codes, an attacker can "desynchronize" an ABUS Secvest wireless remote control (FUBE50014 or FUBE50015) relative to its controlle… CWE-330
CWE-319
 Use of Insufficiently Random Values
Cleartext Transmission of Sensitive Information 		CVE-2019-9860 2024-11-21 13:52 2019-03-28 Show GitHub Exploit DB Packet Storm
214806 6.5 MEDIUM
Network 		znc
canonical
fedoraproject 		znc
ubuntu_linux
fedora 		ZNC before 1.7.3-rc1 allows an existing remote user to cause a Denial of Service (crash) via invalid encoding. CWE-20
 Improper Input Validation  		CVE-2019-9917 2024-11-21 13:52 2019-03-27 Show GitHub Exploit DB Packet Storm
214807 8.8 HIGH
Network 		phoenixcontact fl_nat_smn_8tx-m-dmg_firmware
fl_nat_smn_8tx-m_firmware
fl_nat_smn_8tx_firmware
fl_nat_smcs_8tx_firmware 		An issue was discovered on PHOENIX CONTACT FL NAT SMCS 8TX, FL NAT SMN 8TX, FL NAT SMN 8TX-M, and FL NAT SMN 8TX-M-DMG devices. There is unauthorized access to the WEB-UI by attackers arriving from t… CWE-384
 Session Fixation 		CVE-2019-9744 2024-11-21 13:52 2019-03-27 Show GitHub Exploit DB Packet Storm
214808 8.8 HIGH
Network 		phoenixcontact rad-80211-xd\/hp-bus_firmware
rad-80211-xd_firmware 		An issue was discovered on PHOENIX CONTACT RAD-80211-XD and RAD-80211-XD/HP-BUS devices. Command injection can occur in the WebHMI component. CWE-77
Command Injection 		CVE-2019-9743 2024-11-21 13:52 2019-03-27 Show GitHub Exploit DB Packet Storm
214809 6.1 MEDIUM
Network 		wikindx_project wikindx A cross-site scripting (XSS) vulnerability in ressource view in core/modules/resource/RESOURCEVIEW.php in Wikindx prior to version 5.7.0 allows remote attackers to inject arbitrary web script or HTML… CWE-79
Cross-site Scripting 		CVE-2019-9961 2024-11-21 13:52 2019-03-27 Show GitHub Exploit DB Packet Storm
214810 7.4 HIGH
Network 		hashicorp consul HashiCorp Consul 1.4.3 lacks server hostname verification for agent-to-agent TLS communication. In other words, the product behaves as if verify_server_hostname were set to false, even when it is act… CWE-346
 Origin Validation Error 		CVE-2019-9764 2024-11-21 13:52 2019-03-26 Show GitHub Exploit DB Packet Storm