Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256311 9.3 危険 マイクロソフト - 複数の Microsoft 製品におけるセルに含まれる計算式の処理に関する任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3131 2010-01-5 16:17 2009-11-10 Show GitHub Exploit DB Packet Storm
256312 9.3 危険 マイクロソフト - Microsoft Office Excel における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3128 2010-01-5 16:17 2009-11-10 Show GitHub Exploit DB Packet Storm
256313 9.3 危険 マイクロソフト - Microsoft Office および Open XML File Format Converter における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3127 2010-01-5 16:16 2009-11-10 Show GitHub Exploit DB Packet Storm
256314 6.8 警告 アップル
サイバートラスト株式会社
サン・マイクロシステムズ
ターボリナックス
ヒューレット・パッカード
OpenSSL Project
レッドハット		 - OpenSSL の SSL_get_shared_ciphers() 関数における一つずれエラーの脆弱性 CWE-189
数値処理の問題 		CVE-2007-5135 2010-01-5 13:31 2007-10-12 Show GitHub Exploit DB Packet Storm
256315 7.8 危険 マイクロソフト - Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1928 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
256316 9.3 危険 マイクロソフト - Microsoft Windows の kernel における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2514 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
256317 6.8 警告 マイクロソフト - Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2513 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
256318 6.8 警告 マイクロソフト - Microsoft Windows の kernel における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1127 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
256319 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
256320 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314411 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Let probe fail when workqueue cannot be enabled The workqueue is enabled when the appropriate driver is loaded a… CWE-476
 NULL Pointer Dereference 		CVE-2022-48868 2024-09-5 03:38 2024-08-21 Show GitHub Exploit DB Packet Storm
314412 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: sdata can be NULL during AMPDU start ieee80211_tx_ba_session_handle_start() may get NULL for sdata when a deauthe… CWE-476
 NULL Pointer Dereference 		CVE-2022-48875 2024-09-5 03:33 2024-08-21 Show GitHub Exploit DB Packet Storm
314413 7.5 HIGH
Network 		avtecinc outpost_uploader_utility
outpost_0810_firmware 		Avtec Outpost stores sensitive information in an insecure location without proper access controls in place. CWE-219
 Storage of File with Sensitive Data Under Web Root 		CVE-2024-39776 2024-09-5 03:25 2024-08-23 Show GitHub Exploit DB Packet Storm
314414 7.5 HIGH
Network 		avtecinc outpost_uploader_utility
outpost_0810_firmware 		Avtec Outpost uses a default cryptographic key that can be used to decrypt sensitive information. CWE-321
 Use of Hard-coded Cryptographic Key 		CVE-2024-42418 2024-09-5 03:22 2024-08-23 Show GitHub Exploit DB Packet Storm
314415 9.8 CRITICAL
Network 		angeljudesuarez e-commerce_website A vulnerability has been found in itsourcecode E-Commerce Website 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file search_list.php. The manipulat… CWE-89
SQL Injection 		CVE-2024-8139 2024-09-5 03:02 2024-08-25 Show GitHub Exploit DB Packet Storm
314416 8.1 HIGH
Network 		progress ws_ftp_server In WS_FTP Server versions before 8.8.8 (2022.0.8), a Missing Critical Step in Multi-Factor Authentication of the Web Transfer Module allows users to skip the second-factor verification and log in wit… CWE-287
Improper Authentication 		CVE-2024-7745 2024-09-5 02:57 2024-08-29 Show GitHub Exploit DB Packet Storm
314417 6.5 MEDIUM
Network 		progress ws_ftp_server In WS_FTP Server versions before 8.8.8 (2022.0.8), an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the Web Transfer Module allows File Discovery, Pr… CWE-22
Path Traversal 		CVE-2024-7744 2024-09-5 02:57 2024-08-29 Show GitHub Exploit DB Packet Storm
314418 5.4 MEDIUM
Network 		mattermost mattermost_server Mattermost versions 9.9.x <= 9.9.0, 9.5.x <= 9.5.6 fail to properly restrict channel creation which allows a malicious remote to create arbitrary channels, when shared channels were enabled. NVD-CWE-noinfo
CVE-2024-39837 2024-09-5 02:38 2024-08-2 Show GitHub Exploit DB Packet Storm
314419 8.8 HIGH
Network 		easytest_online_test_platform_project easytest_online_test_platform SQL Injection in online dictionary function of Easytest Online Test Platform ver.24E01 and earlier allow remote authenticated users to execute arbitrary SQL commands via the word parameter. CWE-89
SQL Injection 		CVE-2024-7871 2024-09-5 02:34 2024-09-2 Show GitHub Exploit DB Packet Storm
314420 4.3 MEDIUM
Network 		mattermost mattermost_server Mattermost versions 9.9.x <= 9.9.0, 9.5.x <= 9.5.6, 9.7.x <= 9.7.5, 9.8.x <= 9.8.1 fail to disallow users to set their own remote username, when shared channels were enabled, which allows a user on a… NVD-CWE-noinfo
CVE-2024-39839 2024-09-5 02:34 2024-08-2 Show GitHub Exploit DB Packet Storm