Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
214981 6.5 警告 X.Org Foundation - X.Org X11 の xorg-server モジュールの dix/dixfonts.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-4396 2014-04-7 17:35 2013-10-8 Show GitHub Exploit DB Packet Storm
214982 2.6 注意 Quagga - Quagga の OSPFD API の new_msg_lsa_change_notify 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-2236 2014-04-7 17:34 2013-07-28 Show GitHub Exploit DB Packet Storm
214983 5 警告 Apache Software Foundation - Apache HTTP Server 用 mod_fcgid モジュールにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4365 2014-04-7 17:33 2013-09-29 Show GitHub Exploit DB Packet Storm
214984 2.6 注意 Apache Software Foundation - Apache Subversion 用 mod_dontdothat の is_this_legal 関数におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4505 2014-04-7 17:32 2013-11-25 Show GitHub Exploit DB Packet Storm
214985 1.8 注意 Memcached - Memcached におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-7291 2014-04-7 17:23 2013-12-20 Show GitHub Exploit DB Packet Storm
214986 1.8 注意 Memcached - Memcached の items.c の do_item_get 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-7290 2014-04-7 17:21 2013-12-20 Show GitHub Exploit DB Packet Storm
214987 4.8 警告 Memcached - Memcached における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2013-7239 2014-04-7 17:20 2013-12-20 Show GitHub Exploit DB Packet Storm
214988 5 警告 The PHP Group
アップル		 - PHP の SOAP パーサにおける任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2013-1643 2014-04-7 17:18 2013-02-21 Show GitHub Exploit DB Packet Storm
214989 7.5 危険 The PHP Group
アップル		 - PHP の ext/soap/soap.c におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1635 2014-04-7 17:17 2013-02-21 Show GitHub Exploit DB Packet Storm
214990 5.8 警告 シーメンス - Siemens SIMATIC S7-1500 CPU PLC デバイスのファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-2249 2014-04-7 17:05 2014-03-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289091 - microsoft windows_nt Windows NT searches a user's home directory (%systemroot% by default) before other directories to find critical programs such as NDDEAGNT.EXE, EXPLORER.EXE, USERINIT.EXE or TASKMGR.EXE, which could a… NVD-CWE-Other
CVE-1999-1365 2017-10-26 10:29 1999-06-28 Show GitHub Exploit DB Packet Storm
289092 - apache http_server Apache HTTP Server 1.3.22 through 1.3.27 on OpenBSD allows remote attackers to obtain sensitive information via (1) the ETag header, which reveals the inode number, or (2) multipart MIME boundary, wh… CWE-200
Information Exposure 		CVE-2003-1418 2017-10-20 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
289093 - phpauctions phpauctions SQL injection vulnerability in profile.php in PHPAuctions (aka PHPAuctionSystem) allows remote attackers to execute arbitrary SQL commands via the user_id parameter. CWE-89
SQL Injection 		CVE-2009-0106 2017-10-19 10:30 2009-01-10 Show GitHub Exploit DB Packet Storm
289094 - phpauctions phpauctions Cross-site scripting (XSS) vulnerability in profile.php in PHPAuctions (aka PHPAuctionSystem) allows remote attackers to inject arbitrary web script or HTML via the user_id parameter. CWE-79
Cross-site Scripting 		CVE-2009-0107 2017-10-19 10:30 2009-01-10 Show GitHub Exploit DB Packet Storm
289095 - vmware ace
fusion
server
vmware_player
vmware_workstation 		vmwarebase.dll, as used in the vmware-authd service (aka vmware-authd.exe), in VMware Workstation 6.5.1 build 126130, 6.5.1 and earlier; VMware Player 2.5.1 build 126130, 2.5.1 and earlier; VMware AC… CWE-399
 Resource Management Errors 		CVE-2009-0177 2017-10-19 10:30 2009-01-21 Show GitHub Exploit DB Packet Storm
289096 - trilogic media_player Stack-based buffer overflow in Triologic Media Player 7 and 8.0.0.0 allows user-assisted remote attackers to execute arbitrary code via a long string in a .m3u playlist file. NOTE: some of these det… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-0262 2017-10-19 10:30 2009-01-24 Show GitHub Exploit DB Packet Storm
289097 - nullsoft winamp Multiple buffer overflows in Winamp 5.541 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a large Common Chunk (COMM) header value in an AI… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-0263 2017-10-19 10:30 2009-01-24 Show GitHub Exploit DB Packet Storm
289098 - joomla com_waticketsystem SQL injection vulnerability in the WebAmoeba (WA) Ticket System (com_waticketsystem) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a categ… CWE-89
SQL Injection 		CVE-2009-0333 2017-10-19 10:30 2009-01-30 Show GitHub Exploit DB Packet Storm
289099 - dmxready classified_listings_manager SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Classified Listings Manager 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid … CWE-89
SQL Injection 		CVE-2009-0426 2017-10-19 10:30 2009-02-5 Show GitHub Exploit DB Packet Storm
289100 - dmxready member_directory_manager SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Member Directory Manager 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid par… CWE-89
SQL Injection 		CVE-2009-0427 2017-10-19 10:30 2009-02-5 Show GitHub Exploit DB Packet Storm