Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
221581	7.5	危険	PHPBridges Dev Team	-	PHPBridges の members.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-6525	2013-02-1 16:00	2013-01-31	Show	GitHub Exploit DB Packet Storm

221582	7.5	危険	Powie	-	pGB の kommentar.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-6524	2013-02-1 15:59	2013-01-31	Show	GitHub Exploit DB Packet Storm

221583	7.5	危険	Cornerstone Technologies	-	Cornerstone Technologies webConductor の default.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5287	2013-02-1 15:58	2013-01-31	Show	GitHub Exploit DB Packet Storm

221584	5	警告	w-CMS	-	w-CMS の codes/wcms.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-6522	2013-02-1 15:57	2013-01-31	Show	GitHub Exploit DB Packet Storm

221585	4.3	警告	X3CMS	-	X3 CMS の admin/login におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5255	2013-02-1 15:48	2011-11-21	Show	GitHub Exploit DB Packet Storm

221586	4.3	警告	w-CMS	-	w-CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6523	2013-02-1 15:47	2013-01-31	Show	GitHub Exploit DB Packet Storm

221587	7.5	危険	ICU project アップル	-	ICU の common/uloc.c 内の _canonicalize 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4599	2013-01-31 16:00	2012-06-21	Show	GitHub Exploit DB Packet Storm

221588	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3589	2013-01-31 15:03	2012-07-25	Show	GitHub Exploit DB Packet Storm

221589	2.6	注意	株式会社ウェザーニューズ	-	Android 版ウェザーニュースタッチにおいて位置情報をログに出力する脆弱性	CWE-200 情報漏えい	CVE-2012-5187	2013-01-31 12:00	2013-01-31	Show	GitHub Exploit DB Packet Storm

221590	6.8	警告	アップルサイバートラスト株式会社 LibTIFF レッドハット	-	LibTIFF の Thunder デコーダにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1167	2013-01-31 10:10	2011-03-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
272291	-	wireshark	wireshark	The DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 through 1.2.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a file tha…	NVD-CWE-noinfo	CVE-2009-3550	2023-11-7 11:04	2009-10-31	Show	GitHub Exploit DB Packet Storm

272292	-	poppler	poppler	Integer overflow in the create_surface_from_thumbnail_data function in glib/poppler-page.cc in Poppler 0.x allows remote attackers to cause a denial of service (memory corruption) or possibly execute…	CWE-189 Numeric Errors	CVE-2009-3607	2023-11-7 11:04	2009-10-22	Show	GitHub Exploit DB Packet Storm

272293	-	poppler foolabs glyphandcog	poppler xpdf xpdfreader	Integer overflow in the SplashBitmap::SplashBitmap function in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1 might allow remote attackers to execute arbitrary code via a crafted PDF document that…	CWE-189 Numeric Errors	CVE-2009-3603	2023-11-7 11:04	2009-10-22	Show	GitHub Exploit DB Packet Storm

272294	-	tatsuhiro_tsujikawa	aria2	Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cau…	CWE-134 Use of Externally-Controlled Format String	CVE-2009-3617	2023-11-7 11:04	2009-10-21	Show	GitHub Exploit DB Packet Storm

272295	-	linux suse opensuse canonical fedoraproject	linux_kernel linux_enterprise_server opensuse linux_enterprise_desktop linux_enterprise_software_development_kit ubuntu_linux fedora	The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcm__pad2 structure mem…	CWE-200 Information Exposure	CVE-2009-3612	2023-11-7 11:04	2009-10-20	Show	GitHub Exploit DB Packet Storm

272296	-	linux canonical redhat	linux_kernel ubuntu_linux enterprise_linux_server enterprise_linux_workstation enterprise_linux_desktop enterprise_linux_eus	The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.31-rc9 does not initialize certain (1) tcm__pad1 and (2) tcm__pad…	CWE-909 Missing Initialization of Resource	CVE-2009-3228	2023-11-7 11:04	2009-10-20	Show	GitHub Exploit DB Packet Storm

272297	-	google	android	An unspecified function in the Dalvik API in Android 1.5 and earlier allows remote attackers to cause a denial of service (system process restart) via a crafted application, possibly a related issue …	NVD-CWE-noinfo	CVE-2009-3698	2023-11-7 11:04	2009-10-14	Show	GitHub Exploit DB Packet Storm

272298	-	google	android	The com.android.phone process in Android 1.5 CRBxx allows remote attackers to cause a denial of service (application restart and network disconnection) via an SMS message containing a malformed WAP P…	NVD-CWE-noinfo	CVE-2009-2999	2023-11-7 11:04	2009-10-14	Show	GitHub Exploit DB Packet Storm

272299	-	nightlight	fireftp	Argument injection vulnerability in (1) src/content/js/connection/sftp.js and (2) src/content/js/connection/controlSocket.js.in in FireFTP Extension 1.0.5 for Firefox allows remote authenticated SFTP…	CWE-94 Code Injection	CVE-2009-3478	2023-11-7 11:04	2009-09-30	Show	GitHub Exploit DB Packet Storm

272300	-	-	-	Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-2510. Reason: This candidate is a duplicate of CVE-2009-2510. Notes: All CVE users should reference CVE-2009-2510 instead of…	-	CVE-2009-3454	2023-11-7 11:04	2009-09-30	Show	GitHub Exploit DB Packet Storm