Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
223071 4.3 警告 phpscriptsnow - PHP Scripts Now World's Tallest Buildings の bios.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2884 2012-12-20 19:10 2009-08-20 Show GitHub Exploit DB Packet Storm
223072 3.5 注意 サン・マイクロシステムズ - Sun VDI における VDI 設定データを平文で読まれる脆弱性 CWE-200
情報漏えい 		CVE-2009-2856 2012-12-20 19:10 2009-08-14 Show GitHub Exploit DB Packet Storm
223073 6.4 警告 WordPress.org - Wordpress における許可されていない編集などをされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2854 2012-12-20 19:10 2009-08-3 Show GitHub Exploit DB Packet Storm
223074 10 危険 WordPress.org - Wordpress における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2853 2012-12-20 19:10 2009-08-3 Show GitHub Exploit DB Packet Storm
223075 6.8 警告 ryan.mcgeary - Wordpress 用の WP-Syntax プラグインにおける任意の PHP コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2852 2012-12-20 19:10 2009-08-18 Show GitHub Exploit DB Packet Storm
223076 4.3 警告 WordPress.org - WordPress の管理者インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2851 2012-12-20 19:10 2009-07-20 Show GitHub Exploit DB Packet Storm
223077 7.5 危険 webdynamite - WebDynamite ProjectButler の pda_projects.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2791 2012-12-20 19:10 2009-08-17 Show GitHub Exploit DB Packet Storm
223078 7.5 危険 softbiz - SoftBiz Dating Script の cat_products.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2790 2012-12-20 19:10 2009-08-17 Show GitHub Exploit DB Packet Storm
223079 6.8 警告 reputation - PunBB 用の Reputation プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2787 2012-12-20 19:10 2009-08-17 Show GitHub Exploit DB Packet Storm
223080 7.5 危険 reputation - PunBB 用の Reputation プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2786 2012-12-20 19:10 2009-08-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278491 - cisco vpn_3000_concentrator_series_software
vpn_3002_hardware_client 		Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, adds an "HTTPS on Public Inbound (XML-Auto)(forward/in)" rule but sets the protocol to "ANY" when the XML filter configuration is enabled, whi… NVD-CWE-Other
CVE-2002-1098 2018-10-31 01:26 2002-10-4 Show GitHub Exploit DB Packet Storm
278492 - cisco vpn_3000_concentrator_series_software
vpn_3002_hardware_client 		Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, allows remote attackers to obtain potentially sensitive information without authentication by directly accessing certain HTML pages. NVD-CWE-Other
CVE-2002-1099 2018-10-31 01:26 2002-10-4 Show GitHub Exploit DB Packet Storm
278493 - cisco vpn_3000_concentrator_series_software
vpn_3002_hardware_client 		Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, allows remote attackers to cause a denial of service (crash) via a long (1) username or (2) password to the HTML login interface. NVD-CWE-Other
CVE-2002-1100 2018-10-31 01:26 2002-10-4 Show GitHub Exploit DB Packet Storm
278494 - cisco vpn_3000_concentrator_series_software
vpn_3002_hardware_client 		Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), and 3.x before 3.5.5, allows remote attackers to cause a denial of service via a long user name. NVD-CWE-Other
CVE-2002-1101 2018-10-31 01:26 2002-10-4 Show GitHub Exploit DB Packet Storm
278495 - cisco vpn_3000_concentrator_series_software
vpn_3002_hardware_client 		The LAN-to-LAN IPSEC capability for Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.4, allows remote attackers to cause a denial of service via an incoming LAN-to-LAN connection with an existin… NVD-CWE-Other
CVE-2002-1102 2018-10-31 01:26 2002-10-4 Show GitHub Exploit DB Packet Storm
278496 - cisco vpn_3000_concentrator_series_software
vpn_3002_hardware_client 		Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), and 3.x before 3.5.5, allows remote attackers to cause a denial of service via (1) malformed or (2) large ISAKMP packets. NVD-CWE-Other
CVE-2002-1103 2018-10-31 01:26 2002-10-4 Show GitHub Exploit DB Packet Storm
278497 - redhat linux Buffer overflow in KON kon2 0.3.9b and earlier allows local users to execute arbitrary code via a long -Coding command line argument. NVD-CWE-Other
CVE-2002-1155 2018-10-31 01:26 2003-06-16 Show GitHub Exploit DB Packet Storm
278498 - caldera
sco
sun 		openlinux
openserver
solaris
sunos 		The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map a… NVD-CWE-Other
CVE-2002-1199 2018-10-31 01:26 2002-10-28 Show GitHub Exploit DB Packet Storm
278499 - sun solaris
sunos 		Unknown vulnerability in NFS on Solaris 2.5.1 through Solaris 9 allows an NFS client to cause a denial of service by killing the lockd daemon. NVD-CWE-Other
CVE-2002-1228 2018-10-31 01:26 2002-10-28 Show GitHub Exploit DB Packet Storm
278500 - sun solaris
sunos 		Directory traversal vulnerability in priocntl system call in Solaris does allows local users to execute arbitrary code via ".." sequences in the pc_clname field of a pcinfo_t structure, which cause p… NVD-CWE-Other
CVE-2002-1296 2018-10-31 01:26 2002-12-23 Show GitHub Exploit DB Packet Storm