Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223321	5	警告	Sendmail Consortium	-	Sendmail におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1490	2012-12-20 19:10	2009-05-5	Show	GitHub Exploit DB Packet Storm

223322	7.5	危険	rens rikkerink	-	Fungamez の includes/user.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-1489	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

223323	6.8	警告	rens rikkerink	-	FunGamez の admin/load.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1488	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

223324	7.5	危険	rens rikkerink	-	FunGamez の pages/login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1487	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

223325	6.8	警告	studiolounge	-	index2.php から到達可能な Adam Patterson Studio Lounge Address Book における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2009-1483	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

223326	7.5	危険	pjhome	-	PJBlog3 の action.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1481	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

223327	7.5	危険	Pragyan CMS Project	-	index.php Pragyan CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1480	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

223328	7.5	危険	razorCMS	-	razorCMS における任意のページへ任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2009-1463	2012-12-20 19:10	2009-04-20	Show	GitHub Exploit DB Packet Storm

223329	7.2	危険	razorCMS	-	razorCMS の Security Manager における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1462	2012-12-20 19:10	2009-04-20	Show	GitHub Exploit DB Packet Storm

223330	3.5	注意	razorCMS	-	razorCMS の Create New Page フォームにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1461	2012-12-20 19:10	2009-04-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278141	-	opera	opera_browser	Opera before 10.53 on Windows and Mac OS X does not properly handle a series of document modifications that occur asynchronously, which allows remote attackers to execute arbitrary code or cause a de…	CWE-399 Resource Management Errors	CVE-2010-1728	2018-10-31 01:26	2010-05-6	Show	GitHub Exploit DB Packet Storm

278142	-	sun	java_system_access_manager	Sun Java System Access Manager 6.3 2005Q1, 7 2005Q4, and 7.1 allows remote authenticated users with console privileges to discover passwords, and obtain unspecified other "access to resources," by vi…	CWE-255 CWE-264 Credentials Management Permissions, Privileges, and Access Controls	CVE-2009-0170	2018-10-31 01:26	2009-01-17	Show	GitHub Exploit DB Packet Storm

278143	-	vmware	ace workstation player server	Unspecified vulnerability in vmci.sys in the Virtual Machine Communication Interface (VMCI) in VMware Workstation 6.5.1 and earlier, VMware Player 2.5.1 and earlier, VMware ACE 2.5.1 and earlier, and…	NVD-CWE-noinfo	CVE-2009-1147	2018-10-31 01:26	2009-04-7	Show	GitHub Exploit DB Packet Storm

278144	-	sun	jdk	Algorithmic complexity vulnerability in the java.util.regex.Pattern.compile method in Sun Java Development Kit (JDK) before 1.6, when used with spring.jar in SpringSource Spring Framework 1.1.0 throu…	CWE-399 Resource Management Errors	CVE-2009-1190	2018-10-31 01:26	2009-04-28	Show	GitHub Exploit DB Packet Storm

278145	-	vmware	ace esx esxi fusion player server workstation	Unspecified vulnerability in the VMware Descheduled Time Accounting driver in VMware Workstation 6.5.1 and earlier, VMware Player 2.5.1 and earlier, VMware ACE 2.5.1 and earlier, VMware Server 1.x be…	NVD-CWE-noinfo	CVE-2009-1805	2018-10-31 01:26	2009-06-2	Show	GitHub Exploit DB Packet Storm

278146	-	opera	opera_browser	Opera, possibly before 9.25, uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle att…	CWE-287 Improper Authentication	CVE-2009-2059	2018-10-31 01:26	2009-06-16	Show	GitHub Exploit DB Packet Storm

278147	-	microsoft	internet_explorer pocket_ie	Microsoft Internet Explorer 8, and possibly other versions, detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbit…	CWE-287 Improper Authentication	CVE-2009-2064	2018-10-31 01:26	2009-06-16	Show	GitHub Exploit DB Packet Storm

278148	-	opera	opera_browser	Opera detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbitrary web script, in an https site's context, by modify…	CWE-287 Improper Authentication	CVE-2009-2067	2018-10-31 01:26	2009-06-16	Show	GitHub Exploit DB Packet Storm

278149	-	opera	opera_browser	Opera 9.52 and earlier does not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) inj…	CWE-79 Cross-site Scripting	CVE-2009-2351	2018-10-31 01:26	2009-07-8	Show	GitHub Exploit DB Packet Storm

278150	-	php	php	The zend_restore_ini_entry_cb function in zend_ini.c in PHP 5.3.0, 5.2.10, and earlier versions allows context-specific attackers to obtain sensitive information (memory contents) and cause a PHP cra…	NVD-CWE-Other	CVE-2009-2626	2018-10-31 01:26	2009-12-2	Show	GitHub Exploit DB Packet Storm