Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
223351 4 警告 sergey lyubka - Mongoose におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1354 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
223352 5 警告 sebastian fernandez - Zervit Webserver の libz/misc.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1353 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
223353 4.3 警告 レッドハット - C2Net Stronghold におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1349 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
223354 6 警告 TWiki - TWiki におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-1339 2012-12-20 19:10 2009-04-5 Show GitHub Exploit DB Packet Storm
223355 5 警告 サン・マイクロシステムズ - Sun Java System Directory Server および Enterprise Edition の Online Help 機能におけるファイルの一部のコンテンツを取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-1332 2012-12-20 19:10 2009-04-15 Show GitHub Exploit DB Packet Storm
223356 7.5 危険 webfileexplorer - Web File Explorer の body.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1323 2012-12-20 19:10 2009-04-17 Show GitHub Exploit DB Packet Storm
223357 4.3 警告 zazzle - Zazzle Store Builder の include/zstore.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1320 2012-12-20 19:10 2009-04-17 Show GitHub Exploit DB Packet Storm
223358 10 危険 webfileexplorer - Web File Explorer の body.asp における任意のファイルを作成される脆弱性 CWE-noinfo
情報不足 		CVE-2009-1314 2012-12-20 19:10 2009-04-16 Show GitHub Exploit DB Packet Storm
223359 5 警告 Rapid Leech - Rapidleech の upload.php における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1089 2012-12-20 19:10 2009-03-25 Show GitHub Exploit DB Packet Storm
223360 9.3 危険 pplive - PPLive の PPLive.exe における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1087 2012-12-20 19:10 2009-03-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278211 - hp ignite-ux The make_recovery command for the TFTP server in HP Ignite-UX before C.6.2.241 makes a copy of the password file in the TFTP directory tree, which allows remote attackers to obtain sensitive informat… NVD-CWE-Other
CVE-2004-0951 2018-10-31 01:25 2004-12-31 Show GitHub Exploit DB Packet Storm
278212 - apple apple_remote_desktop Apple Remote Desktop Client 1.2.4 executes a GUI application as root when it is started by an Apple Remote Desktop Administrator application, which allows remote authenticated users to execute arbitr… NVD-CWE-Other
CVE-2004-0962 2018-10-31 01:25 2005-02-9 Show GitHub Exploit DB Packet Storm
278213 - yard_radius
yard_radius_project 		yard_radius Buffer overflow in the process_menu function in yardradius 1.0.20 allows remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2004-0987 2018-10-31 01:25 2005-01-10 Show GitHub Exploit DB Packet Storm
278214 - openpkg
php
trustix
ubuntu 		openpkg
php
secure_linux
ubuntu_linux 		The deserialization code in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to cause a denial of service and execute arbitrary code via untrusted data to the unserialize function th… CWE-20
 Improper Input Validation  		CVE-2004-1019 2018-10-31 01:25 2005-01-10 Show GitHub Exploit DB Packet Storm
278215 - openpkg
php
trustix
ubuntu 		openpkg
php
secure_linux
ubuntu_linux 		Buffer overflow in the exif_read_data function in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to execute arbitrary code via a long section name in an image file. NVD-CWE-Other
CVE-2004-1065 2018-10-31 01:25 2005-01-10 Show GitHub Exploit DB Packet Storm
278216 - apache
apple
avaya
hp
ibm
openbsd
sco
sun 		http_server
apache_mod_digest_apple
communication_manager
intuity_audix_lx
virtualvault
webproxy
mn100
network_routing
modular_messaging_message_storage_server
openbsd
o… 		mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials. NVD-CWE-Other
CVE-2004-1082 2018-10-31 01:25 2004-02-3 Show GitHub Exploit DB Packet Storm
278217 - cisco secure_access_control_server
secure_acs_solution_engine 		Cisco Secure Access Control Server for Windows (ACS Windows) and Cisco Secure Access Control Server Solution Engine (ACS Solution Engine) 3.3.1, when the EAP-TLS protocol is enabled, does not properl… NVD-CWE-Other
CVE-2004-1099 2018-10-31 01:25 2005-01-10 Show GitHub Exploit DB Packet Storm
278218 - samba
redhat
suse
trustix 		samba
fedora_core
suse_linux
secure_linux 		Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code… NVD-CWE-Other
CVE-2004-1154 2018-10-31 01:25 2005-01-10 Show GitHub Exploit DB Packet Storm
278219 - sun
debian
mandrakesoft 		solaris
sunos
debian_linux
mandrake_linux
mandrake_linux_corporate_server 		Unknown vulnerability in the rwho daemon (rwhod) before 0.17, on little endian architectures, allows remote attackers to cause a denial of service (application crash). NVD-CWE-Other
CVE-2004-1180 2018-10-31 01:25 2004-02-16 Show GitHub Exploit DB Packet Storm
278220 - sun solaris
sunos 		Unknown vulnerability in in.named on Solaris 8 allows remote attackers to cause a denial of service (process crash). NVD-CWE-Other
CVE-2004-1348 2018-10-31 01:25 2004-09-6 Show GitHub Exploit DB Packet Storm