Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223361	5	警告	Piwik	-	Piwik における API 鍵を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1085	2012-12-20 19:10	2009-03-25	Show	GitHub Exploit DB Packet Storm

223362	6.4	警告	サン・マイクロシステムズ	-	Sun Java System IdM における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1084	2012-12-20 19:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

223363	6.9	警告	PulseAudio	-	PulseAudio の core-util.c における任意のファイルのパーミッションを変更される脆弱性	CWE-59 リンク解釈の問題	CVE-2009-1299	2012-12-20 19:10	2010-03-18	Show	GitHub Exploit DB Packet Storm

223364	1.9	注意	Canonical	-	Ubuntu 上で稼動する ecryptfs-utils 73-0ubuntu におけるファイルシステムへのアクセス権を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-1296	2012-12-20 19:10	2009-06-8	Show	GitHub Exploit DB Packet Storm

223365	10	危険	TIBCO Software	-	TIBCO SmartSockets、SmartSockets 製品ファミリーおよび EMS におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1291	2012-12-20 19:10	2009-04-30	Show	GitHub Exploit DB Packet Storm

223366	7.5	危険	The phpMyAdmin Project	-	phpMyAdmin の setup/lib/ConfigFile.class.php における任意の PHP コードを設定ファイルへ挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2009-1285	2012-12-20 19:10	2009-04-14	Show	GitHub Exploit DB Packet Storm

223367	5	警告	Xine	-	xine-lib の demuxers/demux_qt.c における整数オーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1274	2012-12-20 19:10	2009-04-8	Show	GitHub Exploit DB Packet Storm

223368	10	危険	Wireshark	-	Wireshark における脆弱性	CWE-noinfo 情報不足	CVE-2009-1266	2012-12-20 19:10	2009-04-21	Show	GitHub Exploit DB Packet Storm

223369	4	警告	Stanislas Rolland	-	TYPO3 用の sr_feuser_register エクステンションにおけるパスワードなどの重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1264	2012-12-20 19:10	2009-04-7	Show	GitHub Exploit DB Packet Storm

223370	4.3	警告	webhelpdesk	-	Web Help Desk におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1261	2012-12-20 19:10	2009-04-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278041	-	microsoft	windows_vista windows_server_2003	Race condition in Microsoft Windows Server 2003 and Vista allows local users to cause a denial of service (crash or hang) via a multi-threaded application that makes many calls to UnhookWindowsHookEx…	CWE-362 Race Condition	CVE-2008-5044	2019-02-26 23:04	2008-11-13	Show	GitHub Exploit DB Packet Storm

278042	-	apple	safari	Apple Safari on Mac OS X, and before 3.1.2 on Windows, does not prompt the user before downloading an object that has an unrecognized content type, which allows remote attackers to place malware into…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-2540	2019-02-26 23:04	2008-06-4	Show	GitHub Exploit DB Packet Storm

278043	-	linux-pam	linux-pam	Linux-PAM before 1.0.4 does not enforce the minimum password age (MINDAYS) as specified in /etc/shadow, which allows local users to bypass intended security policy and change their passwords sooner t…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-0579	2019-01-4 00:01	2009-04-17	Show	GitHub Exploit DB Packet Storm

278044	-	lighttpd debian	lighttpd debian_linux	lighttpd before 1.4.20 compares URIs to patterns in the (1) url.redirect and (2) url.rewrite configuration settings before performing URL decoding, which might allow remote attackers to bypass intend…	CWE-200 Information Exposure	CVE-2008-4359	2018-11-30 00:46	2008-10-4	Show	GitHub Exploit DB Packet Storm

278045	-	lighttpd debian	lighttpd debian_linux	mod_userdir in lighttpd before 1.4.20, when a case-insensitive operating system or filesystem is used, performs case-sensitive comparisons on filename components in configuration options, which might…	CWE-200 Information Exposure	CVE-2008-4360	2018-11-30 00:46	2008-10-4	Show	GitHub Exploit DB Packet Storm

278046	-	yate	yet_another_telephony_engine	The SIP channel module in Yet Another Telephony Engine (Yate) before 1.2.0 sets the caller_info_uri parameter using an incorrect variable that can be NULL, which allows remote attackers to cause a de…	CWE-20 Improper Input Validation	CVE-2007-1693	2018-11-30 00:46	2007-05-18	Show	GitHub Exploit DB Packet Storm

278047	-	omegaboard_project	omegaboard	PHP remote file inclusion vulnerability in includes/functions.php in Omegaboard 1.0beta4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.	CWE-20 Improper Input Validation	CVE-2007-0683	2018-11-30 00:45	2007-02-3	Show	GitHub Exploit DB Packet Storm

278048	-	apache debian	libapreq2 debian_linux	Unspecified vulnerability in (1) apreq_parse_headers and (2) apreq_parse_urlencoded functions in Apache2::Request (Libapreq2) before 2.07 allows remote attackers to cause a denial of service (CPU con…	NVD-CWE-noinfo	CVE-2006-0042	2018-11-30 00:45	2006-02-19	Show	GitHub Exploit DB Packet Storm

278049	-	spytech-web	spyanywhere	Spytech SpyAnywhere 1.50 allows remote attackers to gain administrator access via a single character in the "loginpass" field.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2001-0771	2018-11-30 00:45	2001-10-18	Show	GitHub Exploit DB Packet Storm

278050	-	bb4	big_brother	Vulnerability in bb-hist.sh CGI History module in Big Brother 1.09b and 1.09c allows remote attackers to read portions of arbitrary files.	CWE-200 Information Exposure	CVE-1999-1462	2018-11-30 00:44	1999-12-31	Show	GitHub Exploit DB Packet Storm