Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223721	4.4	警告	vivvo	-	Vivvo CMS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-6801	2012-12-20 19:10	2009-05-7	Show	GitHub Exploit DB Packet Storm

223722	7.5	危険	tufat	-	FlashChat の connection.php におけるロールフィルタメカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6799	2012-12-20 19:10	2009-05-7	Show	GitHub Exploit DB Packet Storm

223723	7.5	危険	PreProject.com	-	Pre Projects Pre Real Estate Listings の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6798	2012-12-20 19:10	2009-05-7	Show	GitHub Exploit DB Packet Storm

223724	7.5	危険	PreProject.com	-	Pre Projects Pre Real Estate Listings の manager/login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6796	2012-12-20 19:10	2009-05-7	Show	GitHub Exploit DB Packet Storm

223725	7.5	危険	sfs ez pub	-	SFS EZ Pub Site の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6794	2012-12-20 19:10	2009-05-7	Show	GitHub Exploit DB Packet Storm

223726	7.5	危険	scripts-for-sites	-	SFS EZ Adult Directory の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6784	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

223727	7.5	危険	scripts-for-sites	-	SFS EZ Home Business Directory の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6783	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

223728	7.5	危険	scripts-for-sites	-	SFS EZ Hosting Directory の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6782	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

223729	7.5	危険	scripts-for-sites	-	SFS Gaming Directory の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6781	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

223730	7.5	危険	scripts-for-sites	-	SFS SFS EZ Affiliate の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6780	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278141	-	opera	opera_browser	Opera before 10.53 on Windows and Mac OS X does not properly handle a series of document modifications that occur asynchronously, which allows remote attackers to execute arbitrary code or cause a de…	CWE-399 Resource Management Errors	CVE-2010-1728	2018-10-31 01:26	2010-05-6	Show	GitHub Exploit DB Packet Storm

278142	-	sun	java_system_access_manager	Sun Java System Access Manager 6.3 2005Q1, 7 2005Q4, and 7.1 allows remote authenticated users with console privileges to discover passwords, and obtain unspecified other "access to resources," by vi…	CWE-255 CWE-264 Credentials Management Permissions, Privileges, and Access Controls	CVE-2009-0170	2018-10-31 01:26	2009-01-17	Show	GitHub Exploit DB Packet Storm

278143	-	vmware	ace workstation player server	Unspecified vulnerability in vmci.sys in the Virtual Machine Communication Interface (VMCI) in VMware Workstation 6.5.1 and earlier, VMware Player 2.5.1 and earlier, VMware ACE 2.5.1 and earlier, and…	NVD-CWE-noinfo	CVE-2009-1147	2018-10-31 01:26	2009-04-7	Show	GitHub Exploit DB Packet Storm

278144	-	sun	jdk	Algorithmic complexity vulnerability in the java.util.regex.Pattern.compile method in Sun Java Development Kit (JDK) before 1.6, when used with spring.jar in SpringSource Spring Framework 1.1.0 throu…	CWE-399 Resource Management Errors	CVE-2009-1190	2018-10-31 01:26	2009-04-28	Show	GitHub Exploit DB Packet Storm

278145	-	vmware	ace esx esxi fusion player server workstation	Unspecified vulnerability in the VMware Descheduled Time Accounting driver in VMware Workstation 6.5.1 and earlier, VMware Player 2.5.1 and earlier, VMware ACE 2.5.1 and earlier, VMware Server 1.x be…	NVD-CWE-noinfo	CVE-2009-1805	2018-10-31 01:26	2009-06-2	Show	GitHub Exploit DB Packet Storm

278146	-	opera	opera_browser	Opera, possibly before 9.25, uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle att…	CWE-287 Improper Authentication	CVE-2009-2059	2018-10-31 01:26	2009-06-16	Show	GitHub Exploit DB Packet Storm

278147	-	microsoft	internet_explorer pocket_ie	Microsoft Internet Explorer 8, and possibly other versions, detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbit…	CWE-287 Improper Authentication	CVE-2009-2064	2018-10-31 01:26	2009-06-16	Show	GitHub Exploit DB Packet Storm

278148	-	opera	opera_browser	Opera detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbitrary web script, in an https site's context, by modify…	CWE-287 Improper Authentication	CVE-2009-2067	2018-10-31 01:26	2009-06-16	Show	GitHub Exploit DB Packet Storm

278149	-	opera	opera_browser	Opera 9.52 and earlier does not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) inj…	CWE-79 Cross-site Scripting	CVE-2009-2351	2018-10-31 01:26	2009-07-8	Show	GitHub Exploit DB Packet Storm

278150	-	php	php	The zend_restore_ini_entry_cb function in zend_ini.c in PHP 5.3.0, 5.2.10, and earlier versions allows context-specific attackers to obtain sensitive information (memory contents) and cause a PHP cra…	NVD-CWE-Other	CVE-2009-2626	2018-10-31 01:26	2009-12-2	Show	GitHub Exploit DB Packet Storm