Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226961 7.5 危険 spirate - SPirate における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4936 2012-12-20 19:28 2010-07-22 Show GitHub Exploit DB Packet Storm
226962 7.5 危険 winterwebs - EZ Webitor の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4933 2012-12-20 19:28 2010-07-12 Show GitHub Exploit DB Packet Storm
226963 4.3 警告 sungard - SunGard Banner Student System の twbkwbis.P_SecurityQuestion ページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4930 2012-12-20 19:28 2010-07-12 Show GitHub Exploit DB Packet Storm
226964 7.5 危険 sweetphp - TotalCalendar の admin/manage_users.php における任意のパスワードを変更される脆弱性 CWE-287
不適切な認証 		CVE-2009-4929 2012-12-20 19:28 2010-07-12 Show GitHub Exploit DB Packet Storm
226965 7.5 危険 sweetphp - TotalCalendar の config.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4928 2012-12-20 19:28 2010-07-12 Show GitHub Exploit DB Packet Storm
226966 7.5 危険 webmobo - WB News における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-4927 2012-12-20 19:28 2010-07-12 Show GitHub Exploit DB Packet Storm
226967 6.8 警告 UnrealIRCd - UnrealIRCd におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4893 2012-12-20 19:28 2010-06-15 Show GitHub Exploit DB Packet Storm
226968 7.5 危険 webjump - Content Management System WEBjump! における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4892 2012-12-20 19:28 2010-06-11 Show GitHub Exploit DB Packet Storm
226969 4.3 警告 retrieve - vBook のログインアプリケーションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4890 2012-12-20 19:28 2010-06-11 Show GitHub Exploit DB Packet Storm
226970 6.8 警告 sbuilder - CMS S.Builder の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4887 2012-12-20 19:28 2010-06-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274231 - oracle
debian 		vm_virtualbox
debian_linux 		Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.0.34, 4.1.42, 4.2.34, 4.3.32, and 5.0.8, when a VM has the Remote Display feature (RDP) en… NVD-CWE-noinfo
CVE-2015-4896 2024-11-21 11:31 2015-10-22 Show GitHub Exploit DB Packet Storm
274232 - oracle
mariadb
fedoraproject
debian
canonical 		mysql
mariadb
fedora
debian_linux
ubuntu_linux 		Unspecified vulnerability in Oracle MySQL Server 5.6.25 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB. NVD-CWE-noinfo
CVE-2015-4895 2024-11-21 11:31 2015-10-22 Show GitHub Exploit DB Packet Storm
274233 - oracle database_mobile\/lite_server Unspecified vulnerability in the Mobile Server component in Oracle Database Mobile/Lite Server 10.3.0.3, 11.3.0.2, and 12.1.0.0 allows remote authenticated users to affect integrity and availability … NVD-CWE-noinfo
CVE-2015-4894 2024-11-21 11:31 2015-10-22 Show GitHub Exploit DB Packet Storm
274234 - oracle jrockit
jre
jdk 		Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different v… NVD-CWE-noinfo
CVE-2015-4893 2024-11-21 11:31 2015-10-22 Show GitHub Exploit DB Packet Storm
274235 - oracle supply_chain_products_suite Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 allows remote authenticated users to affect integrity via unknown vectors related to Security, … NVD-CWE-noinfo
CVE-2015-4892 2024-11-21 11:31 2015-10-22 Show GitHub Exploit DB Packet Storm
274236 - oracle solaris Unspecified vulnerability in Oracle Sun Solaris 11.2 allows local users to affect confidentiality, integrity, and availability via vectors related to NSCD. NVD-CWE-noinfo
CVE-2015-4891 2024-11-21 11:31 2015-10-22 Show GitHub Exploit DB Packet Storm
274237 - redhat
oracle 		enterprise_linux
mysql 		Unspecified vulnerability in Oracle MySQL Server 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Replication. NVD-CWE-noinfo
CVE-2015-4890 2024-11-21 11:31 2015-10-22 Show GitHub Exploit DB Packet Storm
274238 - oracle database_server Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability … NVD-CWE-noinfo
CVE-2015-4888 2024-11-21 11:31 2015-10-22 Show GitHub Exploit DB Packet Storm
274239 - oracle peoplesoft_products Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unk… NVD-CWE-noinfo
CVE-2015-4887 2024-11-21 11:31 2015-10-22 Show GitHub Exploit DB Packet Storm
274240 - oracle e-business_suite Unspecified vulnerability in the Oracle Report Manager component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality and integri… NVD-CWE-noinfo
CVE-2015-4886 2024-11-21 11:31 2015-10-22 Show GitHub Exploit DB Packet Storm