Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 19, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 226961 | 7.5 | 危険 | spirate | - | SPirate における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-4936 | 2012-12-20 19:28 | 2010-07-22 | Show | GitHub Exploit DB Packet Storm |
| 226962 | 7.5 | 危険 | winterwebs | - | EZ Webitor の login.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-4933 | 2012-12-20 19:28 | 2010-07-12 | Show | GitHub Exploit DB Packet Storm |
| 226963 | 4.3 | 警告 | sungard | - | SunGard Banner Student System の twbkwbis.P_SecurityQuestion ページにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4930 | 2012-12-20 19:28 | 2010-07-12 | Show | GitHub Exploit DB Packet Storm |
| 226964 | 7.5 | 危険 | sweetphp | - | TotalCalendar の admin/manage_users.php における任意のパスワードを変更される脆弱性 |
CWE-287
不適切な認証 |
CVE-2009-4929 | 2012-12-20 19:28 | 2010-07-12 | Show | GitHub Exploit DB Packet Storm |
| 226965 | 7.5 | 危険 | sweetphp | - | TotalCalendar の config.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-4928 | 2012-12-20 19:28 | 2010-07-12 | Show | GitHub Exploit DB Packet Storm |
| 226966 | 7.5 | 危険 | webmobo | - | WB News における認証を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2009-4927 | 2012-12-20 19:28 | 2010-07-12 | Show | GitHub Exploit DB Packet Storm |
| 226967 | 6.8 | 警告 | UnrealIRCd | - | UnrealIRCd におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4893 | 2012-12-20 19:28 | 2010-06-15 | Show | GitHub Exploit DB Packet Storm |
| 226968 | 7.5 | 危険 | webjump | - | Content Management System WEBjump! における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-4892 | 2012-12-20 19:28 | 2010-06-11 | Show | GitHub Exploit DB Packet Storm |
| 226969 | 4.3 | 警告 | retrieve | - | vBook のログインアプリケーションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4890 | 2012-12-20 19:28 | 2010-06-11 | Show | GitHub Exploit DB Packet Storm |
| 226970 | 6.8 | 警告 | sbuilder | - | CMS S.Builder の index.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-4887 | 2012-12-20 19:28 | 2010-06-11 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 19, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 275061 | - | searchblox | searchblox | Cross-site scripting (XSS) vulnerability in SearchBlox before 8.2.1 allows remote attackers to inject arbitrary web script or HTML via the menu2 parameter to admin/main.jsp. |
CWE-79
Cross-site Scripting |
CVE-2015-3422 | 2024-11-21 11:29 | 2015-06-19 | Show | GitHub Exploit DB Packet Storm | |
| 275062 | - |
automattic debian |
genericons debian_linux |
Cross-site scripting (XSS) vulnerability in example.html in Genericons before 3.3.1, as used in WordPress before 4.2.2, allows remote attackers to inject arbitrary web script or HTML via a fragment i… |
CWE-79
Cross-site Scripting |
CVE-2015-3429 | 2024-11-21 11:29 | 2015-06-18 | Show | GitHub Exploit DB Packet Storm | |
| 275063 | - | ca |
client_automation network_and_systems_management nsm_job_management_option universal_job_management_agent virtual_assurance_for_infrastructure_managers workload_automation_ae |
CA Common Services, as used in CA Client Automation r12.5 SP01, r12.8, and r12.9; CA Network and Systems Management r11.0, r11.1, and r11.2; CA NSM Job Management Option r11.0, r11.1, and r11.2; CA U… |
CWE-20
Improper Input Validation |
CVE-2015-3318 | 2024-11-21 11:29 | 2015-06-17 | Show | GitHub Exploit DB Packet Storm | |
| 275064 | - | ca |
client_automation network_and_systems_management nsm_job_management_option universal_job_management_agent virtual_assurance_for_infrastructure_managers workload_automation_ae |
CA Common Services, as used in CA Client Automation r12.5 SP01, r12.8, and r12.9; CA Network and Systems Management r11.0, r11.1, and r11.2; CA NSM Job Management Option r11.0, r11.1, and r11.2; CA U… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-3317 | 2024-11-21 11:29 | 2015-06-17 | Show | GitHub Exploit DB Packet Storm | |
| 275065 | - |
broadcom ca |
network_and_systems_management client_automation nsm_job_management_option universal_job_management_agent virtual_assurance_for_infrastructure_managers workload_automation_ae |
CA Common Services, as used in CA Client Automation r12.5 SP01, r12.8, and r12.9; CA Network and Systems Management r11.0, r11.1, and r11.2; CA NSM Job Management Option r11.0, r11.1, and r11.2; CA U… |
NVD-CWE-noinfo
|
CVE-2015-3316 | 2024-11-21 11:29 | 2015-06-17 | Show | GitHub Exploit DB Packet Storm | |
| 275066 | - |
canonical ffmpeg libav |
ubuntu_linux ffmpeg libav |
The msrle_decode_pal4 function in msrledec.c in Libav before 10.7 and 11.x before 11.4 and FFmpeg before 2.0.7, 2.2.x before 2.2.15, 2.4.x before 2.4.8, 2.5.x before 2.5.6, and 2.6.x before 2.6.2 all… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-3395 | 2024-11-21 11:29 | 2015-06-17 | Show | GitHub Exploit DB Packet Storm | |
| 275067 | - |
oracle apple redhat php |
solaris linux mac_os_x enterprise_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_hpc_node enterprise_linux_server_eus … |
The php_handler function in sapi/apache2handler/sapi_apache2.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, when the Apache HTTP Server 2.4.x is used, allows remote attackers to… |
CWE-20
Improper Input Validation |
CVE-2015-3330 | 2024-11-21 11:29 | 2015-06-10 | Show | GitHub Exploit DB Packet Storm | |
| 275068 | - |
apple redhat oracle php |
mac_os_x enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_hpc_node enterprise_linux_server_eus enterprise_linux_hpc_node_eus solaris… |
Multiple stack-based buffer overflows in the phar_set_inode function in phar_internal.h in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allow remote attackers to execute arbitrary c… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-3329 | 2024-11-21 11:29 | 2015-06-10 | Show | GitHub Exploit DB Packet Storm | |
| 275069 | - |
redhat apple php |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_hpc_node enterprise_linux_server_eus enterprise_linux_hpc_node_eus enterprise_linux
The phar_parse_metadata function in ext/phar/phar.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service (heap metadata corruption) o…
|
CWE-119
|
Incorrect Access of Indexable Resource ('Range Error')
CVE-2015-3307
|
2024-11-21 11:29 |
2015-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
| |
| 275070 | - | montala | resourcespace | Directory traversal vulnerability in pages/setup.php in Montala Limited ResourceSpace before 7.2.6727 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the de… |
CWE-22
Path Traversal |
CVE-2015-3648 | 2024-11-21 11:29 | 2015-06-9 | Show | GitHub Exploit DB Packet Storm |