Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227121 6.8 警告 サン・マイクロシステムズ - Sun Java System Directory Server Enterprise Edition の DPS における認証されたユーザのバックエンドの接続をハイジャックされる脆弱性 CWE-362
競合状態 		CVE-2009-4440 2012-12-20 19:28 2009-12-23 Show GitHub Exploit DB Packet Storm
227122 7.5 危険 VirtueMart - VirtueMart の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4430 2012-12-20 19:28 2009-12-28 Show GitHub Exploit DB Packet Storm
227123 7.5 危険 weentech - weenCompany の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4423 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
227124 5 警告 Zend Technologies Ltd. - Zend Framework の Zend_Log_Writer_Mail クラスにおける任意の電子メールメッセージを送信される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4417 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
227125 4.3 警告 phpgroupware - phpGroupWare の login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4416 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
227126 7.5 危険 phpgroupware - phpGroupWare におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4415 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
227127 6.8 警告 phpgroupware - phpGroupWare の phpgwapi /inc/class.auth_sql.inc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4414 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
227128 5 警告 pps.jussieu - Polipo の client.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2009-4413 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
227129 6 警告 s9y - Serendipity における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2009-4412 2012-12-20 19:28 2009-12-21 Show GitHub Exploit DB Packet Storm
227130 3.7 注意 xfs - XFS acl の setfacl および getfacl コマンドにおける任意のファイルなど対する ACL を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4411 2012-12-20 19:28 2009-12-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275271 5.9 MEDIUM
Network 		orientdb orientdb server/network/protocol/http/OHttpSessionManager.java in the Studio component in OrientDB Server Community Edition before 2.0.15 and 2.1.x before 2.1.1 improperly relies on the java.util.Random class… CWE-200
Information Exposure 		CVE-2015-2913 2024-11-21 11:28 2015-12-31 Show GitHub Exploit DB Packet Storm
275272 8.8 HIGH
Network 		orientdb orientdb The JSONP endpoint in the Studio component in OrientDB Server Community Edition before 2.0.15 and 2.1.x before 2.1.1 does not properly restrict callback values, which allows remote attackers to condu… CWE-352
 Origin Validation Error 		CVE-2015-2912 2024-11-21 11:28 2015-12-31 Show GitHub Exploit DB Packet Storm
275273 5.3 MEDIUM
Network 		idera uptime_infrastructure_monitor The up.time client in Idera Uptime Infrastructure Monitor through 7.6 allows remote attackers to obtain potentially sensitive version, OS, process, and event-log information via a command. CWE-200
Information Exposure 		CVE-2015-2896 2024-11-21 11:28 2015-12-31 Show GitHub Exploit DB Packet Storm
275274 7.3 HIGH
Network 		idera uptime_infrastructure_monitor Buffer overflow in the up.time client in Idera Uptime Infrastructure Monitor 7.4 might allow remote attackers to execute arbitrary code via long command input. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-2895 2024-11-21 11:28 2015-12-31 Show GitHub Exploit DB Packet Storm
275275 5.3 MEDIUM
Network 		idera uptime_infrastructure_monitor Format string vulnerability in the up.time client in Idera Uptime Infrastructure Monitor 6.0 and 7.2 allows remote attackers to cause a denial of service (application crash) via format string specifi… CWE-134
Use of Externally-Controlled Format String 		CVE-2015-2894 2024-11-21 11:28 2015-12-31 Show GitHub Exploit DB Packet Storm
275276 8.8 HIGH
Adjacent 		lacie
seagate 		lac9000436u_firmware
lac9000464u_firmware
wireless_mobile_storage
wireless_plus_mobile_storage
goflex_sattelite 		Unrestricted file upload vulnerability on Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie FUEL devices with firmware before 3.4.1.105 allows… NVD-CWE-Other
CVE-2015-2876 2024-11-21 11:28 2015-12-31 Show GitHub Exploit DB Packet Storm
275277 7.5 HIGH
Network 		seagate
lacie 		goflex_sattelite
wireless_mobile_storage
wireless_plus_mobile_storage
lac9000436u_firmware
lac9000464u_firmware 		Absolute path traversal vulnerability on Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie FUEL devices with firmware before 3.4.1.105 allows … CWE-22
Path Traversal 		CVE-2015-2875 2024-11-21 11:28 2015-12-31 Show GitHub Exploit DB Packet Storm
275278 9.8 CRITICAL
Network 		seagate
lacie 		wireless_mobile_storage
wireless_plus_mobile_storage
lac9000436u_firmware
lac9000464u_firmware
goflex_sattelite 		Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie FUEL devices with firmware before 3.4.1.105 have a default password of root for the root acc… CWE-255
Credentials Management 		CVE-2015-2874 2024-11-21 11:28 2015-12-31 Show GitHub Exploit DB Packet Storm
275279 5.3 MEDIUM
Network 		samba samba The ldb_wildcard_compare function in ldb_match.c in ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles certain zero va… CWE-189
CWE-399
Numeric Errors
 Resource Management Errors 		CVE-2015-3223 2024-11-21 11:28 2015-12-30 Show GitHub Exploit DB Packet Storm
275280 7.5 HIGH
Network 		openssl
canonical
debian
nodejs 		openssl
ubuntu_linux
debian_linux
node.js 		crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.… CWE-476
 NULL Pointer Dereference 		CVE-2015-3194 2024-11-21 11:28 2015-12-7 Show GitHub Exploit DB Packet Storm