Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228041 6.5 警告 tufat - MyBackup の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4977 2012-12-20 19:28 2010-08-25 Show GitHub Exploit DB Packet Storm
228042 7.5 危険 sweetphp - TotalCalendar の box_display.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4974 2012-12-20 19:28 2010-07-28 Show GitHub Exploit DB Packet Storm
228043 7.5 危険 sweetphp - TotalCalendar の rss.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4973 2012-12-20 19:28 2010-07-28 Show GitHub Exploit DB Packet Storm
228044 7.5 危険 vincent tietz - TYPO3 用の AJAX Chat エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4971 2012-12-20 19:28 2010-07-28 Show GitHub Exploit DB Packet Storm
228045 7.5 危険 typo3-macher - TYPO3 用の t3m_affiliate エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4970 2012-12-20 19:28 2010-07-28 Show GitHub Exploit DB Packet Storm
228046 7.5 危険 TYPO3 Association - TYPO3 用の SBbanner エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4969 2012-12-20 19:28 2010-07-28 Show GitHub Exploit DB Packet Storm
228047 7.5 危険 thomas waggershauser - TYPO3 用の AIRware Lexicon エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4965 2012-12-20 19:28 2010-07-28 Show GitHub Exploit DB Packet Storm
228048 5 警告 ViewVC - ViewVC における非公開 root 名を発見される脆弱性 CWE-200
情報漏えい 		CVE-2010-0004 2012-12-20 19:28 2009-12-2 Show GitHub Exploit DB Packet Storm
228049 4.3 警告 Urs Wolfer - kwebkitpart の webkitpart.cpp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4976 2012-12-20 19:28 2009-12-5 Show GitHub Exploit DB Packet Storm
228050 3.5 注意 TYPO3 Association - TYPO3 用の Commerce エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4963 2012-12-20 19:28 2010-07-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345791 - scriptscenter ezupload_pro SQL injection vulnerability in ezUpload Pro 2.2 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified search module parameters. NVD-CWE-Other
CVE-2005-4309 2017-07-20 10:29 2005-12-17 Show GitHub Exploit DB Packet Storm
345792 - almondsoft almond_personals SQL injection vulnerability in index.php in AlmondSoft Almond Personals 4.05 allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2005-4313 2017-07-20 10:29 2005-12-17 Show GitHub Exploit DB Packet Storm
345793 - hitachi cosminexus_collaboration_portal
groupmax_collaboration_portal
groupmax_collaboration_web_client 		Multiple cross-site scripting (XSS) vulnerabilities in Hitachi Cosminexus Collaboration Portal 06-00 through 06-10-/B, Groupmax Collaboration Portal 07-00 through 07-10-/B, and Groupmax Collaboration… NVD-CWE-Other
CVE-2005-4322 2017-07-20 10:29 2005-12-17 Show GitHub Exploit DB Packet Storm
345794 - hitachi cosminexus_collaboration_portal
groupmax_collaboration_portal
groupmax_collaboration_web_client 		Unspecified vulnerability in Hitachi Cosminexus Collaboration Portal 06-00 through 06-10-/B, Groupmax Collaboration Portal 07-00 through 07-10-/B, and Groupmax Collaboration Web Client 07-00 through … NVD-CWE-Other
CVE-2005-4323 2017-07-20 10:29 2005-12-17 Show GitHub Exploit DB Packet Storm
345795 - driverse driverse Multiple unspecified vulnerabilities in Driverse before 0.56b have unknown impact and attack vectors, related to (1) a "ptrace exploit" and (2) "some other potential security problems." NVD-CWE-Other
CVE-2005-4325 2017-07-20 10:29 2005-12-17 Show GitHub Exploit DB Packet Storm
345796 - apc powerchute_network_shutdown The web interface for American Power Conversion (APC) PowerChute Network Shutdown performs all communication in cleartext (base64-encoded), which allows remote attackers to sniff authentication crede… NVD-CWE-Other
CVE-2005-4326 2017-07-20 10:29 2005-12-17 Show GitHub Exploit DB Packet Storm
345797 - anthony_boyd phpbb_blog Invalid SQL syntax error in blog.php in phpBB Blog 2.2.2 and earlier allows remote attackers to obtain the full path of the application via an invalid permalink parameter to index.php, which produces… NVD-CWE-Other
CVE-2005-4346 2017-07-20 10:29 2005-12-19 Show GitHub Exploit DB Packet Storm
345798 - dragonfly
freebsd
linux
openbsd 		dragonfly
freebsd
linux_kernel
openbsd 		The securelevels implementation in FreeBSD 7.0 and earlier, OpenBSD up to 3.8, DragonFly up to 1.2, and Linux up to 2.6.15 allows root users to bypass immutable settings for files by mounting another… NVD-CWE-Other
CVE-2005-4351 2017-07-20 10:29 2005-12-31 Show GitHub Exploit DB Packet Storm
345799 - box_uk amaxus Directory traversal vulnerability in Amaxus 3 and earlier allows remote attackers to access arbitrary files via ".." sequences in the change parameter. NVD-CWE-Other
CVE-2005-4376 2017-07-20 10:29 2005-12-20 Show GitHub Exploit DB Packet Storm
345800 - - - Multiple cross-site scripting (XSS) vulnerabilities in Bitweaver 1.1 and 1.1.1 beta allow remote attackers to inject arbitrary web script or HTML via the (1) sort_mode parameter to (a) fisheye/list_g… NVD-CWE-Other
CVE-2005-4379 2017-07-20 10:29 2005-12-20 Show GitHub Exploit DB Packet Storm