Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228131	9	危険	Codeorigin	-	Sysax Multi Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4790	2012-12-20 19:28	2010-04-22	Show	GitHub Exploit DB Packet Storm

228132	7.2	危険	tukeva	-	TUKEVA Password Reminder における資格情報を発見される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-4781	2012-12-20 19:28	2010-04-21	Show	GitHub Exploit DB Packet Storm

228133	7.5	危険	robert garrigos	-	NukeHall における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-4779	2012-12-20 19:28	2010-04-21	Show	GitHub Exploit DB Packet Storm

228134	4.3	警告	Plohni	-	Plohni Shoutbox の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4767	2012-12-20 19:28	2010-04-20	Show	GitHub Exploit DB Packet Storm

228135	5	警告	yasirpro	-	YP Portal MS-Pro Surumu におけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4766	2012-12-20 19:28	2010-04-13	Show	GitHub Exploit DB Packet Storm

228136	6.8	警告	phpmyvisites	-	phpMyVisites に使用されている ClickHeat プラグインにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-4763	2012-12-20 19:28	2010-03-30	Show	GitHub Exploit DB Packet Storm

228137	5	警告	Winn GuestBook	-	Winn ASP Guestbook におけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4760	2012-12-20 19:28	2010-03-29	Show	GitHub Exploit DB Packet Storm

228138	7.5	危険	phppower	-	Swinger Club Portal の anzeiger/start.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-4752	2012-12-20 19:28	2010-03-26	Show	GitHub Exploit DB Packet Storm

228139	7.5	危険	phppower	-	Swinger Club Portal の anzeiger/start.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4751	2012-12-20 19:28	2010-03-26	Show	GitHub Exploit DB Packet Storm

228140	6.8	警告	phppower	-	Top Paidmailer の home.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-4750	2012-12-20 19:28	2010-03-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
274361	7.8	HIGH Local	exfat_project	exfat	Heap-based buffer overflow in the verify_vbr_checksum function in exfatfsck in exfat-utils before 1.2.1 allows remote attackers to cause a denial of service (infinite loop) or possibly execute arbitr…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-8026	2024-11-21 11:37	2017-03-28	Show	GitHub Exploit DB Packet Storm

274362	8.1	HIGH Network	windriver	vxworks	Integer overflow in the _authenticate function in svc_auth.c in Wind River VxWorks 5.5 through 6.9.4.1, when the Remote Procedure Call (RPC) protocol is enabled, allows remote attackers to cause a de…	CWE-190 Integer Overflow or Wraparound	CVE-2015-7599	2024-11-21 11:37	2017-02-8	Show	GitHub Exploit DB Packet Storm

274363	3.3	LOW Local	saltstack	salt	The state.sls function in Salt before 2015.8.3 uses weak permissions on the cache data, which allows local users to obtain sensitive information by reading the file.	CWE-200 Information Exposure	CVE-2015-8034	2024-11-21 11:37	2017-01-31	Show	GitHub Exploit DB Packet Storm

274364	7.5	HIGH Network	ntp	ntp	NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (client-server association tear down) by sending broadcast packets with invalid authentication to a bro…	CWE-19 Data Processing Errors	CVE-2015-7979	2024-11-21 11:37	2017-01-31	Show	GitHub Exploit DB Packet Storm

274365	7.5	HIGH Network	ntp	ntp	NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a denial of service (stack exhaustion) via an ntpdc relist command, which triggers recursive traversal of the restriction…	CWE-400 Uncontrolled Resource Consumption	CVE-2015-7978	2024-11-21 11:37	2017-01-31	Show	GitHub Exploit DB Packet Storm

274366	5.9	MEDIUM Network	ntp oracle siemens netapp freebsd fedoraproject debian canonical	ntp linux tim_4r-ie_firmware tim_4r-ie_dnp3_firmware oncommand_balance clustered_data_ontap freebsd fedora debian_linux ubuntu_linux	ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (NULL pointer dereference) via a ntpdc reslist command.	CWE-476 NULL Pointer Dereference	CVE-2015-7977	2024-11-21 11:37	2017-01-31	Show	GitHub Exploit DB Packet Storm

274367	4.3	MEDIUM Network	ntp suse novell opensuse	ntp linux_enterprise_server linux_enterprise_debuginfo manager_proxy manager linux_enterprise_desktop suse_openstack_cloud leap opensuse suse_linux_enterprise_server	The ntpq saveconfig command in NTP 4.1.2, 4.2.x before 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows attackers to cause unspecified impact via a c…	CWE-254 7PK - Security Features	CVE-2015-7976	2024-11-21 11:37	2017-01-31	Show	GitHub Exploit DB Packet Storm

274368	6.2	MEDIUM Local	ntp	ntp	The nextvar function in NTP before 4.2.8p6 and 4.3.x before 4.3.90 does not properly validate the length of its input, which allows an attacker to cause a denial of service (application crash).	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7975	2024-11-21 11:37	2017-01-31	Show	GitHub Exploit DB Packet Storm

274369	6.5	MEDIUM Network	ntp siemens freebsd netapp canonical	ntp tim_4r-ie_firmware tim_4r-ie_dnp3_firmware freebsd oncommand_balance clustered_data_ontap ubuntu_linux	NTP before 4.2.8p6 and 4.3.x before 4.3.90, when configured in broadcast mode, allows man-in-the-middle attackers to conduct replay attacks by sniffing the network.	CWE-254 7PK - Security Features	CVE-2015-7973	2024-11-21 11:37	2017-01-31	Show	GitHub Exploit DB Packet Storm

274370	6.5	MEDIUM Network	paessler	prtg_network_monitor	XML external entity vulnerability in PRTG Network Monitor before 16.2.23.3077/3078 allows remote authenticated users to read arbitrary files by creating a new HTTP XML/REST Value sensor that accesses…	CWE-611 XXE	CVE-2015-7743	2024-11-21 11:37	2017-01-24	Show	GitHub Exploit DB Packet Storm