Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228231	7.5	危険	phpgroupware	-	phpGroupWare におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4415	2012-12-20 19:28	2009-12-24	Show	GitHub Exploit DB Packet Storm

228232	6.8	警告	phpgroupware	-	phpGroupWare の phpgwapi /inc/class.auth_sql.inc.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4414	2012-12-20 19:28	2009-12-24	Show	GitHub Exploit DB Packet Storm

228233	5	警告	pps.jussieu	-	Polipo の client.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2009-4413	2012-12-20 19:28	2009-12-24	Show	GitHub Exploit DB Packet Storm

228234	6	警告	s9y	-	Serendipity における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2009-4412	2012-12-20 19:28	2009-12-21	Show	GitHub Exploit DB Packet Storm

228235	3.7	注意	xfs	-	XFS acl の setfacl および getfacl コマンドにおける任意のファイルなど対する ACL を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4411	2012-12-20 19:28	2009-12-24	Show	GitHub Exploit DB Packet Storm

228236	4.3	警告	pyforum	-	PyForum および zForum の models.parser におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4408	2012-12-20 19:28	2009-12-23	Show	GitHub Exploit DB Packet Storm

228237	6.8	警告	pyforum	-	PyForum などにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4407	2012-12-20 19:28	2009-12-23	Show	GitHub Exploit DB Packet Storm

228238	4.3	警告	rumbacms	-	Rumba XML の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4403	2012-12-20 19:28	2009-12-23	Show	GitHub Exploit DB Packet Storm

228239	7.5	危険	sql-ledger	-	SQL-Ledger の初期設定における管理操作を実行される脆弱性	CWE-16 環境設定	CVE-2009-4402	2012-12-20 19:28	2009-12-23	Show	GitHub Exploit DB Packet Storm

228240	7.5	危険	fr.simon rundell TYPO3 Association	-	TYPO3 用の Portsmouth Resources Database エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4396	2012-12-20 19:28	2009-12-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2191	8.8	HIGH Network	freerdp	freerdp	FreeRDP before 3.26.0 contains a heap-buffer-overflow vulnerability in gdi_CacheToSurface that allows remote attackers to write out-of-bounds heap memory. The vulnerability occurs because rectangle v…	CWE-122 Heap-based Buffer Overflow	CVE-2026-40033	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

2192	-		-	-	In the Linux kernel, the following vulnerability has been resolved: bpf: Fix use-after-free in arena_vm_close on fork arena_vm_open() only bumps vml->mmap_count but never registers the child VMA in…	-	CVE-2026-45837	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

2193	-		-	-	In the Linux kernel, the following vulnerability has been resolved: fat: avoid parent link count underflow in rmdir Corrupted FAT images can leave a directory inode with an incorrect i_nlink (e.g. …	-	CVE-2026-45915	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

2194	-		-	-	In the Linux kernel, the following vulnerability has been resolved: ipvs: do not keep dest_dst if dev is going down There is race between the netdev notifier ip_vs_dst_event() and the code that cac…	-	CVE-2026-45917	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

2195	-		-	-	In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtd_parser_tplink_safeloader_parse() The function mtd_parser_tplink_safeloader_parse() allocates…	-	CVE-2026-45921	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

2196	-		-	-	In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix memory leak in GET_DATA_DIRECT_SYSFS_PATH handler The UVERBS_HANDLER(MLX5_IB_METHOD_GET_DATA_DIRECT_SYSFS_PATH) fu…	-	CVE-2026-45922	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

2197	-		-	-	In the Linux kernel, the following vulnerability has been resolved: thermal/of: Fix reference leak in thermal_of_cm_lookup() In thermal_of_cm_lookup(), tr_np is obtained via of_parse_phandle(), but…	-	CVE-2026-45925	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

2198	-		-	-	In the Linux kernel, the following vulnerability has been resolved: rust: pwm: Fix potential memory leak on init error When initializing a PWM chip using pwmchip_alloc(), the allocated device owns …	-	CVE-2026-45926	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

2199	-		-	-	In the Linux kernel, the following vulnerability has been resolved: bpf: Require frozen map for calculating map hash Currently, bpf_map_get_info_by_fd calculates and caches the hash of the map rega…	-	CVE-2026-45927	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

2200	-		-	-	In the Linux kernel, the following vulnerability has been resolved: media: chips-media: wave5: Fix memory leak on codec_info allocation failure In wave5_vpu_open_enc() and wave5_vpu_open_dec(), a v…	-	CVE-2026-45928	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm