Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228241	7.5	危険	TYPO3 Association	-	TYPO3 用の XDS Staff List エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4392	2012-12-20 19:28	2009-12-22	Show	GitHub Exploit DB Packet Storm

228242	5	警告	robert puntigam	-	TYPO3 用の watchdog エクステンションにおける重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2009-4389	2012-12-20 19:28	2009-12-22	Show	GitHub Exploit DB Packet Storm

228243	6.8	警告	Scriptsez.net	-	Scriptsez.net EPH におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4385	2012-12-20 19:28	2009-12-22	Show	GitHub Exploit DB Packet Storm

228244	4.3	警告	Scriptsez.net	-	Scriptsez.net EPH におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4384	2012-12-20 19:28	2009-12-22	Show	GitHub Exploit DB Packet Storm

228245	4.3	警告	phpfaber	-	PHPFABER CMS の module.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4382	2012-12-20 19:28	2009-12-22	Show	GitHub Exploit DB Packet Storm

228246	4.3	警告	texmedia	-	texmedia Million Pixel Script の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4381	2012-12-20 19:28	2009-12-22	Show	GitHub Exploit DB Packet Storm

228247	7.5	危険	Wafer	-	Valarsoft Webmatic における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4380	2012-12-20 19:28	2009-12-14	Show	GitHub Exploit DB Packet Storm

228248	4.3	警告	Wafer	-	Valarsoft Webmatic におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4379	2012-12-20 19:28	2009-12-14	Show	GitHub Exploit DB Packet Storm

228249	4.3	警告	Wireshark	-	Windows 上で稼動している Wireshark の IPMI 解析子におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-4378	2012-12-20 19:28	2009-12-17	Show	GitHub Exploit DB Packet Storm

228250	9.3	危険	Wireshark	-	Wireshark の Daintree SNA ファイルパーサーにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4376	2012-12-20 19:28	2009-12-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
274571	-	atutor	atutor	Multiple eval injection vulnerabilities in mods/_standard/gradebook/edit_marks.php in ATutor 2.2 and earlier allow remote authenticated users with the AT_PRIV_GRADEBOOK privilege to execute arbitrary…	NVD-CWE-Other	CVE-2015-7712	2024-11-21 11:37	2015-11-17	Show	GitHub Exploit DB Packet Storm

274572	-	linux	linux_kernel	The key_gc_unused_keys function in security/keys/gc.c in the Linux kernel through 4.2.6 allows local users to cause a denial of service (OOPS) via crafted keyctl commands.	CWE-20 Improper Input Validation	CVE-2015-7872	2024-11-21 11:37	2015-11-16	Show	GitHub Exploit DB Packet Storm

274573	-	oracle wireshark	solaris wireshark	The pcapng_read_if_descr_block function in wiretap/pcapng.c in the pcapng parser in Wireshark 1.12.x before 1.12.8 uses too many levels of pointer indirection, which allows remote attackers to cause …	CWE-20 Improper Input Validation	CVE-2015-7830	2024-11-21 11:37	2015-11-15	Show	GitHub Exploit DB Packet Storm

274574	-	pc-egg	pwebmanager	PC-EGG pWebManager before 3.3.10, and before 2.2.2 for PHP 4.x, allows remote authenticated users to execute arbitrary OS commands by leveraging the editor role.	CWE-78 OS Command	CVE-2015-7774	2024-11-21 11:37	2015-11-14	Show	GitHub Exploit DB Packet Storm

274575	-	unitronics	visilogic_oplc_ide	Unitronics VisiLogic OPLC IDE before 9.8.02 allows remote attackers to execute unspecified code via unknown vectors.	CWE-94 Code Injection	CVE-2015-7905	2024-11-21 11:37	2015-11-13	Show	GitHub Exploit DB Packet Storm

274576	-	lenovo ibm	switch_center system_networking_switch_center	Race condition in the administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privilege…	CWE-362 Race Condition	CVE-2015-7820	2024-11-21 11:37	2015-11-12	Show	GitHub Exploit DB Packet Storm

274577	-	lenovo ibm	switch_center system_networking_switch_center	The DB service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain sensitive administrator-account information via a…	CWE-255 Credentials Management	CVE-2015-7819	2024-11-21 11:37	2015-11-12	Show	GitHub Exploit DB Packet Storm

274578	-	ibm lenovo	system_networking_switch_center switch_center	The administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows local users to execute arbitrary JSP code with SYSTEM …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-7818	2024-11-21 11:37	2015-11-12	Show	GitHub Exploit DB Packet Storm

274579	-	ibm lenovo	system_networking_switch_center switch_center	Race condition in the administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privilege…	CWE-362 Race Condition	CVE-2015-7817	2024-11-21 11:37	2015-11-12	Show	GitHub Exploit DB Packet Storm

274580	-	adobe	air air_sdk air_sdk_\&_compiler flash_player	Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before…	NVD-CWE-Other	CVE-2015-8046	2024-11-21 11:37	2015-11-11	Show	GitHub Exploit DB Packet Storm