Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229611	7.5	危険	script-shop24	-	LM Starmail Paidmail の home.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-4993	2012-12-20 19:28	2010-08-25	Show	GitHub Exploit DB Packet Storm

229612	7.5	危険	script-shop24	-	LM Starmail Paidmail の paidbanner.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4992	2012-12-20 19:28	2010-08-25	Show	GitHub Exploit DB Packet Storm

229613	10	危険	SAP	-	SAP Business One の NT_Naming_Service.exe におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4988	2012-12-20 19:28	2010-08-25	Show	GitHub Exploit DB Packet Storm

229614	7.5	危険	scripteen	-	Scripteen Free Image Hosting Script の admin/header.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-4987	2012-12-20 19:28	2010-08-25	Show	GitHub Exploit DB Packet Storm

229615	7.5	危険	websitesrus	-	Accessories Me PHP Affiliate Script の browse.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4985	2012-12-20 19:28	2010-08-25	Show	GitHub Exploit DB Packet Storm

229616	4.3	警告	websitesrus	-	Accessories Me PHP Affiliate Script におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4984	2012-12-20 19:28	2010-08-25	Show	GitHub Exploit DB Packet Storm

229617	4.3	警告	snowhall	-	Silurus Classifieds におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4983	2012-12-20 19:28	2010-08-25	Show	GitHub Exploit DB Packet Storm

229618	5	警告	tufat	-	MyBackup の down.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4978	2012-12-20 19:28	2010-08-25	Show	GitHub Exploit DB Packet Storm

229619	6.5	警告	tufat	-	MyBackup の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-4977	2012-12-20 19:28	2010-08-25	Show	GitHub Exploit DB Packet Storm

229620	7.5	危険	sweetphp	-	TotalCalendar の box_display.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4974	2012-12-20 19:28	2010-07-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293231	-	hp	sitescope	Unspecified vulnerability in the loadFileContents function in the SOAP implementation in HP SiteScope 10.1x, 11.1x, and 11.21 allows remote attackers to read arbitrary files or cause a denial of serv…	NVD-CWE-noinfo	CVE-2013-6207	2024-11-21 10:58	2014-03-11	Show	GitHub Exploit DB Packet Storm

293232	-	aker	secure_mail_gateway	Cross-site scripting (XSS) vulnerability in index.php in Aker Secure Mail Gateway 2.5.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the msg_id parameter.	CWE-79 Cross-site Scripting	CVE-2013-6037	2024-11-21 10:58	2014-03-11	Show	GitHub Exploit DB Packet Storm

293233	-	huawei	e355_firmware e355	The Huawei E355 adapter with firmware 21.157.37.01.910 does not require authentication for API pages, which allows remote attackers to change passwords and settings, or obtain sensitive information, …	CWE-287 Improper Authentication	CVE-2013-6031	2024-11-21 10:58	2014-03-11	Show	GitHub Exploit DB Packet Storm

293234	-	eng	spagobi	Cross-site scripting (XSS) vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via the Description field in the "Short document metadata."	CWE-79 Cross-site Scripting	CVE-2013-6233	2024-11-21 10:58	2014-03-9	Show	GitHub Exploit DB Packet Storm

293235	-	eng	spagobi	Cross-site scripting (XSS) vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via a document note in the execution page.	CWE-79 Cross-site Scripting	CVE-2013-6232	2024-11-21 10:58	2014-03-9	Show	GitHub Exploit DB Packet Storm

293236	-	ibm	enterprise_records infosphere_enterprise_records	IBM InfoSphere Enterprise Records 4.5.1 before 4.5.1.7-IER-IF001 and Enterprise Records 5.1.1 before 5.1.1.1-IER-IF003 do not properly restrict use of FRAME elements, which makes it easier for remote…	CWE-20 Improper Input Validation	CVE-2013-6315	2024-11-21 10:58	2014-03-6	Show	GitHub Exploit DB Packet Storm

293237	-	ibm	enterprise_records infosphere_enterprise_records	Cross-site scripting (XSS) vulnerability in IBM InfoSphere Enterprise Records 4.5.1 before 4.5.1.7-IER-IF001 and Enterprise Records 5.1.1 before 5.1.1.1-IER-IF003 allows remote authenticated users to…	CWE-79 Cross-site Scripting	CVE-2013-6314	2024-11-21 10:58	2014-03-6	Show	GitHub Exploit DB Packet Storm

293238	-	ibm	algo_risk_application algo_one	Multiple directory traversal vulnerabilities in Algo Risk Application (ARA) 2.4.0.1 through 4.9.1 in IBM Algo One allow remote authenticated users to bypass intended access restrictions via a crafted…	CWE-22 Path Traversal	CVE-2013-6304	2024-11-21 10:58	2014-03-6	Show	GitHub Exploit DB Packet Storm

293239	-	hp	security_management_system	Unspecified vulnerability in HP Security Management System 3.3.0, 3.5.0 before patch 1, and 3.6.0 before patch 2 allows remote attackers to execute arbitrary code via unknown vectors.	NVD-CWE-noinfo	CVE-2013-6201	2024-11-21 10:58	2014-03-6	Show	GitHub Exploit DB Packet Storm

293240	-	ibm	algo_one	Cross-site scripting (XSS) vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and A…	CWE-79 Cross-site Scripting	CVE-2013-6320	2024-11-21 10:58	2014-03-5	Show	GitHub Exploit DB Packet Storm