Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229711	7.5	危険	xigla	-	Absolute Form Processor XE における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-1504	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

229712	7.5	危険	tigerdms	-	Tiger DMS の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1503	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

229713	6.8	警告	projectcms	-	ProjectCMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1500	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

229714	5	警告	webfileexplorer	-	Web File Explorer におけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1495	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

229715	5	警告	Sendmail Consortium	-	Sendmail におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1490	2012-12-20 19:10	2009-05-5	Show	GitHub Exploit DB Packet Storm

229716	7.5	危険	rens rikkerink	-	Fungamez の includes/user.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-1489	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

229717	6.8	警告	rens rikkerink	-	FunGamez の admin/load.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1488	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

229718	7.5	危険	rens rikkerink	-	FunGamez の pages/login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1487	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

229719	6.8	警告	studiolounge	-	index2.php から到達可能な Adam Patterson Studio Lounge Address Book における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2009-1483	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

229720	7.5	危険	pjhome	-	PJBlog3 の action.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1481	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292261	-	hp	sitescope	Unspecified vulnerability in the loadFileContents function in the SOAP implementation in HP SiteScope 10.1x, 11.1x, and 11.21 allows remote attackers to read arbitrary files or cause a denial of serv…	NVD-CWE-noinfo	CVE-2013-6207	2024-11-21 10:58	2014-03-11	Show	GitHub Exploit DB Packet Storm

292262	-	aker	secure_mail_gateway	Cross-site scripting (XSS) vulnerability in index.php in Aker Secure Mail Gateway 2.5.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the msg_id parameter.	CWE-79 Cross-site Scripting	CVE-2013-6037	2024-11-21 10:58	2014-03-11	Show	GitHub Exploit DB Packet Storm

292263	-	huawei	e355_firmware e355	The Huawei E355 adapter with firmware 21.157.37.01.910 does not require authentication for API pages, which allows remote attackers to change passwords and settings, or obtain sensitive information, …	CWE-287 Improper Authentication	CVE-2013-6031	2024-11-21 10:58	2014-03-11	Show	GitHub Exploit DB Packet Storm

292264	-	eng	spagobi	Cross-site scripting (XSS) vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via the Description field in the "Short document metadata."	CWE-79 Cross-site Scripting	CVE-2013-6233	2024-11-21 10:58	2014-03-9	Show	GitHub Exploit DB Packet Storm

292265	-	eng	spagobi	Cross-site scripting (XSS) vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via a document note in the execution page.	CWE-79 Cross-site Scripting	CVE-2013-6232	2024-11-21 10:58	2014-03-9	Show	GitHub Exploit DB Packet Storm

292266	-	ibm	enterprise_records infosphere_enterprise_records	IBM InfoSphere Enterprise Records 4.5.1 before 4.5.1.7-IER-IF001 and Enterprise Records 5.1.1 before 5.1.1.1-IER-IF003 do not properly restrict use of FRAME elements, which makes it easier for remote…	CWE-20 Improper Input Validation	CVE-2013-6315	2024-11-21 10:58	2014-03-6	Show	GitHub Exploit DB Packet Storm

292267	-	ibm	enterprise_records infosphere_enterprise_records	Cross-site scripting (XSS) vulnerability in IBM InfoSphere Enterprise Records 4.5.1 before 4.5.1.7-IER-IF001 and Enterprise Records 5.1.1 before 5.1.1.1-IER-IF003 allows remote authenticated users to…	CWE-79 Cross-site Scripting	CVE-2013-6314	2024-11-21 10:58	2014-03-6	Show	GitHub Exploit DB Packet Storm

292268	-	ibm	algo_risk_application algo_one	Multiple directory traversal vulnerabilities in Algo Risk Application (ARA) 2.4.0.1 through 4.9.1 in IBM Algo One allow remote authenticated users to bypass intended access restrictions via a crafted…	CWE-22 Path Traversal	CVE-2013-6304	2024-11-21 10:58	2014-03-6	Show	GitHub Exploit DB Packet Storm

292269	-	hp	security_management_system	Unspecified vulnerability in HP Security Management System 3.3.0, 3.5.0 before patch 1, and 3.6.0 before patch 2 allows remote attackers to execute arbitrary code via unknown vectors.	NVD-CWE-noinfo	CVE-2013-6201	2024-11-21 10:58	2014-03-6	Show	GitHub Exploit DB Packet Storm

292270	-	ibm	algo_one	Cross-site scripting (XSS) vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and A…	CWE-79 Cross-site Scripting	CVE-2013-6320	2024-11-21 10:58	2014-03-5	Show	GitHub Exploit DB Packet Storm