Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229821 7.5 危険 rentventory - Rentventory の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2339 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
229822 6.8 警告 w3bcms - w3b|cms Gaestebuch Guestbook Module の includes/module/book/index.inc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2337 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
229823 5 警告 WordPress.org - WordPress および WordPress MU における有効なユーザ名を列挙される脆弱性 CWE-16
環境設定 		CVE-2009-2336 2012-12-20 19:10 2009-07-10 Show GitHub Exploit DB Packet Storm
229824 5 警告 WordPress.org - WordPress および WordPress MU における有効なユーザ名を列挙される脆弱性 CWE-16
環境設定 		CVE-2009-2335 2012-12-20 19:10 2009-07-10 Show GitHub Exploit DB Packet Storm
229825 4.9 警告 WordPress.org - WordPress および WordPress MU の wp-admin/admin.php における重要な情報を取得される脆弱性 CWE-287
不適切な認証 		CVE-2009-2334 2012-12-20 19:10 2009-07-9 Show GitHub Exploit DB Packet Storm
229826 2.1 注意 サン・マイクロシステムズ - Solaris 上の Sun Lightweight Availability Collection Tool における任意のファイルを上書きされる脆弱性 CWE-362
競合状態 		CVE-2009-2314 2012-12-20 19:10 2009-07-2 Show GitHub Exploit DB Packet Storm
229827 7.5 危険 selbstzweck - WBB3 用の rGallery プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2311 2012-12-20 19:10 2009-07-2 Show GitHub Exploit DB Packet Storm
229828 7.5 危険 punres - PunBB 用の Affiliation モジュールの affiliates.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2308 2012-12-20 19:10 2009-07-2 Show GitHub Exploit DB Packet Storm
229829 7.5 危険 tutorial-share - Optimum Web Design Tutorial Share における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2293 2012-12-20 19:10 2009-07-1 Show GitHub Exploit DB Packet Storm
229830 4.3 警告 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2284 2012-12-20 19:10 2009-06-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292041 - debian adequate Debian adequate before 0.8.1, when run by root with the --user option, allows local users to hijack the tty and possibly gain privileges via the TIOCSTI ioctl. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6409 2024-11-21 10:59 2013-12-8 Show GitHub Exploit DB Packet Storm
292042 - apache solr The DocumentAnalysisRequestHandler in Apache Solr before 4.3.1 does not properly use the EmptyEntityResolver, which allows remote attackers to have an unspecified impact via XML data containing an ex… NVD-CWE-noinfo
CVE-2013-6408 2024-11-21 10:59 2013-12-8 Show GitHub Exploit DB Packet Storm
292043 - apache solr The UpdateRequestHandler for XML in Apache Solr before 4.1 allows remote attackers to have an unspecified impact via XML data containing an external entity declaration in conjunction with an entity r… NVD-CWE-noinfo
CVE-2013-6407 2024-11-21 10:59 2013-12-8 Show GitHub Exploit DB Packet Storm
292044 - apache solr Directory traversal vulnerability in SolrResourceLoader in Apache Solr before 4.6 allows remote attackers to read arbitrary files via a .. (dot dot) or full pathname in the tr parameter to solr/selec… CWE-22
Path Traversal 		CVE-2013-6397 2024-11-21 10:59 2013-12-8 Show GitHub Exploit DB Packet Storm
292045 - cisco adaptive_security_appliance_software Memory leak in the connection-manager implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1(.3) and earlier allows remote attackers to cause a denial of service (multi-protocol manag… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2013-6707 2024-11-21 10:59 2013-12-7 Show GitHub Exploit DB Packet Storm
292046 - siemens sinamics_s\/g_family_firmware
sinamics_g110
sinamics_g110d
sinamics_g120
sinamics_g120c
sinamics_g120d
sinamics_g120p
sinamics_g130
sinamics_g150
sinamics_g180
sinamics_… 		Siemens SINAMICS S/G controllers with firmware before 4.6.11 do not require authentication for FTP and TELNET sessions, which allows remote attackers to bypass intended access restrictions via TCP tr… CWE-287
Improper Authentication 		CVE-2013-6920 2024-11-21 10:59 2013-12-7 Show GitHub Exploit DB Packet Storm
292047 - google chrome
v8 		The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of servi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-6640 2024-11-21 10:59 2013-12-7 Show GitHub Exploit DB Packet Storm
292048 - google chrome
v8 		The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of servi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-6639 2024-11-21 10:59 2013-12-7 Show GitHub Exploit DB Packet Storm
292049 - google chrome
v8 		Multiple buffer overflows in runtime.cc in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allow remote attackers to cause a denial of service or possibly have unspecified o… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-6638 2024-11-21 10:59 2013-12-7 Show GitHub Exploit DB Packet Storm
292050 - google chrome Multiple unspecified vulnerabilities in Google Chrome before 31.0.1650.63 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. NVD-CWE-noinfo
CVE-2013-6637 2024-11-21 10:59 2013-12-7 Show GitHub Exploit DB Packet Storm