Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 4:11 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229851	7.5	危険	torrenttrader	-	TorrentTrader Classic の account-recover.php におけるパスワードを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-2158	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

229852	6.5	警告	torrenttrader	-	TorrentTrader Classic における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2157	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

229853	3.5	注意	torrenttrader	-	TorrentTrader Classic におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2156	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

229854	4.3	警告	Zoho Corporation	-	WebNMS Free の report/ReportViewAction.do におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2155	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

229855	6.8	警告	sappy.dk	-	Impleo Music Collection の admin/login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2154	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

229856	4.3	警告	sappy.dk	-	Impleo Music Collection の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2153	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

229857	7.5	危険	phpwebthings	-	phpWebThings の fdown.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2147	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

229858	6	警告	SugarCRM	-	Sugar Community Edition の Emails モジュールにおける任意のコードを実行される脆弱性	CWE-Other その他	CVE-2009-2146	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

229859	7.5	危険	zipstore	-	Zip Store Chat の admin/index.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2142	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

229860	4.3	警告	tbdev	-	TBDev.NET におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2141	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292161	-	yahoo	yui	Cross-site scripting (XSS) vulnerability in uploader.swf in the Uploader component in Yahoo! YUI 2.5.0 through 2.9.0 allows remote attackers to inject arbitrary web script or HTML via the allowedDoma…	CWE-79 Cross-site Scripting	CVE-2013-6780	2024-11-21 10:59	2013-11-14	Show	GitHub Exploit DB Packet Storm

292162	-	cisco	unified_ip_phone_firmware unified_ip_phone_8961 unified_ip_phone_9951 unified_ip_phone_9971	The firmware on Cisco Unified IP phones 8961, 9951, and 9971 uses weak permissions for memory block devices, which allows local users to gain privileges by mounting a device with a setuid file in its…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6685	2024-11-21 10:59	2013-11-14	Show	GitHub Exploit DB Packet Storm

292163	-	cisco	wireless_lan_controller	The web framework on Cisco Wireless LAN Controller (WLC) devices does not properly validate configuration parameters, which allows remote authenticated users to cause a denial of service via a crafte…	CWE-20 Improper Input Validation	CVE-2013-6684	2024-11-21 10:59	2013-11-14	Show	GitHub Exploit DB Packet Storm

292164	-	cisco	nx-os	The IPv6 implementation in Cisco NX-OS does not properly handle neighbor-table adjacencies, which allows remote attackers to cause a denial of service (NS processing outage) via a series of malformed…	CWE-20 Improper Input Validation	CVE-2013-6683	2024-11-21 10:59	2013-11-14	Show	GitHub Exploit DB Packet Storm

292165	-	cisco	adaptive_security_appliance_software	The phone-proxy implementation in Cisco Adaptive Security Appliance (ASA) Software 9.0.3.6 and earlier does not properly validate X.509 certificates, which allows remote attackers to cause a denial o…	CWE-20 Improper Input Validation	CVE-2013-6682	2024-11-21 10:59	2013-11-14	Show	GitHub Exploit DB Packet Storm

292166	-	google	chrome	net/socket/ssl_client_socket_nss.cc in the TLS implementation in Google Chrome before 31.0.1650.48 does not ensure that a server's X.509 certificate is the same during renegotiation as it was before …	NVD-CWE-noinfo	CVE-2013-6628	2024-11-21 10:59	2013-11-14	Show	GitHub Exploit DB Packet Storm

292167	-	google	chrome	net/http/http_stream_parser.cc in Google Chrome before 31.0.1650.48 does not properly process HTTP Informational (aka 1xx) status codes, which allows remote web servers to cause a denial of service (…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-6627	2024-11-21 10:59	2013-11-14	Show	GitHub Exploit DB Packet Storm

292168	-	google	chrome	The WebContentsImpl::AttachInterstitialPage function in content/browser/web_contents/web_contents_impl.cc in Google Chrome before 31.0.1650.48 does not cancel JavaScript dialogs upon generating an in…	NVD-CWE-noinfo	CVE-2013-6626	2024-11-21 10:59	2013-11-14	Show	GitHub Exploit DB Packet Storm

292169	-	google	chrome	Use-after-free vulnerability in core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service or possibly have unspecified ot…	CWE-399 Resource Management Errors	CVE-2013-6625	2024-11-21 10:59	2013-11-14	Show	GitHub Exploit DB Packet Storm

292170	-	google	chrome	Use-after-free vulnerability in Google Chrome before 31.0.1650.48 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving the string value…	CWE-399 Resource Management Errors	CVE-2013-6624	2024-11-21 10:59	2013-11-14	Show	GitHub Exploit DB Packet Storm