Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230271 7.5 危険 maximo cuadros - gb_fenewssubmit エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4708 2012-09-25 17:38 2010-03-15 Show GitHub Exploit DB Packet Storm
230272 4.3 警告 maximo cuadros - gb_fenewssubmit エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4707 2012-09-25 17:38 2010-03-15 Show GitHub Exploit DB Packet Storm
230273 7.5 危険 markus barchfeld - TYPO3 用の Tour Extension エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4702 2012-09-25 17:38 2010-03-15 Show GitHub Exploit DB Packet Storm
230274 7.5 危険 MoinMoin - MoinMoin におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4762 2012-09-25 17:38 2009-06-9 Show GitHub Exploit DB Packet Storm
230275 7.5 危険 jobhut.spranger - JobHut の browse.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4797 2012-09-25 17:38 2010-04-22 Show GitHub Exploit DB Packet Storm
230276 6 警告 karl core - BandSite CMS の adminpanel/scripts/addphotos.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4793 2012-09-25 17:38 2010-04-22 Show GitHub Exploit DB Packet Storm
230277 7.5 危険 karl core - BandSite CMS の includes/content/member_content.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4792 2012-09-25 17:38 2010-04-22 Show GitHub Exploit DB Packet Storm
230278 7.5 危険 mojoblog - Joomla! 用の MojoBlog コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4789 2012-09-25 17:38 2010-04-21 Show GitHub Exploit DB Packet Storm
230279 7.5 危険 joaktree - Joomla! 用の joaktree コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4784 2012-09-25 17:38 2010-04-21 Show GitHub Exploit DB Packet Storm
230280 7.5 危険 mntechsolutions - Theeta CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4783 2012-09-25 17:38 2010-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
284661 - microsoft
sun 		virtual_machine
jdk
jre
sdk 		Vulnerability in Java Runtime Environment (JRE) allows remote malicious web sites to hijack or sniff a web client's sessions, when an HTTP proxy is being used, via a Java applet that redirects the se… NVD-CWE-Other
CVE-2002-0058 2018-10-13 06:30 2002-03-15 Show GitHub Exploit DB Packet Storm
284662 - hp
university_of_washington
sco 		dtmail
pine
unixware 		MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook. NVD-CWE-Other
CVE-1999-0004 2018-10-13 06:29 1997-12-16 Show GitHub Exploit DB Packet Storm
284663 - microsoft internet_information_server
windows_nt 		In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL. NVD-CWE-Other
CVE-1999-0278 2018-10-13 06:29 1998-06-1 Show GitHub Exploit DB Packet Storm
284664 - microsoft windows_nt Local users in Windows NT can obtain administrator privileges by changing the KnownDLLs list to reference malicious programs. NVD-CWE-Other
CVE-1999-0376 2018-10-13 06:29 1999-02-20 Show GitHub Exploit DB Packet Storm
284665 - microsoft backoffice_resource_kit Microsoft Taskpads allows remote web sites to execute commands on the visiting user's machine via certain methods that are marked as Safe for Scripting. NVD-CWE-Other
CVE-1999-0379 2018-10-13 06:29 1999-02-22 Show GitHub Exploit DB Packet Storm
284666 - microsoft windows_nt The screen saver in Windows NT does not verify that its security context has been changed properly, allowing attackers to run programs with elevated privileges. NVD-CWE-Other
CVE-1999-0382 2018-10-13 06:29 1999-03-12 Show GitHub Exploit DB Packet Storm
284667 - microsoft office
outlook
project
visual_basic
windows_2000
windows_nt 		The Forms 2.0 ActiveX control (included with Visual Basic for Applications 5.0) can be used to read text from a user's clipboard when the user accesses documents with ActiveX content. NVD-CWE-Other
CVE-1999-0384 2018-10-13 06:29 1999-01-1 Show GitHub Exploit DB Packet Storm
284668 - microsoft frontpage
personal_web_server 		Microsoft Personal Web Server and FrontPage Personal Web Server in some Windows systems allows a remote attacker to read files on the server by using a nonstandard URL. NVD-CWE-Other
CVE-1999-0386 2018-10-13 06:29 1999-03-1 Show GitHub Exploit DB Packet Storm
284669 - microsoft windows_nt MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of "untrusted scripted paste" as described in MS:MS98-013. NVD-CWE-Other
CVE-1999-0489 2018-10-13 06:29 1999-05-17 Show GitHub Exploit DB Packet Storm
284670 - microsoft internet_information_server The showcode.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files. NVD-CWE-Other
CVE-1999-0736 2018-10-13 06:29 1999-05-7 Show GitHub Exploit DB Packet Storm