Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230381 6 警告 マイクロソフト - Microsoft IIS における任意の拡張子を伴う空ファイルを作成される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4445 2012-09-25 17:38 2009-12-29 Show GitHub Exploit DB Packet Storm
230382 6 警告 マイクロソフト - Microsoft IIS におけるサードパーティの拡張制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4444 2012-09-25 17:38 2009-12-27 Show GitHub Exploit DB Packet Storm
230383 5 警告 idevSpot - IDevSpot iSupport の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4434 2012-09-25 17:38 2009-12-28 Show GitHub Exploit DB Packet Storm
230384 4.3 警告 idevSpot - IDevSpot iSupport におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4433 2012-09-25 17:38 2009-12-28 Show GitHub Exploit DB Packet Storm
230385 7.5 危険 joomplace - Joomla! 用の joomportfolio コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4428 2012-09-25 17:38 2009-12-28 Show GitHub Exploit DB Packet Storm
230386 6.8 警告 launchpad - Ignition におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4426 2012-09-25 17:38 2009-12-28 Show GitHub Exploit DB Packet Storm
230387 4.3 警告 idevSpot - iDevCart の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4425 2012-09-25 17:38 2009-12-28 Show GitHub Exploit DB Packet Storm
230388 7.5 危険 imotta - WordPress の Pyrmont プラグインの results.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4424 2012-09-25 17:38 2009-12-28 Show GitHub Exploit DB Packet Storm
230389 7.2 危険 インテル - SINIT Authenticated Code Module (ACM) の Intel Q35 などにおける権限を取得される脆弱性 CWE-16
環境設定 		CVE-2009-4419 2012-09-25 17:38 2009-12-21 Show GitHub Exploit DB Packet Storm
230390 5 警告 The PHP Group - PHP の非シリアル化関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2009-4418 2012-09-25 17:38 2009-12-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
284731 - microsoft indexing_service The CiWebHitsFile component in Microsoft Indexing Services for Windows 2000 allows remote attackers to conduct a cross site scripting (CSS) attack via a CiRestriction parameter in a .htw request, aka… NVD-CWE-Other
CVE-2000-0942 2018-10-13 06:29 2000-12-19 Show GitHub Exploit DB Packet Storm
284732 - microsoft windows_95
windows_98
windows_98se
windows_me 		File and Print Sharing service in Windows 95, Windows 98, and Windows Me does not properly check the password for a file share, which allows remote attackers to bypass share access controls by sendin… NVD-CWE-Other
CVE-2000-0979 2018-10-13 06:29 2000-12-19 Show GitHub Exploit DB Packet Storm
284733 - microsoft windows_95
windows_98
windows_98se
windows_me 		NMPI (Name Management Protocol on IPX) listener in Microsoft NWLink does not properly filter packets from a broadcast address, which allows remote attackers to cause a broadcast storm and flood the n… NVD-CWE-Other
CVE-2000-0980 2018-10-13 06:29 2000-12-19 Show GitHub Exploit DB Packet Storm
284734 - hilgraeve hyperterminal Buffer overflow in Hilgraeve, Inc. HyperTerminal client on Windows 98, ME, and 2000 allows remote attackers to execute arbitrary commands via a long telnet URL, aka the "HyperTerminal Buffer Overflow… NVD-CWE-Other
CVE-2000-0991 2018-10-13 06:29 2000-12-19 Show GitHub Exploit DB Packet Storm
284735 - microsoft windows_2000 Buffer overflow in the System Monitor ActiveX control in Windows 2000 allows remote attackers to execute arbitrary commands via a long LogFileName parameter in HTML source code, aka the "ActiveX Para… NVD-CWE-Other
CVE-2000-1034 2018-10-13 06:29 2000-12-11 Show GitHub Exploit DB Packet Storm
284736 - microsoft windows_95
windows_98
windows_98se
windows_me
windows_nt 		Various TCP/IP stacks and network applications allow remote attackers to cause a denial of service by flooding a target host with TCP connection attempts and completing the TCP/IP handshake without m… NVD-CWE-Other
CVE-2000-1039 2018-10-13 06:29 2001-01-9 Show GitHub Exploit DB Packet Storm
284737 - microsoft ie Microsoft Virtual Machine (VM) in Internet Explorer 4.x and 5.x allows an unsigned applet to create and use ActiveX controls, which allows a remote attacker to bypass Internet Explorer's security set… NVD-CWE-Other
CVE-2000-1061 2018-10-13 06:29 2000-12-11 Show GitHub Exploit DB Packet Storm
284738 - microsoft data_engine
sql_server 		The xp_displayparamstmt function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Se… NVD-CWE-Other
CVE-2000-1081 2018-10-13 06:29 2001-01-9 Show GitHub Exploit DB Packet Storm
284739 - microsoft data_engine
sql_server 		The xp_enumresultset function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Serve… NVD-CWE-Other
CVE-2000-1082 2018-10-13 06:29 2001-01-9 Show GitHub Exploit DB Packet Storm
284740 - microsoft data_engine
sql_server 		The xp_showcolv function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API… NVD-CWE-Other
CVE-2000-1083 2018-10-13 06:29 2001-01-9 Show GitHub Exploit DB Packet Storm