Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231021 7.5 危険 phppower - Swinger Club Portal の anzeiger/start.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4752 2012-12-20 19:28 2010-03-26 Show GitHub Exploit DB Packet Storm
231022 7.5 危険 phppower - Swinger Club Portal の anzeiger/start.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4751 2012-12-20 19:28 2010-03-26 Show GitHub Exploit DB Packet Storm
231023 6.8 警告 phppower - Top Paidmailer の home.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4750 2012-12-20 19:28 2010-03-26 Show GitHub Exploit DB Packet Storm
231024 7.5 危険 robert heel - TYPO3 用の resetbepassword エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4710 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
231025 4.3 警告 sebastian winterhalder - TYPO3 用の Mailform エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4706 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
231026 4.3 警告 thomas loeffler - TYPO3 用の Twitter Search エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4705 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
231027 5 警告 TYPO3 Association - TYPO3 用の Webesse E-Card エクステンションにおける重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-4704 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
231028 7.5 危険 TYPO3 Association - TYPO3 用の Webesse Image Gallery エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4703 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
231029 5 警告 skadate - SkaDate Dating の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4700 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
231030 4.3 警告 skadate - SkaDate Dating におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4699 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294881 - ibm websphere_portal Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 7.x before 7.0.0.2 CF25 and 8.x before 8.0.0.1 CF8 allows remote authenticated users to inject arbitrary web script or HTML by leverag… CWE-79
Cross-site Scripting 		CVE-2013-5379 2024-11-21 10:57 2013-11-14 Show GitHub Exploit DB Packet Storm
294882 - ibm websphere_portal Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.x before 8.0.0.1 CF8 allows remote authenticated users to inject arbitrary web script or HTML by leveraging incorrect IBM Connection… CWE-79
Cross-site Scripting 		CVE-2013-5378 2024-11-21 10:57 2013-11-14 Show GitHub Exploit DB Packet Storm
294883 - adobe flash_player
air
air_sdk 		Adobe Flash Player before 11.7.700.252 and 11.8.x and 11.9.x before 11.9.900.152 on Windows and Mac OS X and before 11.2.202.327 on Linux, Adobe AIR before 3.9.0.1210, Adobe AIR SDK before 3.9.0.1210… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-5330 2024-11-21 10:57 2013-11-13 Show GitHub Exploit DB Packet Storm
294884 - adobe flash_player
air
air_sdk 		Adobe Flash Player before 11.7.700.252 and 11.8.x and 11.9.x before 11.9.900.152 on Windows and Mac OS X and before 11.2.202.327 on Linux, Adobe AIR before 3.9.0.1210, Adobe AIR SDK before 3.9.0.1210… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-5329 2024-11-21 10:57 2013-11-13 Show GitHub Exploit DB Packet Storm
294885 - adobe coldfusion Adobe ColdFusion 10 before Update 12 allows remote attackers to read arbitrary files via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-5328 2024-11-21 10:57 2013-11-13 Show GitHub Exploit DB Packet Storm
294886 - adobe coldfusion Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 9.0 before Update 12, 9.0.1 before Update 11, 9.0.2 before Update 6, and 10 before Update 12, when the CFIDE directory is available, allow… CWE-79
Cross-site Scripting 		CVE-2013-5326 2024-11-21 10:57 2013-11-13 Show GitHub Exploit DB Packet Storm
294887 - cisco nx-os Cisco NX-OS 5.0 and earlier on MDS 9000 devices allows remote attackers to cause a denial of service (supervisor CPU consumption) via Authentication Header (AH) authentication in a Virtual Router Red… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-5566 2024-11-21 10:57 2013-11-8 Show GitHub Exploit DB Packet Storm
294888 - cisco ios_xr The OSPFv3 functionality in Cisco IOS XR 5.1 allows remote attackers to cause a denial of service (process crash) via a malformed LSA Type-1 packet, aka Bug ID CSCuj82176. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-5565 2024-11-21 10:57 2013-11-8 Show GitHub Exploit DB Packet Storm
294889 - cisco telepresence_vx_clinical_assistant The WIL-A module in Cisco TelePresence VX Clinical Assistant 1.2 before 1.21 changes the admin password to an empty password upon a reboot, which makes it easier for remote attackers to obtain access… CWE-255
Credentials Management 		CVE-2013-5558 2024-11-21 10:57 2013-11-8 Show GitHub Exploit DB Packet Storm
294890 - cisco wide_area_application_services_mobile Directory traversal vulnerability in the web-management interface in the server in Cisco Wide Area Application Services (WAAS) Mobile before 3.5.5 allows remote attackers to upload and execute arbitr… CWE-22
Path Traversal 		CVE-2013-5554 2024-11-21 10:57 2013-11-8 Show GitHub Exploit DB Packet Storm