Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231291 7.5 危険 phpComasy - phpComasy の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1023 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
231292 6.8 警告 phpprobid - PHP Pro Bid の includes/class_image.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0970 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
231293 6.8 警告 Moxi9 - phpFoX の account/settings/account/index.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-0969 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
231294 4 警告 Rhino Software - Serv-U の FTP サーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0967 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
231295 7.5 危険 YABSoft - YABSoft Mega File Hosting の cross.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0966 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
231296 5 警告 xlinesoft - PHPRunner の UserView_list.php における権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-0964 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
231297 7.5 危険 xlinesoft - PHPRunner における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0963 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
231298 10 危険 The Tor Project - Tor における脆弱性 CWE-noinfo
情報不足 		CVE-2009-0939 2012-12-20 19:10 2009-03-17 Show GitHub Exploit DB Packet Storm
231299 5 警告 The Tor Project - Tor におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-0938 2012-12-20 19:10 2009-03-17 Show GitHub Exploit DB Packet Storm
231300 5 警告 The Tor Project - Tor におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-0937 2012-12-20 19:10 2009-03-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290821 - dell
quantum 		powervault_ml6000_firmware
powervault_ml6000
scalar_i500_firmware
scalar_i500 		logViewer.htm on the Dell ML6000 tape backup system with firmware before i8.2.0.2 (641G.GS103) and the Quantum Scalar i500 tape backup system with firmware before i8.2.2.1 (646G.GS002) allows remote … CWE-78
OS Command  		CVE-2014-2959 2024-11-21 11:07 2014-06-3 Show GitHub Exploit DB Packet Storm
290822 - huawei webui
e303_modem_firmware
e303_modem 		Cross-site request forgery (CSRF) vulnerability in api/sms/send-sms in the Web UI 11.010.06.01.858 on Huawei E303 modems with software 22.157.18.00.858 allows remote attackers to hijack the authentic… CWE-352
 Origin Validation Error 		CVE-2014-2946 2024-11-21 11:07 2014-06-3 Show GitHub Exploit DB Packet Storm
290823 - alfresco alfresco Multiple cross-site scripting (XSS) vulnerabilities in Alfresco Enterprise before 4.1.6.13 allow remote attackers to inject arbitrary web script or HTML via (1) an XHTML document, (2) a <% tag, or (3… CWE-79
Cross-site Scripting 		CVE-2014-2939 2024-11-21 11:07 2014-06-3 Show GitHub Exploit DB Packet Storm
290824 - debian dpkg dpkg 1.15.9, 1.16.x before 1.16.14, and 1.17.x before 1.17.9 expect the patch program to be compliant with a need for the "C-style encoded filenames" feature, but is supported in environments with no… CWE-22
Path Traversal 		CVE-2014-3227 2024-11-21 11:07 2014-05-31 Show GitHub Exploit DB Packet Storm
290825 - ibm websphere_service_registry_and_repository Cross-site scripting (XSS) vulnerability in the Web UI in IBM WebSphere Service Registry and Repository (WSRR) 6.2, 6.3 before 6.3.0.6, 7.0 before 7.0.0.6, 7.5 before 7.5.0.5, and 8.0 before 8.0.0.3 … CWE-79
Cross-site Scripting 		CVE-2014-3010 2024-11-21 11:07 2014-05-31 Show GitHub Exploit DB Packet Storm
290826 - cisco wide_area_application_services Cisco Wide Area Application Services (WAAS) 5.3(.5a) and earlier, when SharePoint acceleration is enabled, does not properly parse SharePoint responses, which allows remote attackers to cause a denia… CWE-20
 Improper Input Validation  		CVE-2014-3285 2024-11-21 11:07 2014-05-30 Show GitHub Exploit DB Packet Storm
290827 - cisco unified_communications_domain_manager Open redirect vulnerability in Self-Care Client Portal applications in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier allows remote attackers to re… CWE-20
 Improper Input Validation  		CVE-2014-3283 2024-11-21 11:07 2014-05-30 Show GitHub Exploit DB Packet Storm
290828 - cisco unified_communications_domain_manager The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote authentica… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3282 2024-11-21 11:07 2014-05-30 Show GitHub Exploit DB Packet Storm
290829 - cisco unified_communications_domain_manager The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote attackers … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3279 2024-11-21 11:07 2014-05-30 Show GitHub Exploit DB Packet Storm
290830 - cisco unified_communications_domain_manager The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote authentica… CWE-287
Improper Authentication 		CVE-2014-3277 2024-11-21 11:07 2014-05-30 Show GitHub Exploit DB Packet Storm