Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231591	7.5	危険	torrenttrader	-	TorrentTrader Classic の account-recover.php におけるパスワードを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-2158	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

231592	6.5	警告	torrenttrader	-	TorrentTrader Classic における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2157	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

231593	3.5	注意	torrenttrader	-	TorrentTrader Classic におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2156	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

231594	4.3	警告	Zoho Corporation	-	WebNMS Free の report/ReportViewAction.do におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2155	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

231595	6.8	警告	sappy.dk	-	Impleo Music Collection の admin/login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2154	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

231596	4.3	警告	sappy.dk	-	Impleo Music Collection の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2153	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

231597	7.5	危険	phpwebthings	-	phpWebThings の fdown.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2147	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

231598	6	警告	SugarCRM	-	Sugar Community Edition の Emails モジュールにおける任意のコードを実行される脆弱性	CWE-Other その他	CVE-2009-2146	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

231599	7.5	危険	zipstore	-	Zip Store Chat の admin/index.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2142	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

231600	4.3	警告	tbdev	-	TBDev.NET におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2141	2012-12-20 19:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295641	-	dkorunic	pam_s\/key	A certain Gentoo patch for the PAM S/Key module does not properly clear credentials from memory, which allows local users to obtain sensitive information by reading system memory.	CWE-255 Credentials Management	CVE-2013-4285	2024-11-21 10:55	2014-04-28	Show	GitHub Exploit DB Packet Storm

295642	-	debian	ppthtml	Heap-based buffer overflow in the __OLEdecode function in ppthtml 0.5.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted .ppt…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4565	2024-11-21 10:55	2014-04-26	Show	GitHub Exploit DB Packet Storm

295643	-	freedesktop	poppler	The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and earlier, when running on a system other than Unix, allows local users to overwrite arbitrary files via a symlink attack on tem…	CWE-59 Link Following	CVE-2013-4472	2024-11-21 10:55	2014-04-22	Show	GitHub Exploit DB Packet Storm

295644	-	imapsync_project	imapsync	imapsync 1.564 and earlier performs a release check by default, which sends sensitive information (imapsync, operating system, and Perl version) to the developer's site.	CWE-200 Information Exposure	CVE-2013-4279	2024-11-21 10:55	2014-04-19	Show	GitHub Exploit DB Packet Storm

295645	-	uclouvain	openjpeg	Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote attackers to have unspecified impact via unknown vectors to (1) lib/openjp3d/opj_jp3d_compress.c, (2) bin/jp3d/convert.c, or (3) lib…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4290	2024-11-21 10:55	2014-04-18	Show	GitHub Exploit DB Packet Storm

295646	-	uclouvain	openjpeg	Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG before 1.5.2 allow remote attackers to have unspecified impact and vectors, which trigger a heap-based buffer overflow.	CWE-189 Numeric Errors	CVE-2013-4289	2024-11-21 10:55	2014-04-18	Show	GitHub Exploit DB Packet Storm

295647	-	hitmyserver	hms_testimonials	Multiple cross-site request forgery (CSRF) vulnerabilities in the HMS Testimonials plugin before 2.0.11 for WordPress allow remote attackers to hijack the authentication of administrators for request…	CWE-352 Origin Validation Error	CVE-2013-4240	2024-11-21 10:55	2014-04-3	Show	GitHub Exploit DB Packet Storm

295648	-	samba canonical	samba ubuntu_linux	Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obta…	CWE-255 Credentials Management	CVE-2013-4496	2024-11-21 10:55	2014-03-14	Show	GitHub Exploit DB Packet Storm

295649	-	vicidial	vicidial	Multiple SQL injection vulnerabilities in the agent interface (agc/) in VICIDIAL dialer (aka Asterisk GUI client) 2.8-403a, 2.7, 2.7RC1, and earlier allow (1) remote attackers to execute arbitrary SQ…	CWE-89 SQL Injection	CVE-2013-4467	2024-11-21 10:55	2014-03-12	Show	GitHub Exploit DB Packet Storm

295650	-	php	xhprof	Cross-site scripting (XSS) vulnerability in XHProf before 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the run parameter.	CWE-79 Cross-site Scripting	CVE-2013-4433	2024-11-21 10:55	2014-03-12	Show	GitHub Exploit DB Packet Storm