Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
235951 7.5 危険 omilenitsolutions - Joomla! 用の omphotogallery コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4202 2012-09-25 17:38 2009-12-4 Show GitHub Exploit DB Packet Storm
235952 6.8 警告 mamboforge - Mambo 用などの mosres コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4199 2012-09-25 17:38 2009-12-4 Show GitHub Exploit DB Packet Storm
235953 4.7 警告 Huawei - Huawei MT882 modem firmware の rpwizPppoe.htm におけるパスワードを取得される脆弱性 CWE-DesignError
CVE-2009-4197 2012-09-25 17:38 2009-12-4 Show GitHub Exploit DB Packet Storm
235954 4.3 警告 ヒューレット・パッカード - HP SMH の proxy/smhui/getuiinfo におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4185 2012-09-25 17:38 2010-02-3 Show GitHub Exploit DB Packet Storm
235955 4.6 警告 ヒューレット・パッカード - HP OpenView Storage Data Protector における不特定の "アクセス権" を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-4183 2012-09-25 17:38 2010-01-26 Show GitHub Exploit DB Packet Storm
235956 9 危険 ヒューレット・パッカード - HP Web Jetadmin におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4182 2012-09-25 17:38 2010-01-13 Show GitHub Exploit DB Packet Storm
235957 4.3 警告 Huawei - Huawei MT882 V100R002B020 ARG-T の Forms/ 配下のスクリプトにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4196 2012-09-25 17:38 2009-12-4 Show GitHub Exploit DB Packet Storm
235958 6 警告 kmint21 - Golden FTP Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4194 2012-09-25 17:38 2009-12-3 Show GitHub Exploit DB Packet Storm
235959 3.3 注意 merkaartor - Merkaartor におけるデータを追加される脆弱性 CWE-59
リンク解釈の問題 		CVE-2009-4193 2012-09-25 17:38 2009-12-3 Show GitHub Exploit DB Packet Storm
235960 5 警告 interspire - Interspire Knowledge Manager におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4192 2012-09-25 17:38 2009-12-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346731 - aspjar aspjar_guestbook SQL injection vulnerability in login.asp in ASPjar Guestbook allows remote attackers to execute arbitrary SQL commands via the password field. NVD-CWE-Other
CVE-2005-0423 2017-07-11 10:32 2005-04-27 Show GitHub Exploit DB Packet Storm
346732 - aspjar aspjar_guestbook Unknown vulnerability in the delete.asp program in certain versions of ASPjar Guestbook allows remote attackers to delete messages. NOTE: there is insufficient information to know if this is the sam… NVD-CWE-Other
CVE-2005-0424 2017-07-11 10:32 2005-04-27 Show GitHub Exploit DB Packet Storm
346733 - gentoo webmin The ebuild of Webmin before 1.170-r3 on Gentoo Linux includes the encrypted root password in the miniserv.users file when building a tbz2 of the webmin package, which allows remote attackers to obtai… NVD-CWE-Other
CVE-2005-0427 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346734 - powerdns powerdns The DNSPacket::expand method in dnspacket.cc in PowerDNS before 2.9.17 allows remote attackers to cause a denial of service by sending a random stream of bytes. NVD-CWE-Other
CVE-2005-0428 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346735 - barracuda_networks barracuda_spam_firewall Barracuda Spam Firewall 3.1.10 and earlier does not restrict the domains that white-listed domains can send mail to, which allows members of white-listed domains to use Barracuda as an open mail rela… NVD-CWE-Other
CVE-2005-0431 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346736 - francisco_burzi php-nuke Php-Nuke 7.5 allows remote attackers to determine the full path of the web server via invalid or missing arguments to (1) db.php, (2) mainfile.php, (3) Downloads/index.php, or (4) Web_Links/index.php… NVD-CWE-Other
CVE-2005-0433 2017-07-11 10:32 2005-02-15 Show GitHub Exploit DB Packet Storm
346737 - francisco_burzi php-nuke Multiple cross-site scripting (XSS) vulnerabilities in Php-Nuke 7.5 allow remote attackers to inject arbitrary HTML or web script via (1) the newdownloadshowdays parameter in a NewDownloads operation… NVD-CWE-Other
CVE-2005-0434 2017-07-11 10:32 2005-02-15 Show GitHub Exploit DB Packet Storm
346738 - awstats awstats awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to read server web logs by setting the loadplugin and pluginmode parameters to rawlog. NVD-CWE-Other
CVE-2005-0435 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346739 - awstats awstats Direct code injection vulnerability in awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to execute portions of Perl code via the PluginMode parameter. NVD-CWE-Other
CVE-2005-0436 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346740 - awstats awstats awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to obtain sensitive information by setting the debug parameter. NVD-CWE-Other
CVE-2005-0438 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm