Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
238421	6.8	警告	Claudio Klingler	-	TWG で使用される QuiXplorer の .include/init.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1911	2012-06-26 16:10	2009-06-4	Show	GitHub Exploit DB Packet Storm

238422	4.3	警告	Claroline Consortium	-	Claroline の claroline/linker/notfound.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1907	2012-06-26 16:10	2009-05-5	Show	GitHub Exploit DB Packet Storm

238423	4.3	警告	The Perl Foundation bzip.org	-	Perl のCompress-Raw-Bzip2 モジュールの bzinflate 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2009-1884	2012-06-26 16:10	2009-08-19	Show	GitHub Exploit DB Packet Storm

238424	7.5	危険	cmsnx	-	Million Dollar Text Links におけるアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2009-1854	2012-06-26 16:10	2009-06-1	Show	GitHub Exploit DB Packet Storm

238425	7.5	危険	graphiks	-	Graphiks MyForum における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1852	2012-06-26 16:10	2009-06-1	Show	GitHub Exploit DB Packet Storm

238426	7.5	危険	benjamin curtis	-	phpBugTracker の include.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1851	2012-06-26 16:10	2009-06-1	Show	GitHub Exploit DB Packet Storm

238427	7.5	危険	benjamin curtis	-	phpBugTracker の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1850	2012-06-26 16:10	2009-06-1	Show	GitHub Exploit DB Packet Storm

238428	7.5	危険	easypx41	-	Easy PX 41 CMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1847	2012-06-26 16:10	2009-06-1	Show	GitHub Exploit DB Packet Storm

238429	7.5	危険	bjsintay	-	SiteX におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1846	2012-06-26 16:10	2009-06-1	Show	GitHub Exploit DB Packet Storm

238430	7.5	危険	glenn mcgurrin	-	Flash Quiz Beta における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1843	2012-06-26 16:10	2009-06-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256541	7.5	HIGH Network	phpgurukul	job_portal	SQL injection vulnerability, by which an attacker could send a specially designed query through user_id parameter in /jobportal/admin/user/controller.php, and retrieve all the information stored in i…	CWE-89 SQL Injection	CVE-2024-8465	2024-09-6 20:16	2024-09-5	Show	GitHub Exploit DB Packet Storm

256542	7.5	HIGH Network	phpgurukul	job_portal	SQL injection vulnerability, by which an attacker could send a specially designed query through JOBREGID parameter in /jobportal/admin/applicants/controller.php, and retrieve all the information stor…	CWE-89 SQL Injection	CVE-2024-8464	2024-09-6 20:15	2024-09-5	Show	GitHub Exploit DB Packet Storm

256543	-		-	-	In the Linux kernel, the following vulnerability has been resolved: media: aspeed: Fix memory overwrite if timing is 1600x900 When capturing 1600x900, system could crash when system memory usage is…	-	CVE-2023-52916	2024-09-6 18:15	2024-09-6	Show	GitHub Exploit DB Packet Storm

256544	-		-	-	The WP ULike WordPress plugin before 4.7.2.1 does not properly sanitize user display names when rendering on a public page.	-	CVE-2024-6792	2024-09-6 15:15	2024-09-6	Show	GitHub Exploit DB Packet Storm

256545	7.5	HIGH Network	nescalante	urlregex	A vulnerability was found in nescalante urlregex up to 0.5.0 and classified as problematic. This issue affects some unknown processing of the file index.js of the component Backtracking. The manipula…	CWE-1333 Inefficient Regular Expression Complexity	CVE-2020-36830	2024-09-6 06:47	2024-09-3	Show	GitHub Exploit DB Packet Storm

256546	7.8	HIGH Local	qualcomm	ar8035_firmware csra6620_firmware csra6640_firmware fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_firmware…	Memory corruption while processing IOCTL call for getting group info.	CWE-416 Use After Free	CVE-2024-38402	2024-09-6 06:43	2024-09-2	Show	GitHub Exploit DB Packet Storm

256547	9.8	CRITICAL Network	rubrik	cloud_data_management	An incorrect access control vulnerability in Rubrik CDM versions prior to 9.1.2-p1, 9.0.3-p6 and 8.1.3-p12, allows an attacker with network access to execute arbitrary code.	NVD-CWE-Other	CVE-2024-36068	2024-09-6 05:27	2024-08-28	Show	GitHub Exploit DB Packet Storm

256548	7.8	HIGH Local	adobe microsoft	acrobat_reader edge	Acrobat Reader versions 127.0.2651.105 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation …	CWE-787 Out-of-bounds Write	CVE-2024-41879	2024-09-6 04:58	2024-08-26	Show	GitHub Exploit DB Packet Storm

256549	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net/tcp: Disable TCP-AO static key after RCU grace period The lifetime of TCP-AO static_key is the same as the last tcp_ao_info. …	NVD-CWE-noinfo	CVE-2024-43887	2024-09-6 04:43	2024-08-26	Show	GitHub Exploit DB Packet Storm

256550	4.9	MEDIUM Network	dell	path_to_powerprotect	Dell Path to PowerProtect, versions 1.1, 1.2, contains an Exposure of Private Personal Information to an Unauthorized Actor vulnerability. A remote high privileged attacker could potentially exploit …	NVD-CWE-noinfo	CVE-2024-37136	2024-09-6 04:01	2024-09-3	Show	GitHub Exploit DB Packet Storm