Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240711 7.5 危険 bbsprocess - BBsProcesS BBPortalS の tnews.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5630 2012-06-26 15:54 2007-10-23 Show GitHub Exploit DB Packet Storm
240712 4.3 警告 candypress - ShoppingTree CandyPress Store の admin/logon.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5629 2012-06-26 15:54 2007-10-23 Show GitHub Exploit DB Packet Storm
240713 2.1 注意 Bacula.org - Bacula の make_catalog_backup におけるパスワードを取得される脆弱性 CWE-310
暗号の問題 		CVE-2007-5626 2012-06-26 15:54 2007-10-23 Show GitHub Exploit DB Packet Storm
240714 5 警告 3proxy - 3proxy の ftpprchild 関数におけるメモリ二重解放の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-5622 2012-06-26 15:54 2007-10-29 Show GitHub Exploit DB Packet Storm
240715 3.5 注意 Drupal
Ubercart		 - Drupal 用の Token モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5621 2012-06-26 15:54 2007-10-17 Show GitHub Exploit DB Packet Storm
240716 6.8 警告 artmedic webdesign - Artmedic CMS の index.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5600 2012-06-26 15:54 2007-10-19 Show GitHub Exploit DB Packet Storm
240717 6.8 警告 awrate - awrate における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5599 2012-06-26 15:54 2007-10-19 Show GitHub Exploit DB Packet Storm
240718 4.3 警告 Drupal - Drupal 用の Weblinks におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5598 2012-06-26 15:54 2007-10-17 Show GitHub Exploit DB Packet Storm
240719 4.3 警告 Drupal - Drupal の hook_comments API におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5597 2012-06-26 15:54 2007-10-17 Show GitHub Exploit DB Packet Storm
240720 4.3 警告 Drupal - Drupal のコア Upload モジュールにおけるクロスサイトスクリプティング攻撃を誘発する脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5596 2012-06-26 15:54 2007-10-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
272461 - squid-cache squid The strListGetItem function in src/HttpHeaderTools.c in Squid 2.7 allows remote attackers to cause a denial of service via a crafted auth header with certain comma delimiters that trigger an infinite… CWE-20
 Improper Input Validation  		CVE-2009-2855 2023-11-7 11:04 2009-08-19 Show GitHub Exploit DB Packet Storm
272462 - linux linux_kernel The md driver (drivers/md/md.c) in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of service (NULL pointer dereference) via vectors related to "suspend_* sysfs attributes"… NVD-CWE-noinfo
CVE-2009-2849 2023-11-7 11:04 2009-08-19 Show GitHub Exploit DB Packet Storm
272463 - linux kernel
linux_kernel 		The do_sigaltstack function in kernel/signal.c in Linux kernel 2.4 through 2.4.37 and 2.6 before 2.6.31-rc5, when running on 64-bit systems, does not clear certain padding bytes from a structure, whi… NVD-CWE-noinfo
CVE-2009-2847 2023-11-7 11:04 2009-08-19 Show GitHub Exploit DB Packet Storm
272464 - linux linux_kernel The eisa_eeprom_read function in the parisc isa-eeprom component (drivers/parisc/eisa_eeprom.c) in the Linux kernel before 2.6.31-rc6 allows local users to access restricted memory via a negative ppo… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-2846 2023-11-7 11:04 2009-08-19 Show GitHub Exploit DB Packet Storm
272465 - linux linux_kernel
kernel 		cfg80211 in net/wireless/scan.c in the Linux kernel 2.6.30-rc1 and other versions before 2.6.31-rc6 allows remote attackers to cause a denial of service (crash) via a sequence of beacon frames in whi… CWE-399
 Resource Management Errors 		CVE-2009-2844 2023-11-7 11:04 2009-08-19 Show GitHub Exploit DB Packet Storm
272466 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-2768. Reason: This candidate is a duplicate of CVE-2009-2768. Notes: All CVE users should reference CVE-2009-2768 instead of… - CVE-2009-2845 2023-11-7 11:04 2009-08-19 Show GitHub Exploit DB Packet Storm
272467 - linux linux_kernel
kernel 		The init_posix_timers function in kernel/posix-timers.c in the Linux kernel before 2.6.31-rc6 allows local users to cause a denial of service (OOPS) or possibly gain privileges via a CLOCK_MONOTONIC_… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-2767 2023-11-7 11:04 2009-08-15 Show GitHub Exploit DB Packet Storm
272468 - linux linux_kernel The mm_for_maps function in fs/proc/base.c in the Linux kernel 2.6.30.4 and earlier allows local users to read (1) maps and (2) smaps files under proc/ via vectors related to ELF loading, a setuid pr… CWE-200
Information Exposure 		CVE-2009-2691 2023-11-7 11:04 2009-08-15 Show GitHub Exploit DB Packet Storm
272469 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-1900. Reason: This candidate is a duplicate of CVE-2009-1900. Notes: All CVE users should reference CVE-2009-1900 instead of… - CVE-2009-2086 2023-11-7 11:04 2009-08-14 Show GitHub Exploit DB Packet Storm
272470 - oracle
fedoraproject
opensuse
suse
debian
canonical
apache 		jdk
fedora
opensuse
linux_enterprise_server
debian_linux
ubuntu_linux
primavera_web_services
primavera_p6_enterprise_project_portfolio_management
xerces2_java 		XMLScanner.java in Apache Xerces2 Java, as used in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15 and JDK and JRE 5.0 before Update 20, and in other products, allows remote atta… NVD-CWE-Other
CVE-2009-2625 2023-11-7 11:04 2009-08-7 Show GitHub Exploit DB Packet Storm