Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
240861 3.6 注意 Linux - Linux kernel の seccomp サブシステムにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-0835 2012-09-25 17:27 2009-03-6 Show GitHub Exploit DB Packet Storm
240862 9.3 危険 myplugins - Winamp 用の gen_msn プラグインにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-0833 2012-09-25 17:27 2009-03-5 Show GitHub Exploit DB Packet Storm
240863 7.5 危険 php.brickhost - phpScheduleIt における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2009-0820 2012-09-25 17:27 2009-03-4 Show GitHub Exploit DB Packet Storm
240864 9.3 危険 imera - Imera TeamLinks Client の ImeraIEPlugin.dll における任意の URL の実行を強制される脆弱性 CWE-20
不適切な入力確認
CVE-2009-0813 2012-09-25 17:27 2009-03-4 Show GitHub Exploit DB Packet Storm
240865 6.5 警告 opengoo - OpenGoo におけるユーザのパーミッションを変更される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-0806 2012-09-25 17:27 2009-03-4 Show GitHub Exploit DB Packet Storm
240866 7.5 危険 mpfr - GNU MPFR におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-0757 2012-09-25 17:27 2009-03-3 Show GitHub Exploit DB Packet Storm
240867 5 警告 mldonkey - MLDonkey における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2009-0753 2012-09-25 17:27 2009-03-3 Show GitHub Exploit DB Packet Storm
240868 5.1 警告 Papoo Software - Papoo CMS の lib/classes/message_class.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2009-0735 2012-09-25 17:27 2009-02-25 Show GitHub Exploit DB Packet Storm
240869 9.3 危険 ノキア - Nokia PC Suite の MultimediaPlayer.exe におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-0734 2012-09-25 17:27 2009-02-25 Show GitHub Exploit DB Packet Storm
240870 5 警告 lingx - Downloadcenter におけるユーザ資格情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-0732 2012-09-25 17:27 2009-02-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
284721 - lenovo usb_enhanced_performance_keyboard Lenovo USB Enhanced Performance Keyboard software before 2.0.2.2 includes active debugging code in SKHOOKS.DLL, which allows local users to obtain keypress information by accessing debug output. CWE-200
Information Exposure
CVE-2015-3320 2024-11-21 11:29 2015-04-17 Show GitHub Exploit DB Packet Storm
284722 - hotspotexpress hotex_billing_manager Hotspot Express hotEx Billing Manager 73 does not include the HTTPOnly flag in a Set-Cookie header, which makes it easier for remote attackers to obtain potentially sensitive information via script a… CWE-200
Information Exposure
CVE-2015-3319 2024-11-21 11:29 2015-04-16 Show GitHub Exploit DB Packet Storm
284723 - fortinet fortimail FortiMail 5.0.3 through 5.2.3 allows remote administrators to obtain credentials via the "diag debug application httpd" command. CWE-200
Information Exposure
CVE-2015-3293 2024-11-21 11:29 2015-04-15 Show GitHub Exploit DB Packet Storm
284724 5.9 MEDIUM
Network
line line\ LINE@ for Android version 1.0.0 and LINE@ for iOS version 1.0.0 are vulnerable to MITM (man-in-the-middle) attack since the application allows non-SSL/TLS communications. As a result, any API may be … CWE-924
 Improper Enforcement of Message Integrity During Transmission in a Communication Channel
CVE-2015-2968 2024-11-21 11:28 2023-10-31 Show GitHub Exploit DB Packet Storm
284725 5.3 MEDIUM
Network
openshift origin In Openshift Origin 3 the cookies being set in console have no 'secure', 'HttpOnly' attributes. CWE-311
Missing Encryption of Sensitive Data
CVE-2015-3207 2024-11-21 11:28 2022-07-7 Show GitHub Exploit DB Packet Storm
284726 7.2 HIGH
Network
custom_content_type_manager_project custom_content_type_manager custom-content-type-manager Wordpress plugin can be used by an administrator to achieve arbitrary PHP remote code execution. CWE-94
Code Injection
CVE-2015-3173 2024-11-21 11:28 2022-07-7 Show GitHub Exploit DB Packet Storm
284727 5.4 MEDIUM
Network
eidogo eidogo EidoGo is susceptible to Cross-Site Scripting (XSS) attacks via maliciously crafted SGF input. CWE-79
Cross-site Scripting
CVE-2015-3172 2024-11-21 11:28 2022-07-7 Show GitHub Exploit DB Packet Storm
284728 6.5 MEDIUM
Network
juniper junos On the QFX3500 and QFX3600 platforms, the number of bytes collected from the RANDOM_INTERRUPT entropy source when the device boots up is insufficient, possibly leading to weak or duplicate SSH keys o… CWE-331
 Insufficient Entropy
CVE-2015-3006 2024-11-21 11:28 2020-02-29 Show GitHub Exploit DB Packet Storm
284729 6.1 MEDIUM
Network
apache struts Apache Struts before 2.3.20 has a cross-site scripting (XSS) vulnerability. CWE-79
Cross-site Scripting
CVE-2015-2992 2024-11-21 11:28 2020-02-28 Show GitHub Exploit DB Packet Storm
284730 6.5 MEDIUM
Adjacent
freebsd freebsd The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in FreeBSD through 10.1 allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advert… CWE-20
 Improper Input Validation 
CVE-2015-2923 2024-11-21 11:28 2020-02-20 Show GitHub Exploit DB Packet Storm