Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245581	7.5	危険	Drupal brian miller	-	Drupal の Taxonomy Timer モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4296	2012-06-26 16:18	2009-12-11	Show	GitHub Exploit DB Packet Storm

245582	6.8	警告	barnraiser	-	AROUNDMe の components/core/connect.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-4264	2012-06-26 16:18	2009-12-10	Show	GitHub Exploit DB Packet Storm

245583	4.3	警告	Clixint Technologies	-	Image Hosting Script DPI の images.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4252	2012-06-26 16:18	2009-12-9	Show	GitHub Exploit DB Packet Storm

245584	9.3	危険	コーレル株式会社	-	Jasc Paint Shop Pro におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4251	2012-06-26 16:18	2009-12-9	Show	GitHub Exploit DB Packet Storm

245585	4.3	警告	korn19 CutePHP	-	CutePHP CuteNews および UTF-8 CuteNews におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4250	2012-06-26 16:18	2009-12-9	Show	GitHub Exploit DB Packet Storm

245586	2.6	注意	CutePHP	-	CutePHP CuteNews におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4249	2012-06-26 16:18	2009-12-9	Show	GitHub Exploit DB Packet Storm

245587	7.5	危険	Basic-CMS	-	SweetRice の as/lib/plugins.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4231	2012-06-26 16:18	2009-12-8	Show	GitHub Exploit DB Packet Storm

245588	7.5	危険	Activewebsoftwares	-	ActiveWebSoftwares Active Bids における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4229	2012-06-26 16:18	2009-12-8	Show	GitHub Exploit DB Packet Storm

245589	6.8	警告	Basic-CMS	-	SweetRice における PHP リモートファイルインクルージョンの脆弱性	CWE-20 不適切な入力確認	CVE-2009-4224	2012-06-26 16:18	2009-12-7	Show	GitHub Exploit DB Packet Storm

245590	7.5	危険	gianni tommasi	-	KR-Web の adm/krgourl.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-4223	2012-06-26 16:18	2009-12-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
252511	8.8	HIGH Network	microsoft	sharepoint_foundation sharepoint_enterprise_server	Microsoft SharePoint Foundation 2010, Microsoft SharePoint Server 2013 and Microsoft SharePoint Server 2016 allow an elevation of privilege vulnerability due to the way web requests are handled, aka …	NVD-CWE-noinfo	CVE-2018-0790	2024-11-21 12:38	2018-01-10	Show	GitHub Exploit DB Packet Storm

252512	8.8	HIGH Network	microsoft	sharepoint_server sharepoint_enterprise_server	Microsoft SharePoint Foundation 2010, Microsoft SharePoint Server 2013 and Microsoft SharePoint Server 2016 allow an elevation of privilege vulnerability due to the way web requests are handled, aka …	NVD-CWE-noinfo	CVE-2018-0789	2024-11-21 12:38	2018-01-10	Show	GitHub Exploit DB Packet Storm

252513	7.5	HIGH Network	microsoft	.net_core powershell_core .net_framework	Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, .NET Core 1.0 and 2.0, and PowerShell Core 6.0.0 allow a security feature bypass vulnerability due to the …	CWE-295 Improper Certificate Validation	CVE-2018-0786	2024-11-21 12:38	2018-01-10	Show	GitHub Exploit DB Packet Storm

252514	6.5	MEDIUM Network	microsoft	asp.net_core	ASP.NET Core 1.0. 1.1, and 2.0 allow a cross site request forgery vulnerability due to the ASP.NET Core project templates, aka "ASP.NET Core Cross Site Request Forgery Vulnerability".	CWE-352 Origin Validation Error	CVE-2018-0785	2024-11-21 12:38	2018-01-10	Show	GitHub Exploit DB Packet Storm

252515	8.8	HIGH Network	microsoft	asp.net_core	ASP.NET Core 1.0. 1.1, and 2.0 allow an elevation of privilege vulnerability due to the ASP.NET Core project templates, aka "ASP.NET Core Elevation Of Privilege Vulnerability". This CVE is unique fro…	NVD-CWE-noinfo	CVE-2018-0784	2024-11-21 12:38	2018-01-10	Show	GitHub Exploit DB Packet Storm

252516	7.5	HIGH Network	microsoft	.net_core powershell_core .net_framework	Microsoft .NET Framework 1.1, 2.0, 3.0, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 5.7 and .NET Core 1.0. 1.1 and 2.0 allow a denial of service vulnerability due to the way XML documents…	NVD-CWE-noinfo	CVE-2018-0764	2024-11-21 12:38	2018-01-10	Show	GitHub Exploit DB Packet Storm

252517	4.2	MEDIUM Network	microsoft	edge	Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to access information from one domain and inject it into another domain, due to how Mic…	CWE-863 Incorrect Authorization	CVE-2018-0803	2024-11-21 12:38	2018-01-4	Show	GitHub Exploit DB Packet Storm

252518	5.3	MEDIUM Network	microsoft	chakracore edge	Microsoft Edge in Microsoft Windows 10 1709 allows an attacker to obtain information to further compromise the user's system, due to how the scripting engine handles objects in memory, aka "Scripting…	CWE-200 Information Exposure	CVE-2018-0800	2024-11-21 12:38	2018-01-4	Show	GitHub Exploit DB Packet Storm

252519	7.0	HIGH Local	microsoft	windows_server_2012 windows_7 windows_8.1 windows_server_2008	The Windows Adobe Type Manager Font Driver (Atmfd.dll) in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, and Windows Server 2012 and R2 allows an elevation of privilege vu…	NVD-CWE-noinfo	CVE-2018-0788	2024-11-21 12:38	2018-01-4	Show	GitHub Exploit DB Packet Storm

252520	5.3	MEDIUM Network	microsoft	edge chakracore	Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to obtain information to further compromise the user's system, due to how the scripting…	CWE-125 Out-of-bounds Read	CVE-2018-0780	2024-11-21 12:38	2018-01-4	Show	GitHub Exploit DB Packet Storm