Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245711 7.5 危険 frank-karau - phpFK の include/page_bottom.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2112 2012-06-26 16:10 2009-06-18 Show GitHub Exploit DB Packet Storm
245712 5 警告 daan sprenkels - FretsWeb におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2109 2012-06-26 16:10 2009-06-18 Show GitHub Exploit DB Packet Storm
245713 7.5 危険 com jumi
Joomla!		 - Joomla の jumi コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2102 2012-06-26 16:10 2009-06-17 Show GitHub Exploit DB Packet Storm
245714 6.8 警告 castro xl - TorrentVolve の archive.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2101 2012-06-26 16:10 2009-06-17 Show GitHub Exploit DB Packet Storm
245715 7.5 危険 david degner - phpCollegeExchange の house/listing_view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2096 2012-06-26 16:10 2009-06-17 Show GitHub Exploit DB Packet Storm
245716 7.5 危険 creative web solutions - Creative Web Solutions Multi-Level CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2082 2012-06-26 16:10 2009-06-16 Show GitHub Exploit DB Packet Storm
245717 3.5 注意 Drupal - Drupal 用の Taxonomy manager モジュールの管理ページインターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2079 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
245718 4 警告 Angry Donuts
Drupal		 - Drupal のモジュールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2077 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
245719 3.5 注意 Drupal - Drupal 用の Views モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2076 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
245720 7.5 危険 Angry Donuts
Drupal		 - Drupal のモジュールの Nodequeue における詳細不明な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2075 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1931 6.3 MEDIUM
Network 		- - A vulnerability has been found in hs-web hsweb-framework up to 5.0.1. The affected element is the function denied of the file hsweb-system/hsweb-system-file/src/main/java/org/hswebframework/web/file/… CWE-22
Path Traversal 		CVE-2026-11470 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1932 7.3 HIGH
Network 		- - A vulnerability was found in SourceCodester Class and Exam Timetabling System 1.0. The impacted element is an unknown function of the file /index2.php. The manipulation of the argument Password resul… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11471 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1933 7.3 HIGH
Network 		- - A vulnerability was determined in SourceCodester Class and Exam Timetabling System 1.0. This affects an unknown function of the file /index1.php. This manipulation of the argument Password causes sql… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11472 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1934 6.3 MEDIUM
Network 		- - A vulnerability was identified in jflyfox jfinal_cms up to 5.1.0. This impacts the function list of the file AdvicefeedbackController.java. Such manipulation of the argument orderBy leads to sql inje… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11473 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1935 7.3 HIGH
Network 		- - A security flaw has been discovered in Kushan2k student-management-system up to f16a4ceaddd6729c4b306ed4641cda3176c1ef2a. Affected is an unknown function of the file service/RegisterService.php of th… CWE-284
CWE-434
Improper Access Control
 Unrestricted Upload of File with Dangerous Type  		CVE-2026-11474 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1936 4.3 MEDIUM
Network 		- - A vulnerability was detected in hs-web hsweb-framework up to 5.0.1. This affects the function OAuth2Client of the file hsweb-authorization/hsweb-authorization-oauth2/src/main/java/org/hswebframework/… CWE-601
Open Redirect 		CVE-2026-11477 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1937 4.2 MEDIUM
Network 		- - A vulnerability has been found in yoanbernabeu grepai 0.35.0. This issue affects some unknown processing of the file indexer/chunker.go of the component Qdrant Backend. Such manipulation leads to use… CWE-327
CWE-328
 Use of a Broken or Risky Cryptographic Algorithm
 Use of Weak Hash 		CVE-2026-11479 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1938 7.3 HIGH
Network 		- - A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0. The impacted element is an unknown function of the file /archive5.php. The manipulation of the argument sy lead… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11482 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1939 7.3 HIGH
Network 		- - A security flaw has been discovered in SourceCodester Class and Exam Timetabling System 1.0. This affects an unknown function of the file /archive4.php. The manipulation of the argument sy results in… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11483 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1940 6.3 MEDIUM
Network 		- - A weakness has been identified in Kushan2k student-management-system up to f16a4ceaddd6729c4b306ed4641cda3176c1ef2a. Affected by this vulnerability is the function getStatus of the file controllers/G… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11475 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm