Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251281	4.3	警告	Annuaire PHP	-	Annuaire PHP におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0899	2012-01-25 10:32	2012-01-20	Show	GitHub Exploit DB Packet Storm

251282	5	警告	camaleo	-	WordPress 用 myEASYbackup プラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0898	2012-01-25 10:30	2012-01-20	Show	GitHub Exploit DB Packet Storm

251283	5	警告	Tom Braider	-	WordPress 用 Count Per Day モジュールにおける絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0896	2012-01-25 10:23	2012-01-20	Show	GitHub Exploit DB Packet Storm

251284	4.3	警告	Tom Braider	-	WordPress 用 Count Per Day モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0895	2012-01-25 10:21	2012-01-20	Show	GitHub Exploit DB Packet Storm

251285	9.3	危険	IBM	-	IBM Lotus Symphony の vclmi.dll における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-0192	2012-01-24 16:45	2012-01-23	Show	GitHub Exploit DB Packet Storm

251286	7.5	危険	アドビシステムズ Linux	-	Linux 上で稼働する Adobe Reader における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-4374	2012-01-24 16:29	2011-09-13	Show	GitHub Exploit DB Packet Storm

251287	5	警告	IBM	-	IBM WebSphere Application Server におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0193	2012-01-24 16:21	2012-01-17	Show	GitHub Exploit DB Packet Storm

251288	10	危険	IBM	-	IBM Rational License Key Server その他の製品におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-1389	2012-01-24 16:19	2012-01-19	Show	GitHub Exploit DB Packet Storm

251289	10	危険	フレクセラ・ソフトウェア合同会社	-	Flexera FlexNet Publisher の lmgrd におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4135	2012-01-24 16:02	2011-08-16	Show	GitHub Exploit DB Packet Storm

251290	10	危険	フレクセラ・ソフトウェア合同会社	-	Flexera FlexNet Publisher の lmadmin におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4134	2012-01-24 15:42	2011-08-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306021	-	mcafee	host_data_loss_prevention	The Web Post Protection feature in McAfee Host Data Loss Prevention (DLP) 3.x before 3.0.100.10 and 9.x before 9.0.0.422, when HTTP Capture mode is enabled, allows local users to obtain sensitive inf…	CWE-200 Information Exposure	CVE-2009-5117	2024-11-21 10:11	2012-08-22	Show	GitHub Exploit DB Packet Storm

306022	-	mcafee	linuxshield	McAfee LinuxShield 1.5.1 and earlier does not properly implement client authentication, which allows remote authenticated users to obtain Admin access to the statistics server by leveraging a client …	CWE-287 Improper Authentication	CVE-2009-5116	2024-11-21 10:11	2012-08-22	Show	GitHub Exploit DB Packet Storm

306023	-	mcafee	common_management_agent	McAfee Common Management Agent (CMA) 3.5.5 through 3.5.5.588 and 3.6.0 through 3.6.0.608, and McAfee Agent 4.0 before Patch 3, allows remote authenticated users to overwrite arbitrary files by access…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-5115	2024-11-21 10:11	2012-08-22	Show	GitHub Exploit DB Packet Storm

306024	-	mysql oracle	mysql	The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x before 5.1.50, when running in certain slave configurations in which the slave is running a newer version than the master, allows…	CWE-89 SQL Injection	CVE-2009-5026	2024-11-21 10:11	2012-08-17	Show	GitHub Exploit DB Packet Storm

306025	-	redhat	jboss_community_application_server jboss_enterprise_application_platform	twiddle.sh in JBoss AS 5.0 and EAP 5.0 and earlier accepts credentials as command-line arguments, which allows local users to read the credentials by listing the process and its arguments.	CWE-255 Credentials Management	CVE-2009-5066	2024-11-21 10:11	2012-08-14	Show	GitHub Exploit DB Packet Storm

306026	-	trustwave opensuse	modsecurity opensuse	ModSecurity before 2.5.11 treats request parameter values containing single quotes as files, which allows remote attackers to bypass filtering rules and perform other attacks such as cross-site scrip…	CWE-79 Cross-site Scripting	CVE-2009-5031	2024-11-21 10:11	2012-07-23	Show	GitHub Exploit DB Packet Storm

306027	-	uclouvain	openjpeg	The tcd_free_encode function in tcd.c in OpenJPEG 1.3 through 1.5 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via crafted tile informa…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-5030	2024-11-21 10:11	2012-07-19	Show	GitHub Exploit DB Packet Storm

306028	-	iwork	webglimpse	Directory traversal vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the DOC parameter.	CWE-22 Path Traversal	CVE-2009-5114	2024-11-21 10:11	2012-03-20	Show	GitHub Exploit DB Packet Storm

306029	-	iwork	webglimpse	Cross-site scripting (XSS) vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to inject arbitrary web script or HTML via the DOC parameter.	CWE-79 Cross-site Scripting	CVE-2009-5113	2024-11-21 10:11	2012-03-20	Show	GitHub Exploit DB Packet Storm

306030	-	iwork	webglimpse	wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to obtain the installation path via a crafted request.	CWE-200 Information Exposure	CVE-2009-5112	2024-11-21 10:11	2012-03-20	Show	GitHub Exploit DB Packet Storm