Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251371	7.5	危険	David Noguera Gutierrez	-	DaLogin における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5012	2011-12-9 14:09	2011-11-2	Show	GitHub Exploit DB Packet Storm

251372	7.5	危険	McKenzie Creations	-	Mckenzie Creations Virtual Real Estate Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5013	2011-12-9 14:04	2011-11-2	Show	GitHub Exploit DB Packet Storm

251373	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5014	2011-12-9 14:03	2011-11-2	Show	GitHub Exploit DB Packet Storm

251374	7.5	危険	2daybiz	-	2daybiz Network Community Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5015	2011-12-9 14:00	2011-11-2	Show	GitHub Exploit DB Packet Storm

251375	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5016	2011-12-9 14:00	2011-11-2	Show	GitHub Exploit DB Packet Storm

251376	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5017	2011-12-9 13:59	2011-11-2	Show	GitHub Exploit DB Packet Storm

251377	4.3	警告	2daybiz	-	2daybiz Online Classified Script におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5018	2011-12-9 13:59	2011-11-2	Show	GitHub Exploit DB Packet Storm

251378	7.5	危険	2daybiz	-	2daybiz Online Classified Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5019	2011-12-9 13:58	2011-11-2	Show	GitHub Exploit DB Packet Storm

251379	7.5	危険	NetArt Media	-	NetArt Media iBoutique における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5020	2011-12-9 13:56	2011-11-2	Show	GitHub Exploit DB Packet Storm

251380	7.5	危険	Cramer Development	-	Digital Interchange Document Library における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5021	2011-12-9 13:56	2011-11-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
305751	6.1	MEDIUM Network	fittr_flickr_project	fittr_flickr	A vulnerability, which was classified as problematic, has been found in dpup fittr-flickr. This issue affects some unknown processing of the file fittr-flickr/features/easy-exif.js of the component E…	-	CVE-2009-10002	2024-11-21 10:01	2023-01-14	Show	GitHub Exploit DB Packet Storm

305752	7.0	HIGH Local	vmware	open-vm-tools	An issue was discovered in open-vm-tools 2009.03.18-154848. Local users can bypass intended access restrictions on mounting shares via a symlink attack that leverages a realpath race condition in mou…	CWE-59 Link Following	CVE-2009-1143	2024-11-21 10:01	2022-11-24	Show	GitHub Exploit DB Packet Storm

305753	6.7	MEDIUM Local	vmware	open_vm_tools	An issue was discovered in open-vm-tools 2009.03.18-154848. Local users can gain privileges via a symlink attack on /tmp files if vmware-user-suid-wrapper is setuid root and the ChmodChownDirectory f…	CWE-59 Link Following	CVE-2009-1142	2024-11-21 10:01	2022-11-24	Show	GitHub Exploit DB Packet Storm

305754	9.8	CRITICAL Network	apple	files	Multiple buffer overflows in the (1) cdf_read_sat, (2) cdf_read_long_sector_chain, and (3) cdf_read_ssat function in file before 5.02.	CWE-120 Classic Buffer Overflow	CVE-2009-0948	2024-11-21 10:01	2021-06-3	Show	GitHub Exploit DB Packet Storm

305755	9.8	CRITICAL Network	apple	files	Multiple integer overflows in the (1) cdf_read_property_info and (2) cdf_read_sat functions in file before 5.02.	CWE-190 Integer Overflow or Wraparound	CVE-2009-0947	2024-11-21 10:01	2021-06-3	Show	GitHub Exploit DB Packet Storm

305756	9.8	CRITICAL Network	dell	emc_replistor	EMC RepliStor Server Service before ESA-09-003 has a DoASOCommand Remote Code Execution Vulnerability. The flaw exists within the DoRcvRpcCall RPC function -exposed via the rep_srv.exe process- where…	NVD-CWE-noinfo	CVE-2009-1120	2024-11-21 10:01	2020-01-16	Show	GitHub Exploit DB Packet Storm

305757	6.1	MEDIUM Network	apache	juddi	Cross-site scripting (XSS) vulnerability in Apache jUDDI before 2.0 allows remote attackers to inject arbitrary web script or HTML via the dsname parameter to happyjuddi.jsp.	CWE-79 Cross-site Scripting	CVE-2009-1198	2024-11-21 10:01	2017-10-31	Show	GitHub Exploit DB Packet Storm

305758	5.3	MEDIUM Network	apache	juddi	Apache jUDDI before 2.0 allows attackers to spoof entries in log files via vectors related to error logging of keys from uddiget.jsp.	CWE-20 Improper Input Validation	CVE-2009-1197	2024-11-21 10:01	2017-10-31	Show	GitHub Exploit DB Packet Storm

305759	-		ibm	websphere_mq	IBM WebSphere MQ 6.0 before 6.0.2.8 and 7.0 before 7.0.1.0 does not properly handle long group names, which might allow local users to gain privileges by leveraging combinations of group names with t…	CWE-20 Improper Input Validation	CVE-2009-0905	2024-11-21 10:01	2011-10-31	Show	GitHub Exploit DB Packet Storm

305760	-		ibm	websphere_mq	Heap-based buffer overflow in the client in IBM WebSphere MQ 6.0 before 6.0.2.7 and 7.0 before 7.0.1.0 allows local users to gain privileges via crafted SSL information in a Client Channel Definition…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-0900	2024-11-21 10:01	2011-10-31	Show	GitHub Exploit DB Packet Storm