Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253911 10 危険 IBM - IBM Lotus Domino Web Access におけるリンク処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-0276 2010-02-8 13:19 2010-01-7 Show GitHub Exploit DB Packet Storm
253912 10 危険 IBM - IBM Lotus Domino Web Access における脆弱性 CWE-noinfo
情報不足 		CVE-2009-4594 2010-02-8 13:19 2009-06-5 Show GitHub Exploit DB Packet Storm
253913 10 危険 IBM - IBM Lotus Domino Web Access の Ultra-light Mode における status-alerts URL の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-0275 2010-02-8 13:18 2010-01-7 Show GitHub Exploit DB Packet Storm
253914 10 危険 IBM - IBM Lotus Domino Web Access の Ultra-light Mode における脆弱性 CWE-noinfo
情報不足 		CVE-2010-0274 2010-02-8 13:17 2010-01-7 Show GitHub Exploit DB Packet Storm
253915 3.6 注意 サイバートラスト株式会社
D-Bus
レッドハット		 - D-Bus の _dbus_validate_signature_with_reason 関数におけるシグネチャを偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1189 2010-02-5 14:22 2009-04-27 Show GitHub Exploit DB Packet Storm
253916 6.5 警告 シスコシステムズ - Cisco ASA のデフォルト設定におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4455 2010-02-4 11:20 2009-12-17 Show GitHub Exploit DB Packet Storm
253917 4 警告 IBM - IBM DB2 におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4439 2010-02-4 11:20 2009-12-28 Show GitHub Exploit DB Packet Storm
253918 6.5 警告 IBM - IBM DB2 におけるデータを使用される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4438 2010-02-4 11:19 2009-12-28 Show GitHub Exploit DB Packet Storm
253919 10 危険 IBM - IBM DB2 の Spatial Extender コンポーネントに同梱されているストアドプロシージャにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-4335 2010-02-4 11:19 2009-12-16 Show GitHub Exploit DB Packet Storm
253920 4 警告 IBM - IBM DB2 の DRDA Services コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4328 2010-02-4 11:19 2009-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278541 - joomlaboat com_youtubegallery Multiple SQL injection vulnerabilities in models\gallery.php in Youtube Gallery (com_youtubegallery) component 4.x through 4.1.7, and possibly 3.x, for Joomla! allow remote attackers to execute arbit… CWE-89
SQL Injection 		CVE-2014-4960 2024-11-21 11:11 2014-07-21 Show GitHub Exploit DB Packet Storm
278542 - opensuse
phpmyadmin 		opensuse
phpmyadmin 		server_user_groups.php in phpMyAdmin 4.1.x before 4.1.14.2 and 4.2.x before 4.2.6 allows remote authenticated users to bypass intended access restrictions and read the MySQL user list via a viewUsers… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-4987 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
278543 - phpmyadmin phpmyadmin Multiple cross-site scripting (XSS) vulnerabilities in js/functions.js in phpMyAdmin 4.0.x before 4.0.10.1, 4.1.x before 4.1.14.2, and 4.2.x before 4.2.6 allow remote authenticated users to inject ar… CWE-79
Cross-site Scripting 		CVE-2014-4986 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
278544 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in the PMA_TRI_getRowForList function in libraries/rte/rte_list.lib.php in phpMyAdmin 4.0.x before 4.0.10.1, 4.1.x before 4.1.14.2, and 4.2.x before 4.2.6 all… CWE-79
Cross-site Scripting 		CVE-2014-4955 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
278545 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in the PMA_getHtmlForActionLinks function in libraries/structure.lib.php in phpMyAdmin 4.2.x before 4.2.6 allows remote authenticated users to inject arbitrar… CWE-79
Cross-site Scripting 		CVE-2014-4954 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
278546 - linux
suse
opensuse
redhat
debian 		linux_kernel
linux_enterprise_desktop
linux_enterprise_server
opensuse
enterprise_linux_server_aus
debian_linux 		The PPPoL2TP feature in net/l2tp/l2tp_ppp.c in the Linux kernel through 3.15.6 allows local users to gain privileges by leveraging data-structure differences between an l2tp socket and an inet socket. CWE-269
 Improper Privilege Management 		CVE-2014-4943 2024-11-21 11:11 2014-07-20 Show GitHub Exploit DB Packet Storm
278547 - sonicwall scrutinizer Multiple SQL injection vulnerabilities in Dell SonicWall Scrutinizer 11.0.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) selectedUserGroup parameter in a create new … CWE-89
SQL Injection 		CVE-2014-4977 2024-11-21 11:11 2014-07-16 Show GitHub Exploit DB Packet Storm
278548 - sonicwall scrutinizer Dell SonicWall Scrutinizer 11.0.1 allows remote authenticated users to change user passwords via the user ID in the savePrefs parameter in a change password request to cgi-bin/admin.cgi. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-4976 2024-11-21 11:11 2014-07-16 Show GitHub Exploit DB Packet Storm
278549 - shopizer shopizer Multiple cross-site scripting (XSS) vulnerabilities in Shopizer 1.1.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) customername parameter to central/orders/se… CWE-79
Cross-site Scripting 		CVE-2014-4965 2024-11-21 11:11 2014-07-15 Show GitHub Exploit DB Packet Storm
278550 - shopizer shopizer Multiple cross-site request forgery (CSRF) vulnerabilities in Shopizer 1.1.5 and earlier allow remote attackers to hijack the authentication of users for requests that (1) modify customer settings or… CWE-352
 Origin Validation Error 		CVE-2014-4964 2024-11-21 11:11 2014-07-15 Show GitHub Exploit DB Packet Storm