Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254201 6.8 警告 マイクロソフト - Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2513 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
254202 6.8 警告 マイクロソフト - Microsoft Windows の kernel における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1127 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
254203 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
254204 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
254205 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2722 2010-01-4 14:56 2009-08-10 Show GitHub Exploit DB Packet Storm
254206 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2723 2010-01-4 14:55 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293781 - siemens scalance_s_firmware
scalance_s602
scalance_s612
scalance_s613 		The web server on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 does not limit the rate of authentication attempts, which makes it easier … CWE-287
Improper Authentication 		CVE-2012-1799 2024-11-21 10:37 2012-04-18 Show GitHub Exploit DB Packet Storm
293782 - vmware workstation
player
fusion
esxi
esx 		VMware Workstation 8.x before 8.0.2, VMware Player 4.x before 4.0.2, VMware Fusion 4.x before 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 use an incorrect ACL for the VMware To… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-1518 2024-11-21 10:37 2012-04-18 Show GitHub Exploit DB Packet Storm
293783 - koyo h4-ecom
h0-ecom100
h2-ecom100
h4-ecom-f
h2-ecom-f
h4-ecom100
h2-ecom
h0-ecom 		The web server in the ECOM Ethernet module in Koyo H0-ECOM, H0-ECOM100, H2-ECOM, H2-ECOM-F, H2-ECOM100, H4-ECOM, H4-ECOM-F, and H4-ECOM100 allows remote attackers to cause a denial of service (resour… CWE-399
 Resource Management Errors 		CVE-2012-1809 2024-11-21 10:37 2012-04-14 Show GitHub Exploit DB Packet Storm
293784 - koyo h4-ecom
h0-ecom100
h2-ecom100
h4-ecom-f
h2-ecom-f
h4-ecom100
h2-ecom
h0-ecom 		The web server in the ECOM Ethernet module in Koyo H0-ECOM, H0-ECOM100, H2-ECOM, H2-ECOM-F, H2-ECOM100, H4-ECOM, H4-ECOM-F, and H4-ECOM100 does not require authentication, which allows remote attacke… CWE-287
Improper Authentication 		CVE-2012-1808 2024-11-21 10:37 2012-04-14 Show GitHub Exploit DB Packet Storm
293785 - koyo h4-ecom
h0-ecom100
h2-ecom100
h4-ecom-f
h2-ecom-f
h4-ecom100
h2-ecom
h0-ecom 		Cross-site scripting (XSS) vulnerability in the web server in the ECOM Ethernet module in Koyo H0-ECOM, H0-ECOM100, H2-ECOM, H2-ECOM-F, H2-ECOM100, H4-ECOM, H4-ECOM-F, and H4-ECOM100 allows remote at… CWE-79
Cross-site Scripting 		CVE-2012-1807 2024-11-21 10:37 2012-04-14 Show GitHub Exploit DB Packet Storm
293786 - koyo h4-ecom
h0-ecom100
h2-ecom100
h4-ecom-f
h2-ecom-f
h4-ecom100
h2-ecom
h0-ecom 		The ECOM Ethernet module in Koyo H0-ECOM, H0-ECOM100, H2-ECOM, H2-ECOM-F, H2-ECOM100, H4-ECOM, H4-ECOM-F, and H4-ECOM100 supports a maximum password length of 8 bytes, which makes it easier for remot… CWE-287
Improper Authentication 		CVE-2012-1806 2024-11-21 10:37 2012-04-14 Show GitHub Exploit DB Packet Storm
293787 - koyo h4-ecom
h0-ecom100
h2-ecom100
h4-ecom-f
h2-ecom-f
h4-ecom100
h2-ecom
h0-ecom 		Buffer overflow in the ECOM Ethernet module in Koyo H0-ECOM, H0-ECOM100, H2-ECOM, H2-ECOM-F, H2-ECOM100, H4-ECOM, H4-ECOM-F, and H4-ECOM100 allows remote attackers to execute arbitrary code via long … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-1805 2024-11-21 10:37 2012-04-14 Show GitHub Exploit DB Packet Storm
293788 - apache
cloudera 		hadoop
cloudera_cdh 		The Kerberos/MapReduce security functionality in Apache Hadoop 0.20.203.0 through 0.20.205.0, 0.23.x before 0.23.2, and 1.0.x before 1.0.2, as used in Cloudera CDH CDH3u0 through CDH3u2, Cloudera had… CWE-310
Cryptographic Issues 		CVE-2012-1574 2024-11-21 10:37 2012-04-12 Show GitHub Exploit DB Packet Storm
293789 - ola_lasisi e-ticketing SQL injection vulnerability in loginscript.php in e-ticketing allows remote attackers to execute arbitrary SQL commands via the password parameter. CWE-89
SQL Injection 		CVE-2012-1673 2024-11-21 10:37 2012-04-11 Show GitHub Exploit DB Packet Storm
293790 - useasdf_4444 hotel_booking_portal SQL injection vulnerability in getcity.php in Hotel Booking Portal 0.1 allows remote attackers to execute arbitrary SQL commands via the country parameter. CWE-89
SQL Injection 		CVE-2012-1672 2024-11-21 10:37 2012-04-11 Show GitHub Exploit DB Packet Storm