Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254771	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

254772	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

254773	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

254774	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

254775	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290291	-	pragyan_cms_project	pragyan_cms	Directory traversal vulnerability in download.lib.php in Pragyan CMS 3.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the fileget parameter in a profile action to…	CWE-22 Path Traversal	CVE-2012-6500	2024-11-21 10:46	2013-01-12	Show	GitHub Exploit DB Packet Storm

290292	-	age_verification_project	age_verification	Open redirect vulnerability in age-verification.php in the Age Verification plugin 0.4 and earlier for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing …	CWE-20 Improper Input Validation	CVE-2012-6499	2024-11-21 10:46	2013-01-12	Show	GitHub Exploit DB Packet Storm

290293	-	microsoft	windows_server_2008 windows_rt windows_8 windows_7 windows_vista windows_server_2012	The SSL provider component in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle enc…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0013	2024-11-21 10:46	2013-01-10	Show	GitHub Exploit DB Packet Storm

290294	-	microsoft	windows_server_2008 windows_7	The Print Spooler in Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a cr…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-0011	2024-11-21 10:46	2013-01-10	Show	GitHub Exploit DB Packet Storm

290295	-	microsoft	system_center_operations_manager	Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Ce…	CWE-79 Cross-site Scripting	CVE-2013-0010	2024-11-21 10:46	2013-01-10	Show	GitHub Exploit DB Packet Storm

290296	-	microsoft	system_center_operations_manager	Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Ce…	CWE-79 Cross-site Scripting	CVE-2013-0009	2024-11-21 10:46	2013-01-10	Show	GitHub Exploit DB Packet Storm

290297	-	microsoft	windows_vista windows_server_2008 windows_7 windows_8 windows_server_2012 windows_rt	win32k.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT does not properly…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0008	2024-11-21 10:46	2013-01-10	Show	GitHub Exploit DB Packet Storm

290298	-	microsoft	xml_core_services windows_7 windows_8 windows_server_2003 windows_server_2008 windows_server_2012 windows_vista windows_xp windows_rt expression_web groove_server off…	Microsoft XML Core Services (aka MSXML) 4.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML XSLT Vulnerab…	CWE-94 Code Injection	CVE-2013-0007	2024-11-21 10:46	2013-01-10	Show	GitHub Exploit DB Packet Storm

290299	-	microsoft	xml_core_services windows_7 windows_8 windows_server_2003 windows_server_2008 windows_server_2012 windows_vista windows_xp windows_rt expression_web groove_server off…	Microsoft XML Core Services (aka MSXML) 3.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML Integer Trunc…	CWE-189 Numeric Errors	CVE-2013-0006	2024-11-21 10:46	2013-01-10	Show	GitHub Exploit DB Packet Storm

290300	-	microsoft	.net_framework management_odata_iis_extension	The WCF Replace function in the Open Data (aka OData) protocol implementation in Microsoft .NET Framework 3.5, 3.5 SP1, 3.5.1, and 4, and the Management OData IIS Extension on Windows Server 2012, al…	CWE-20 Improper Input Validation	CVE-2013-0005	2024-11-21 10:46	2013-01-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed