Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258561	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

258562	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

258563	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

258564	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

258565	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

258566	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

258567	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249731	4.3	MEDIUM Network	brave	brave	Brave Software Inc. Brave version version 0.22.810 to 0.24.0 contains a Other/Unknown vulnerability in function ContentSettingsObserver::AllowScript() in content_settings_observer.cc that can result …	CWE-20 Improper Input Validation	CVE-2018-1000815	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

249732	7.5	HIGH Network	asset_pipeline_project	asset-pipeline	Asset Pipeline Grails Plugin Asset-pipeline plugin version Prior to 2.14.1.1, 2.15.1 and 3.0.6 contains a Incorrect Access Control vulnerability in Applications deployed in Jetty that can result in D…	CWE-22 Path Traversal	CVE-2018-1000817	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

249733	6.5	MEDIUM Network	aiohttp-session_project	aiohttp-session	aio-libs aiohttp-session version 2.6.0 and earlier contains a Other/Unknown vulnerability in EncryptedCookieStorage and NaClCookieStorage that can result in Non-expiring sessions / Infinite lifespan.…	CWE-613 Insufficient Session Expiration	CVE-2018-1000814	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

249734	4.8	MEDIUM Network	backdropcms	backdrop_cms	Backdrop CMS version 1.11.0 and earlier contains a Cross Site Scripting (XSS) vulnerability in Sanitization of custom class names used on blocks and layouts. that can result in Execution of JavaScrip…	CWE-79 Cross-site Scripting	CVE-2018-1000813	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

249735	8.1	HIGH Network	artica	integria_ims	Artica Integria IMS version 5.0 MR56 Package 58, likely earlier versions contains a CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability in Password recovery process, line 4…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2018-1000812	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

249736	8.8	HIGH Network	bludit	bludit	bludit version 3.0.0 contains a Unrestricted Upload of File with Dangerous Type vulnerability in Content Upload in Pages Editor that can result in Remote Command Execution. This attack appear to be e…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2018-1000811	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

249737	9.8	CRITICAL Network	paloaltonetworks	expedition	The Palo Alto Networks Expedition Migration tool 1.0.107 and earlier may allow an unauthenticated attacker with remote access to run system level commands on the device hosting this service/applicati…	CWE-269 Improper Privilege Management	CVE-2018-10143	2024-11-21 12:40	2018-12-12	Show	GitHub Exploit DB Packet Storm

249738	8.8	HIGH Network	jenkins redhat	pipeline\ openshift_container_platform	A sandbox bypass vulnerability exists in Pipeline: Groovy Plugin 2.59 and earlier in groovy-sandbox/src/main/java/org/kohsuke/groovy/sandbox/SandboxTransformer.java, groovy-cps/lib/src/main/java/com/…	CWE-269 Improper Privilege Management	CVE-2018-1000866	2024-11-21 12:40	2018-12-10	Show	GitHub Exploit DB Packet Storm

249739	8.8	HIGH Network	jenkins redhat	script_security openshift_container_platform	A sandbox bypass vulnerability exists in Script Security Plugin 1.47 and earlier in groovy-sandbox/src/main/java/org/kohsuke/groovy/sandbox/SandboxTransformer.java that allows attackers with Job/Conf…	CWE-269 Improper Privilege Management	CVE-2018-1000865	2024-11-21 12:40	2018-12-10	Show	GitHub Exploit DB Packet Storm

249740	6.5	MEDIUM Network	jenkins redhat	jenkins openshift_container_platform	A denial of service vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in CronTab.java that allows attackers with Overall/Read permission to have a request handling thread ent…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2018-1000864	2024-11-21 12:40	2018-12-10	Show	GitHub Exploit DB Packet Storm