Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259651 4.3 警告 CA Technologies - CA Service Desk の Web インターフェイスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-4149 2010-12-27 11:38 2009-12-8 Show GitHub Exploit DB Packet Storm
259652 4.3 警告 CA Technologies - 複数の CA 製品の Anti-Virus エンジン内にある arclib コンポーネントおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2009-3588 2010-12-27 11:36 2009-10-8 Show GitHub Exploit DB Packet Storm
259653 9.3 危険 CA Technologies - 複数の CA 製品の Anti-Virus エンジン内にある arclib コンポーネントにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2009-3587 2010-12-27 11:32 2009-10-8 Show GitHub Exploit DB Packet Storm
259654 5 警告 CA Technologies - CA Host-Based Intrusion Prevention System の kmxIds.sys におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2009-2740 2010-12-27 11:24 2009-08-18 Show GitHub Exploit DB Packet Storm
259655 4.3 警告 CA Technologies - CA SiteMinder における J2EE アプリケーションのクロスサイトスクリプティングに対する保護を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-2705 2010-12-27 11:19 2009-08-11 Show GitHub Exploit DB Packet Storm
259656 4.3 警告 CA Technologies - CA SiteMinder における J2EE アプリケーションのクロスサイトスクリプティングに対する保護を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-2704 2010-12-27 10:47 2009-08-11 Show GitHub Exploit DB Packet Storm
259657 10 危険 CA Technologies - 複数の CA 製品の Data Transport Services におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-2026 2010-12-27 10:45 2009-08-6 Show GitHub Exploit DB Packet Storm
259658 5 警告 CA Technologies - CA ARCserve Backup のメッセージエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2009-1761 2010-12-27 10:41 2009-06-15 Show GitHub Exploit DB Packet Storm
259659 2.1 注意 CA Technologies - CA Internet Security Suite の vetmonnt.sys におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2009-0682 2010-12-27 10:36 2009-08-18 Show GitHub Exploit DB Packet Storm
259660 10 危険 CA Technologies - CA Service Metric Analysis および Service Level Management の smmsnmpd サービスにおける任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-0043 2010-12-27 10:34 2009-01-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250141 5.4 MEDIUM
Network
odoo odoo Cross-site scripting (XSS) issue in mail module in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier, allows remote attackers to inject arbitrary web script in the browser of a vic… CWE-79
Cross-site Scripting
CVE-2018-15638 2024-11-21 12:51 2020-12-23 Show GitHub Exploit DB Packet Storm
250142 6.1 MEDIUM
Network
odoo odoo Cross-site scripting (XSS) issue in attachment management in Odoo Community 14.0 and earlier and Odoo Enterprise 14.0 and earlier, allows remote attackers to inject arbitrary web script in the browse… CWE-79
Cross-site Scripting
CVE-2018-15634 2024-11-21 12:51 2020-12-23 Show GitHub Exploit DB Packet Storm
250143 6.1 MEDIUM
Network
odoo odoo Cross-site scripting (XSS) issue in "document" module in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier, allows remote attackers to inject arbitrary web script in the browser of… CWE-79
Cross-site Scripting
CVE-2018-15633 2024-11-21 12:51 2020-12-23 Show GitHub Exploit DB Packet Storm
250144 9.1 CRITICAL
Network
odoo odoo Improper input validation in database creation logic in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier, allows remote attackers to initialize an empty database on which they can… CWE-20
 Improper Input Validation 
CVE-2018-15632 2024-11-21 12:51 2020-12-23 Show GitHub Exploit DB Packet Storm
250145 6.1 MEDIUM
Network
easyio easyio_30p_firmware EasyIO EasyIO-30P devices before 2.0.5.27 allow XSS via the dev.htm GDN parameter. CWE-79
Cross-site Scripting
CVE-2018-15820 2024-11-21 12:51 2020-03-3 Show GitHub Exploit DB Packet Storm
250146 7.5 HIGH
Network
easyio easyio_30p_firmware EasyIO EasyIO-30P devices before 2.0.5.27 have Incorrect Access Control, related to webuser.js. CWE-287
Improper Authentication
CVE-2018-15819 2024-11-21 12:51 2020-03-3 Show GitHub Exploit DB Packet Storm
250147 5.5 MEDIUM
Local
stopzilla antimalware An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains an Arbitrary Write vulnerability due to not validating the output buffer address value from IOCtl 0x8000… CWE-20
 Improper Input Validation 
CVE-2018-15738 2024-11-21 12:51 2019-07-9 Show GitHub Exploit DB Packet Storm
250148 7.5 HIGH
Network
dnnsoftware dotnetnuke DNN (aka DotNetNuke) 9.2 through 9.2.1 incorrectly converts encryption key source values, resulting in lower than expected entropy. CWE-331
 Insufficient Entropy
CVE-2018-15812 2024-11-21 12:51 2019-07-4 Show GitHub Exploit DB Packet Storm
250149 9.8 CRITICAL
Network
actiontec web6000q_firmware On Telus Actiontec WEB6000Q v1.1.02.22 devices, an attacker can login with root level access with the user "root" and password "admin" by using the enabled onboard UART headers. CWE-662
 Improper Synchronization
CVE-2018-15555 2024-11-21 12:51 2019-06-29 Show GitHub Exploit DB Packet Storm
250150 9.8 CRITICAL
Network
lexmark cx82x_firmware
cx860_firmware
xc6152_firmware
xc8155_firmware
xc8160_firmware
cx72x_firmware
xc41x0_firmware
cx92x_firmware
xc92x5_firmware
mx321_firmware
mb2338_firmwar…
Various Lexmark devices have a Buffer Overflow (issue 2 of 2). CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-15520 2024-11-21 12:51 2019-06-29 Show GitHub Exploit DB Packet Storm