Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193891 6.1 警告
Network 		IBM - IBM Security Access Manager for Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3018 2017-02-13 11:53 2016-12-6 Show GitHub Exploit DB Packet Storm
193892 6.1 警告
Network 		IBM - IBM iNotes におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2939 2017-02-13 11:53 2016-11-2 Show GitHub Exploit DB Packet Storm
193893 6.1 警告
Network 		IBM - IBM iNotes におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2938 2017-02-13 11:53 2016-11-2 Show GitHub Exploit DB Packet Storm
193894 3.7
Network 		IBM - IBM BigFix Platform における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-0297 2017-02-13 11:53 2016-11-7 Show GitHub Exploit DB Packet Storm
193895 3.3
Local 		IBM - IBM BigFix Platform におけるログファイルに重要な情報を格納される脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2016-0296 2017-02-13 11:53 2016-11-7 Show GitHub Exploit DB Packet Storm
193896 5.4 警告
Network 		IBM - IBM Campaign におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-0265 2017-02-13 11:52 2016-10-18 Show GitHub Exploit DB Packet Storm
193897 6.1 警告
Network 		Atlassian - Atlassian JIRA の includes/decorators/global-translations.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6285 2017-02-10 17:34 2016-09-27 Show GitHub Exploit DB Packet Storm
193898 5.5 警告
Local 		libdwarf project - libdwarf の get_abbrev_array_info 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-787
境界外書き込み 		CVE-2016-2050 2017-02-10 16:39 2016-01-19 Show GitHub Exploit DB Packet Storm
193899 9.8 緊急
Network 		シスコシステムズ - Cisco TelePresence MCU ソフトウェアのカーネルのプロプライエタリデバイスドライバにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2017-3792 2017-02-10 15:18 2017-01-25 Show GitHub Exploit DB Packet Storm
193900 10 緊急
Network 		シスコシステムズ - Cisco Prime Home の Web ベースの GUI における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2017-3791 2017-02-10 15:18 2017-02-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294521 - deslock deslock\+ The dlpcrypt.sys kernel driver 0.1.1.27 in DESlock+ 4.0.2 allows local users to gain privileges via a crafted IOCTL 0x80012010 request to the DLPCryptCore device. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-4832 2017-09-19 10:30 2010-04-30 Show GitHub Exploit DB Packet Storm
294522 - xpressengine zeroboard lib.php in Zeroboard 4.1 pl7 allows remote attackers to execute arbitrary PHP code via a crafted parameter name, possibly related to now_connect.php. CWE-94
Code Injection 		CVE-2009-4834 2017-09-19 10:30 2010-05-5 Show GitHub Exploit DB Packet Storm
294523 - moviephp movie_php_script Eval injection vulnerability in system/services/init.php in Movie PHP Script 2.0 allows remote attackers to execute arbitrary PHP code via the anticode parameter. CWE-94
Code Injection 		CVE-2009-4836 2017-09-19 10:30 2010-05-6 Show GitHub Exploit DB Packet Storm
294524 - roxio cineplayer Heap-based buffer overflow in the IAManager ActiveX control in IAManager.dll in Roxio CinePlayer 3.2 allows remote attackers to execute arbitrary code via a long argument to the SetIAPlayerName metho… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-4840 2017-09-19 10:30 2010-05-6 Show GitHub Exploit DB Packet Storm
294525 - roxio cineplayer Heap-based buffer overflow in the SonicMediaPlayer ActiveX control in SonicMediaPlayer.dll in Roxio CinePlayer 3.2 allows remote attackers to execute arbitrary code via a long argument to the DiskTyp… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-4841 2017-09-19 10:30 2010-05-6 Show GitHub Exploit DB Packet Storm
294526 - scripts.oldguy talkback addons/import.php in TalkBack 2.3.14 allows remote attackers to execute arbitrary commands via the result parameter. CWE-20
 Improper Input Validation  		CVE-2009-4854 2017-09-19 10:30 2010-05-8 Show GitHub Exploit DB Packet Storm
294527 - demarque typing_pal SQL injection vulnerability in demo.php in Typing Pal 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the idTableProduit parameter. CWE-89
SQL Injection 		CVE-2009-4860 2017-09-19 10:30 2010-05-11 Show GitHub Exploit DB Packet Storm
294528 - abushhab alwasel Multiple SQL injection vulnerabilities in Alwasel 1.5 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) show.php and (2) xml.php. CWE-89
SQL Injection 		CVE-2009-4862 2017-09-19 10:30 2010-05-11 Show GitHub Exploit DB Packet Storm
294529 - ultraplayer ultraplayer_media_player Stack-based buffer overflow in UltraPlayer Media Player 2.112 allows remote attackers to execute arbitrary code via a long string in a .usk file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-4863 2017-09-19 10:30 2010-05-11 Show GitHub Exploit DB Packet Storm
294530 - tony_million tuniac Buffer overflow in Tuniac 090517c allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long URL in a .m3u playlist file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-4867 2017-09-19 10:30 2010-05-11 Show GitHub Exploit DB Packet Storm