Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194331 7.1 重要
Network 		WordPress.org - WordPress の wp-admin/includes/ajax-actions.php の wp_ajax_update_plugin 関数におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-6896 2017-02-1 10:37 2016-08-20 Show GitHub Exploit DB Packet Storm
194332 4.3 警告
Network 		WordPress.org - WordPress の wp-admin/includes/ajax-actions.php の wp_ajax_update_plugin 関数における読み取りアクセス制限を回避される脆弱性 CWE-254
CWE-284
CVE-2016-10148 2017-02-1 10:37 2016-07-27 Show GitHub Exploit DB Packet Storm
194333 4 警告
Local 		Info-ZIP - Info-Zip UnZip の zipinfo.c の zi_short 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-9844 2017-01-31 18:23 2016-12-2 Show GitHub Exploit DB Packet Storm
194334 5.5 警告
Local 		Linux - Linux Kernel の crypto/mcryptd.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2016-10147 2017-01-31 18:16 2016-12-15 Show GitHub Exploit DB Packet Storm
194335 7.5 重要
Network 		Artifex Software - Artifex Software MuJS におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-9109 2017-01-31 18:06 2016-09-20 Show GitHub Exploit DB Packet Storm
194336 7.5 重要
Network 		Artifex Software - Artifex Software MuJS の jsfunction.c の Fp_toString 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7564 2017-01-31 18:06 2016-09-20 Show GitHub Exploit DB Packet Storm
194337 7.5 重要
Network 		Artifex Software - Artifex Software MuJS の chartorune 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-7563 2017-01-31 18:06 2016-09-20 Show GitHub Exploit DB Packet Storm
194338 8.1 重要
Network 		CA Technologies - CA Service Desk Manager および CA Service Desk Management の RESTful Web サービスにおけるタスク情報を読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-10086 2017-01-31 18:02 2016-12-30 Show GitHub Exploit DB Packet Storm
194339 9.1 緊急
Network 		Libical project - Libical におけるサービス運用妨害 (DoS) の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2016-9584 2017-01-31 17:53 2016-12-15 Show GitHub Exploit DB Packet Storm
194340 7.5 重要
Network 		Belledonne Communications - Bzrtp ライブラリにおけるなりすまし攻撃を実行される脆弱性 CWE-254
セキュリティ機能 		CVE-2016-6271 2017-01-31 17:50 2016-04-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294691 - jfusion com_jfusion SQL injection vulnerability in the JFusion (com_jfusion) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter to index.php. CWE-89
SQL Injection 		CVE-2009-2782 2017-09-19 10:29 2009-08-18 Show GitHub Exploit DB Packet Storm
294692 - ditcms dit.cms Multiple directory traversal vulnerabilities in dit.cms 1.3, when register_globals is enabled, allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the path param… CWE-22
Path Traversal 		CVE-2009-2784 2017-09-19 10:29 2009-08-18 Show GitHub Exploit DB Packet Storm
294693 - reputation reputation SQL injection vulnerability in reputation.php in the Reputation plugin 2.2.4, 2.2.3, 2.0.4, and earlier for PunBB allows remote attackers to execute arbitrary SQL commands via the poster parameter. CWE-89
SQL Injection 		CVE-2009-2786 2017-09-19 10:29 2009-08-18 Show GitHub Exploit DB Packet Storm
294694 - reputation reputation Directory traversal vulnerability in include/reputation/rep_profile.php in the Reputation plugin 2.2.4, 2.2.3, 2.0.4, and earlier for PunBB, when register_globals is enabled and magic_quotes_gpc is d… CWE-22
Path Traversal 		CVE-2009-2787 2017-09-19 10:29 2009-08-18 Show GitHub Exploit DB Packet Storm
294695 - mobilelib mobilelib_gold Multiple SQL injection vulnerabilities in Mobilelib GOLD 3 allow remote attackers to execute arbitrary SQL commands via the (1) adminName parameter to cp/auth.php, (2) cid parameter to artcat.php, an… CWE-89
SQL Injection 		CVE-2009-2788 2017-09-19 10:29 2009-08-18 Show GitHub Exploit DB Packet Storm
294696 - webdynamite projectbutler PHP remote file inclusion vulnerability in pda_projects.php in WebDynamite ProjectButler 1.5.0 allows remote attackers to execute arbitrary PHP code via a URL in the offset parameter. CWE-94
Code Injection 		CVE-2009-2791 2017-09-19 10:29 2009-08-18 Show GitHub Exploit DB Packet Storm
294697 - joshua_oliver really_simple_cms Directory traversal vulnerability in plugings/pagecontent.php in Really Simple CMS (RSCMS) 0.3a allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the PT param… CWE-22
Path Traversal 		CVE-2009-2792 2017-09-19 10:29 2009-08-18 Show GitHub Exploit DB Packet Storm
294698 - apple itunes Buffer overflow in Apple iTunes before 9.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted .pls file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-2817 2017-09-19 10:29 2009-09-25 Show GitHub Exploit DB Packet Storm
294699 - apple mac_os_x
mac_os_x_server 		The web interface in CUPS before 1.4.2, as used on Apple Mac OS X before 10.6.2 and other platforms, does not properly handle (1) HTTP headers and (2) HTML templates, which allows remote attackers to… CWE-79
Cross-site Scripting 		CVE-2009-2820 2017-09-19 10:29 2009-11-11 Show GitHub Exploit DB Packet Storm
294700 - apple mac_os_x Heap-based buffer overflow in QuickDraw Manager in Apple Mac OS X before 10.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT i… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-2837 2017-09-19 10:29 2009-11-11 Show GitHub Exploit DB Packet Storm