Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194331	7.1	重要 Network	WordPress.org	-	WordPress の wp-admin/includes/ajax-actions.php の wp_ajax_update_plugin 関数におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2016-6896	2017-02-1 10:37	2016-08-20	Show	GitHub Exploit DB Packet Storm

194332	4.3	警告 Network	WordPress.org	-	WordPress の wp-admin/includes/ajax-actions.php の wp_ajax_update_plugin 関数における読み取りアクセス制限を回避される脆弱性	CWE-254 CWE-284	CVE-2016-10148	2017-02-1 10:37	2016-07-27	Show	GitHub Exploit DB Packet Storm

194333	4	警告 Local	Info-ZIP	-	Info-Zip UnZip の zipinfo.c の zi_short 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-9844	2017-01-31 18:23	2016-12-2	Show	GitHub Exploit DB Packet Storm

194334	5.5	警告 Local	Linux	-	Linux Kernel の crypto/mcryptd.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2016-10147	2017-01-31 18:16	2016-12-15	Show	GitHub Exploit DB Packet Storm

194335	7.5	重要 Network	Artifex Software	-	Artifex Software MuJS におけるサービス運用妨害 (DoS) の脆弱性	CWE-125 境界外読み取り	CVE-2016-9109	2017-01-31 18:06	2016-09-20	Show	GitHub Exploit DB Packet Storm

194336	7.5	重要 Network	Artifex Software	-	Artifex Software MuJS の jsfunction.c の Fp_toString 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-7564	2017-01-31 18:06	2016-09-20	Show	GitHub Exploit DB Packet Storm

194337	7.5	重要 Network	Artifex Software	-	Artifex Software MuJS の chartorune 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-125 境界外読み取り	CVE-2016-7563	2017-01-31 18:06	2016-09-20	Show	GitHub Exploit DB Packet Storm

194338	8.1	重要 Network	CA Technologies	-	CA Service Desk Manager および CA Service Desk Management の RESTful Web サービスにおけるタスク情報を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-10086	2017-01-31 18:02	2016-12-30	Show	GitHub Exploit DB Packet Storm

194339	9.1	緊急 Network	Libical project	-	Libical におけるサービス運用妨害 (DoS) の脆弱性	CWE-416 解放済みメモリの使用	CVE-2016-9584	2017-01-31 17:53	2016-12-15	Show	GitHub Exploit DB Packet Storm

194340	7.5	重要 Network	Belledonne Communications	-	Bzrtp ライブラリにおけるなりすまし攻撃を実行される脆弱性	CWE-254 セキュリティ機能	CVE-2016-6271	2017-01-31 17:50	2016-04-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294741	-	dlecms	dle	PHP remote file inclusion vulnerability in engine/api/api.class.php in DataLife Engine (DLE) 8.2 allows remote attackers to execute arbitrary PHP code via a URL in the dle_config_api parameter.	CWE-94 Code Injection	CVE-2009-3055	2017-09-19 10:29	2009-09-4	Show	GitHub Exploit DB Packet Storm

294742	-	bas_bloemsaat	kingcms	PHP remote file inclusion vulnerability in include/engine/content/elements/menu.php in KingCMS 0.6.0 allows remote attackers to execute arbitrary PHP code via a URL in the CONFIG[AdminPath] parameter.	CWE-94 Code Injection	CVE-2009-3056	2017-09-19 10:29	2009-09-4	Show	GitHub Exploit DB Packet Storm

294743	-	aksoft	akplayer	Stack-based buffer overflow in akPlayer 1.9.0 allows remote attackers to execute arbitrary code via a long string in a .plt playlist file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-3058	2017-09-19 10:29	2009-09-4	Show	GitHub Exploit DB Packet Storm

294744	-	phplivesupport.	phplive\!	SQL injection vulnerability in message_box.php in OSI Codes PHP Live! 3.3 allows remote attackers to execute arbitrary SQL commands via the deptid parameter.	CWE-89 SQL Injection	CVE-2009-3062	2017-09-19 10:29	2009-09-4	Show	GitHub Exploit DB Packet Storm

294745	-	indianpulses	com_gameserver	SQL injection vulnerability in the Game Server (com_gameserver) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a gamepanel action to index…	CWE-89 SQL Injection	CVE-2009-3063	2017-09-19 10:29	2009-09-4	Show	GitHub Exploit DB Packet Storm

294746	-	rein_velt	vedit	Directory traversal vulnerability in debugger/debug_php.php in Ve-EDIT 0.1.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the _GET[filename] parameter.	CWE-22 Path Traversal	CVE-2009-3064	2017-09-19 10:29	2009-09-4	Show	GitHub Exploit DB Packet Storm

294747	-	rein_velt	vedit	PHP remote file inclusion vulnerability in editor/edit_htmlarea.php in Ve-EDIT 0.1.4 allows remote attackers to execute arbitrary PHP code via a URL in the highlighter parameter.	CWE-94 Code Injection	CVE-2009-3065	2017-09-19 10:29	2009-09-4	Show	GitHub Exploit DB Packet Storm

294748	-	mozilla	firefox	Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.3 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execut…	NVD-CWE-noinfo	CVE-2009-3069	2017-09-19 10:29	2009-09-11	Show	GitHub Exploit DB Packet Storm

294749	-	mozilla	firefox	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.0.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly e…	NVD-CWE-noinfo	CVE-2009-3070	2017-09-19 10:29	2009-09-11	Show	GitHub Exploit DB Packet Storm

294750	-	mozilla	firefox	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.0.14, and 3.5.x before 3.5.2, allow remote attackers to cause a denial of service (memory corruption and applica…	NVD-CWE-noinfo	CVE-2009-3071	2017-09-19 10:29	2009-09-11	Show	GitHub Exploit DB Packet Storm