Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
200701	4.3	警告	Google	-	Google Chrome の Chrome Instant 機能における制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-1625	2016-02-26 13:55	2016-02-9	Show	GitHub Exploit DB Packet Storm

200702	6.8	警告	Google	-	Google Chrome の DOM の実装における同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-1623	2016-02-26 13:55	2016-02-9	Show	GitHub Exploit DB Packet Storm

200703	6.8	警告	Google	-	Google Chrome の拡張サブシステムにおける同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-1622	2016-02-26 13:55	2016-02-9	Show	GitHub Exploit DB Packet Storm

200704	4.3	警告	シスコシステムズ	-	Cisco WebEx Meetings Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-1309	2016-02-26 11:58	2016-02-5	Show	GitHub Exploit DB Packet Storm

200705	2.1	注意	IBM	-	IBM WebSphere MQ の WMQ Telemetry の MQXR サービスにおける重要な情報を取得される脆弱性	CWE-200 CWE-255	CVE-2015-2012	2016-02-26 11:54	2015-02-19	Show	GitHub Exploit DB Packet Storm

200706	4	警告	Roundcube.net	-	Roundcube の program/steps/addressbook/photo.inc における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-8794	2016-02-26 11:15	2015-06-5	Show	GitHub Exploit DB Packet Storm

200707	6.8	警告	Mozilla Foundation	-	Mozilla Firefox における同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-1949	2016-02-26 11:02	2016-02-11	Show	GitHub Exploit DB Packet Storm

200708	6.1	警告 Network	Script*	-	Log-Chat におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-1157	2016-02-25 15:10	2016-02-22	Show	GitHub Exploit DB Packet Storm

200709	4.3	警告	シスコシステムズ	-	Cisco Emergency Responder におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-1331	2016-02-25 14:56	2016-02-15	Show	GitHub Exploit DB Packet Storm

200710	5	警告	シスコシステムズ	-	Cisco Universal Small Cell デバイスファームウェアにおける特定の証明書検証機能を回避される脆弱性	CWE-200 情報漏えい	CVE-2016-1321	2016-02-25 14:56	2016-02-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 19, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306991	-	apple	cups	The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, w…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-0393	2013-05-15 12:06	2010-03-6	Show	GitHub Exploit DB Packet Storm

306992	-	bibtex	bibtex	Buffer overflow in BibTeX 0.99 allows context-dependent attackers to cause a denial of service (memory corruption and crash) via a long .bib bibliography file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-1284	2013-04-19 11:49	2009-04-10	Show	GitHub Exploit DB Packet Storm

306993	-	matthias_klose	bash-doc	bash-doc 3.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/cb#####.? temporary file, related to the (1) aliasconv.sh, (2) aliasconv.bash, and (3) cshtobash scripts.	CWE-59 Link Following	CVE-2008-5374	2013-04-19 11:42	2008-12-9	Show	GitHub Exploit DB Packet Storm

306994	-	oracle	sun_products_suite	Unspecified vulnerability in the Sun Java System Communications Express component in Oracle Sun Product Suite 6 2005Q4 (6.2) and and 6.3 allows remote authenticated users to affect confidentiality vi…	NVD-CWE-noinfo	CVE-2010-0885	2013-02-8 14:00	2010-04-14	Show	GitHub Exploit DB Packet Storm

306995	-	symantec	securityexpressions_audit_and_compliance_server	Cross-site scripting (XSS) vulnerability in the console in Symantec SecurityExpressions Audit and Compliance Server 4.1.1, 4.1, and earlier allows remote authenticated users to inject arbitrary web s…	CWE-79 Cross-site Scripting	CVE-2009-3029	2013-02-7 13:21	2009-10-15	Show	GitHub Exploit DB Packet Storm

306996	-	ibm symantec	lotus_notes brightmail_gateway data_loss_prevention_detection_servers data_loss_prevention_endpoint_agents im_manager_2007 mail_security	Integer overflow in kvolefio.dll 8.5.0.8339 and 10.5.0.0 in the Autonomy KeyView Filter SDK, as used in IBM Lotus Notes 8.5, Symantec Mail Security for Microsoft Exchange 5.0.10 through 5.0.13, and o…	CWE-189 Numeric Errors	CVE-2009-3032	2013-02-7 13:21	2010-03-6	Show	GitHub Exploit DB Packet Storm

306997	-	symantec	im_manager	Cross-site scripting (XSS) vulnerability in the console in Symantec IM Manager 8.3 and 8.4 before 8.4.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2009-3036	2013-02-7 13:21	2010-02-24	Show	GitHub Exploit DB Packet Storm

306998	-	ibm symantec autonomy	lotus_notes brightmail_appliance data_loss_prevention_detection_servers data_loss_prevention_endpoint_agents mail_security mail_security_appliance keyview	Buffer overflow in xlssr.dll in the Autonomy KeyView XLS viewer (aka File Viewer for Excel), as used in IBM Lotus Notes 5.x through 8.5.x, Symantec Mail Security, Symantec BrightMail Appliance, Syman…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-3037	2013-02-7 13:21	2009-09-2	Show	GitHub Exploit DB Packet Storm

306999	-	symantec	altiris_deployment_solution	The Aclient GUI in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 installs a client executable with insecure permissions (Everyone:Full Control), which allows local users to gain…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-3108	2013-02-7 13:21	2009-09-9	Show	GitHub Exploit DB Packet Storm

307000	-	symantec	altiris_deployment_solution	Unspecified vulnerability in the AClient agent in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430, when key-based authentication is being used between a deployment server and a cl…	NVD-CWE-noinfo	CVE-2009-3109	2013-02-7 13:21	2009-09-9	Show	GitHub Exploit DB Packet Storm