Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230331 7.5 危険 Joomla! - Joomla! 用の DhForum における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4583 2012-09-25 17:38 2010-01-6 Show GitHub Exploit DB Packet Storm
230332 4.3 警告 hastablog - Hasta Blog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4580 2012-09-25 17:38 2010-01-6 Show GitHub Exploit DB Packet Storm
230333 4.3 警告 Joomla! - Joomla! および Mambo 用の Artist avenue コンポーネントにおける脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4579 2012-09-25 17:38 2010-01-6 Show GitHub Exploit DB Packet Storm
230334 7.5 危険 MAXDev - MAXdev MDPro 用の MDForum モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4577 2012-09-25 17:38 2010-01-6 Show GitHub Exploit DB Packet Storm
230335 7.5 危険 i-escorts - I-Escorts の Directory Script の country_escorts.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4574 2012-09-25 17:38 2010-01-6 Show GitHub Exploit DB Packet Storm
230336 4.3 警告 joomlabear - Joomla! 用の Joomulus におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4573 2012-09-25 17:38 2010-01-6 Show GitHub Exploit DB Packet Storm
230337 6.8 警告 k-factor - AgoraCart におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-4555 2012-09-25 17:38 2010-01-4 Show GitHub Exploit DB Packet Storm
230338 4.3 警告 intesync - Miniweb の Survey Pro モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4552 2012-09-25 17:38 2010-01-4 Show GitHub Exploit DB Packet Storm
230339 7.5 危険 intesync - Miniweb の Survey Pro モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4551 2012-09-25 17:38 2010-01-4 Show GitHub Exploit DB Packet Storm
230340 7.5 危険 Kunena - Joomla! の kunena コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4550 2012-09-25 17:38 2010-01-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
284811 - orbitdownloader orbit_downloader Stack-based buffer overflow in Orbit Downloader 2.8.2 and 2.8.3, and possibly other versions before 2.8.5, allows remote attackers to execute arbitrary code via a crafted HTTP URL with a long host na… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-0187 2018-10-12 06:00 2009-02-27 Show GitHub Exploit DB Packet Storm
284812 - foxitsoftware foxit_reader Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506, including 3.0.2009.1301, does not properly handle a JBIG2 symbol dictionary segment with zero new symbols, which allows remote attackers … CWE-94
Code Injection 		CVE-2009-0191 2018-10-12 06:00 2009-03-11 Show GitHub Exploit DB Packet Storm
284813 - novell edirectory Off-by-one error in the iMonitor component in Novell eDirectory 8.8 SP3, 8.8 SP3 FTF3, and possibly other versions allows remote attackers to execute arbitrary code via an HTTP request with a crafted… CWE-189
Numeric Errors 		CVE-2009-0192 2018-10-12 06:00 2009-07-15 Show GitHub Exploit DB Packet Storm
284814 - garmin garmin_communicator_plugin The domain-locking implementation in the GARMINAXCONTROL.GarminAxControl_t.1 ActiveX control in npGarmin.dll in the Garmin Communicator Plug-In 2.6.4.0 does not properly enforce the restrictions that… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-0194 2018-10-12 06:00 2009-05-12 Show GitHub Exploit DB Packet Storm
284815 - ghostscript ghostscript Heap-based buffer overflow in the big2_decode_symbol_dict function (jbig2_symbol_dict.c) in the JBIG2 decoding library (jbig2dec) in Ghostscript 8.64, and probably earlier versions, allows remote att… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-0196 2018-10-12 06:00 2009-04-17 Show GitHub Exploit DB Packet Storm
284816 - irfanview formats Integer overflow in the FORMATS Plugin before 4.23 for IrfanView allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a large XPM file that triggers … CWE-189
Numeric Errors 		CVE-2009-0197 2018-10-12 06:00 2009-04-10 Show GitHub Exploit DB Packet Storm
284817 - adobe acrobat
acrobat_reader 		Heap-based buffer overflow in the JBIG2 filter in Adobe Reader 7 and Acrobat 7 before 7.1.3, Adobe Reader 8 and Acrobat 8 before 8.1.6, and Adobe Reader 9 and Acrobat 9 before 9.1.2 allows remote att… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-0198 2018-10-12 06:00 2009-06-12 Show GitHub Exploit DB Packet Storm
284818 - vmware ace
movie_decoder
player
workstation 		Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-0199 2018-10-12 06:00 2009-09-9 Show GitHub Exploit DB Packet Storm
284819 - openoffice openoffice.org Integer underflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to execute arbitrary code via crafted records in the document table of a Word … CWE-189
Numeric Errors 		CVE-2009-0200 2018-10-12 06:00 2009-09-3 Show GitHub Exploit DB Packet Storm
284820 - openoffice openoffice.org Heap-based buffer overflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to execute arbitrary code via unspecified records in a crafted Word d… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-0201 2018-10-12 06:00 2009-09-3 Show GitHub Exploit DB Packet Storm