Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230341 7.5 危険 logoshows - Logoshows BBS の globepersonnel_login.asp における管理アクセス権を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4546 2012-09-25 17:38 2010-01-4 Show GitHub Exploit DB Packet Storm
230342 5 警告 logoshows - Logoshows BBS におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4545 2012-09-25 17:38 2010-01-4 Show GitHub Exploit DB Packet Storm
230343 4.3 警告 MediaWiki - MediaWiki の Special:Block 実装におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4589 2012-09-25 17:38 2009-07-13 Show GitHub Exploit DB Packet Storm
230344 3.5 注意 nanwich - Drupal 用の Submitted By モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4559 2012-09-25 17:38 2009-07-15 Show GitHub Exploit DB Packet Storm
230345 4.3 警告 isolsoft - IsolSoft Support Center の newticket.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4542 2012-09-25 17:38 2010-01-4 Show GitHub Exploit DB Packet Storm
230346 7.5 危険 isolsoft - IsolSoft Support Center における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4541 2012-09-25 17:38 2010-01-4 Show GitHub Exploit DB Packet Storm
230347 4.3 警告 LXR Project - LXR Cross Referencer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4497 2012-09-25 17:38 2010-01-7 Show GitHub Exploit DB Packet Storm
230348 5 警告 orion - Orion Application Server における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4493 2012-09-25 17:38 2010-01-13 Show GitHub Exploit DB Packet Storm
230349 5 警告 Igor Sysoev - nginx におけるファイルを上書きされる脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4487 2012-09-25 17:38 2010-01-13 Show GitHub Exploit DB Packet Storm
230350 4.3 警告 nanwich - Drupal 用の FAQ Ask モジュールにおけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2009-4534 2012-09-25 17:38 2009-10-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
284811 - orbitdownloader orbit_downloader Stack-based buffer overflow in Orbit Downloader 2.8.2 and 2.8.3, and possibly other versions before 2.8.5, allows remote attackers to execute arbitrary code via a crafted HTTP URL with a long host na… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-0187 2018-10-12 06:00 2009-02-27 Show GitHub Exploit DB Packet Storm
284812 - foxitsoftware foxit_reader Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506, including 3.0.2009.1301, does not properly handle a JBIG2 symbol dictionary segment with zero new symbols, which allows remote attackers … CWE-94
Code Injection 		CVE-2009-0191 2018-10-12 06:00 2009-03-11 Show GitHub Exploit DB Packet Storm
284813 - novell edirectory Off-by-one error in the iMonitor component in Novell eDirectory 8.8 SP3, 8.8 SP3 FTF3, and possibly other versions allows remote attackers to execute arbitrary code via an HTTP request with a crafted… CWE-189
Numeric Errors 		CVE-2009-0192 2018-10-12 06:00 2009-07-15 Show GitHub Exploit DB Packet Storm
284814 - garmin garmin_communicator_plugin The domain-locking implementation in the GARMINAXCONTROL.GarminAxControl_t.1 ActiveX control in npGarmin.dll in the Garmin Communicator Plug-In 2.6.4.0 does not properly enforce the restrictions that… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-0194 2018-10-12 06:00 2009-05-12 Show GitHub Exploit DB Packet Storm
284815 - ghostscript ghostscript Heap-based buffer overflow in the big2_decode_symbol_dict function (jbig2_symbol_dict.c) in the JBIG2 decoding library (jbig2dec) in Ghostscript 8.64, and probably earlier versions, allows remote att… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-0196 2018-10-12 06:00 2009-04-17 Show GitHub Exploit DB Packet Storm
284816 - irfanview formats Integer overflow in the FORMATS Plugin before 4.23 for IrfanView allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a large XPM file that triggers … CWE-189
Numeric Errors 		CVE-2009-0197 2018-10-12 06:00 2009-04-10 Show GitHub Exploit DB Packet Storm
284817 - adobe acrobat
acrobat_reader 		Heap-based buffer overflow in the JBIG2 filter in Adobe Reader 7 and Acrobat 7 before 7.1.3, Adobe Reader 8 and Acrobat 8 before 8.1.6, and Adobe Reader 9 and Acrobat 9 before 9.1.2 allows remote att… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-0198 2018-10-12 06:00 2009-06-12 Show GitHub Exploit DB Packet Storm
284818 - vmware ace
movie_decoder
player
workstation 		Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-0199 2018-10-12 06:00 2009-09-9 Show GitHub Exploit DB Packet Storm
284819 - openoffice openoffice.org Integer underflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to execute arbitrary code via crafted records in the document table of a Word … CWE-189
Numeric Errors 		CVE-2009-0200 2018-10-12 06:00 2009-09-3 Show GitHub Exploit DB Packet Storm
284820 - openoffice openoffice.org Heap-based buffer overflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to execute arbitrary code via unspecified records in a crafted Word d… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-0201 2018-10-12 06:00 2009-09-3 Show GitHub Exploit DB Packet Storm