Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
235871 7.8 危険 IBM - IBM WebSphere MQ のサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-3161 2012-09-25 17:27 2009-09-10 Show GitHub Exploit DB Packet Storm
235872 8.8 危険 IBM - IBM WebSphere MQ における脆弱性 CWE-noinfo
情報不足 		CVE-2009-3160 2012-09-25 17:27 2009-09-10 Show GitHub Exploit DB Packet Storm
235873 7.8 危険 IBM - IBM WebSphere MQ の rriDecompress 関数におけるサービス運用妨害 (DoS) 状態となる脆弱性 CWE-noinfo
情報不足 		CVE-2009-3159 2012-09-25 17:27 2009-09-10 Show GitHub Exploit DB Packet Storm
235874 3.5 注意 Karen Stevenson - Drupal 用の Calendar モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3157 2012-09-25 17:27 2009-07-29 Show GitHub Exploit DB Packet Storm
235875 4.3 警告 nt - NTSOFT BBS E-Market Professional の becommunity/community/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3152 2012-09-25 17:27 2009-09-10 Show GitHub Exploit DB Packet Storm
235876 7.5 危険 multi-website - Multi Website の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3150 2012-09-25 17:27 2009-09-10 Show GitHub Exploit DB Packet Storm
235877 7.5 危険 Mozilla Foundation - Bugzilla の Bug.search WebService 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3125 2012-09-25 17:27 2009-09-11 Show GitHub Exploit DB Packet Storm
235878 5 警告 ipmotor - QuarkMail の get_message.cgi におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3124 2012-09-25 17:27 2009-09-9 Show GitHub Exploit DB Packet Storm
235879 5 警告 OXID eSales AG - OXID eShop Professional などの製品における製品レビューへの書き込みアクセス権を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-3113 2012-09-25 17:27 2009-05-11 Show GitHub Exploit DB Packet Storm
235880 10 危険 OXID eSales AG - OXID eShop Professional などの製品における管理者の権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-3112 2012-09-25 17:27 2009-02-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346941 - perfectnav perfectnav The PerfectNav plugin for Microsoft Internet Explorer allows remote attackers to cause a denial of service (browser crash) via a malformed URL such as "?". NVD-CWE-Other
CVE-2004-2382 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
346942 - nullsoft winamp NullSoft Winamp 5.02 allows remote attackers to cause a denial of service (crash) by creating a file with a long filename, which causes the victim's player to crash when the file is opened from the c… NVD-CWE-Other
CVE-2004-2384 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
346943 - emumail emu_webmail EMU Webmail 5.2.7 allows remote attackers to obtain sensitive path information (home directory) via an HTTP request for init.emu. NVD-CWE-Other
CVE-2004-2385 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
346944 - denis_sbragion
peter_astrand 		sredird
sercd 		Format string vulnerability in the LogMsg function in sercd before 2.3.1 and sredird 2.2.1 and earlier allows remote attackers to execute arbitrary code via format string specifiers passed from the H… CWE-134
Use of Externally-Controlled Format String 		CVE-2004-2386 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
346945 - denis_sbragion
peter_astrand 		sredird
sercd 		Buffer overflow in the HandleCPCCommand function of sercd before 2.3.1 and sredird 2.2.1 and earlier allows remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2004-2387 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
346946 - ibm aix rexecd for AIX 4.3.3 does not properly use a local copy of the pwd structure when calling getpwnam, which may cause the structure to be overwritten by the authenticate function and assign privileges … NVD-CWE-Other
CVE-2004-2388 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
346947 - jabberstudio jabber_gadu-gadu_transport Unknown vulnerability in Jabber Gadu-Gadu Transport (a.k.a. jabber-gg-transport) 2.0.x before 2.0.8 allows remote attackers to cause a denial of service (infinite loop) via user re-registration. NVD-CWE-Other
CVE-2004-2389 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
346948 - jabberstudio jabber_gadu-gadu_transport The roster import functionality in Jabber Gadu-Gadu Transport (a.k.a. jabber-gg-transport) 2.0.x before 2.0.8, when using libgadu 1.0 and later, allows attackers to cause a denial of service via unkn… NVD-CWE-Other
CVE-2004-2390 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
346949 - jabberstudio jabber_gadu-gadu_transport Jabber Gadu-Gadu Transport (a.k.a. jabber-gg-transport) 2.0.x before 2.0.8 allows remote attackers to cause a denial of service a message with an empty <priority/> tag. NVD-CWE-Other
CVE-2004-2391 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
346950 - mandrakesoft mandrake_linux
mandrake_linux_corporate_server 		libuser 0.51.7 allows attackers to cause a denial of service (crash or disk consumption) via unknown attack vectors, related to read failures and other bugs. NVD-CWE-Other
CVE-2004-2392 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm