Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
238571 7.5 危険 alikonweb
Joomla!		 - Joomla! の bookjoomlas コンポーネントの sub_commententry.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1263 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
238572 7.2 危険 フォーティネット - Fortinet FortiClient におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2009-1262 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
238573 9.3 危険 EZB Systems - UltraISO におけるスタックベースのバッファーオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1260 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
238574 7.5 危険 FlexCMS - FlexCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1256 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
238575 4.3 警告 Drupal - Drupal 用の Feed 要素マッパーモジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1249 2012-06-26 16:10 2009-03-26 Show GitHub Exploit DB Packet Storm
238576 7.5 危険 acutecp - Acute Control Panel における任意の PHP コードが実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-1248 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
238577 7.5 危険 acutecp.rediscussed - Acute Control Panel における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1247 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
238578 7.5 危険 blogplus - Blogplus におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1246 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
238579 7.5 危険 cccp-common-clan-portal-pasterbin - CCCP Community Clan Portal Pastebin の insert_to_pastebin 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1245 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
238580 7.5 危険 arcadwy - Arcadwy Arcade Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1229 2012-06-26 16:10 2009-04-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307901 - matt_wright pgpmail.pl PGPMail.pl 1.31 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) recipient or (2) pgpuserid parameters. NVD-CWE-Other
CVE-2001-0937 2016-10-18 11:13 2001-11-30 Show GitHub Exploit DB Packet Storm
307902 - persits aspupload Directory traversal vulnerability in AspUpload 2.1, in certain configurations, allows remote attackers to upload and read arbitrary files, and list arbitrary directories, via a .. (dot dot) in the Fi… NVD-CWE-Other
CVE-2001-0938 2016-10-18 11:13 2001-11-30 Show GitHub Exploit DB Packet Storm
307903 - khaled_mardam-bey mirc DDE in mIRC allows local users to launch applications under another user's account via a DDE message that executes a command, which may be executed by the other user's process. NVD-CWE-Other
CVE-2001-0944 2016-10-18 11:13 2001-12-2 Show GitHub Exploit DB Packet Storm
307904 - microsoft outlook_express Buffer overflow in Outlook Express 5.0 through 5.02 for Macintosh allows remote attackers to cause a denial of service via an e-mail message that contains a long line. NVD-CWE-Other
CVE-2001-0945 2016-10-18 11:13 2001-12-3 Show GitHub Exploit DB Packet Storm
307905 - oracle database_server Unknown vulnerability in Oracle Label Security in Oracle 8.1.7 and 9.0.1, when audit functionality, SET_LABEL, or SQL*Predicate is being used, allows local users to gain additional access. NVD-CWE-Other
CVE-2001-0831 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm
307906 - oracle database_server Vulnerability in Oracle 8.0.x through 9.0.1 on Unix allows local users to overwrite arbitrary files, possibly via a symlink attack or incorrect file permissions in (1) the ORACLE_HOME/rdbms/log direc… NVD-CWE-Other
CVE-2001-0832 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm
307907 - ikonboard.com ikonboard Directory traversal vulnerability in Search.cgi in Ikonboard ib219 and earlier allows remote attackers to overwrite files and gain privileges via .. (dot dot) sequences in the amembernamecookie cooki… NVD-CWE-Other
CVE-2001-0841 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm
307908 - leoboard lb5000 Directory traversal vulnerability in Search.cgi in Leoboard LB5000 LB5000II 1029 and earlier allows remote attackers to overwrite files and gain privileges via .. (dot dot) sequences in the amemberna… NVD-CWE-Other
CVE-2001-0842 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm
307909 - seth_leonard book_of_guests
post_it 		Vulnerability in (1) Book of guests and (2) Post it! allows remote attackers to execute arbitrary code via shell metacharacters in the email parameter. NVD-CWE-Other
CVE-2001-0844 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm
307910 - e-zone_media fuse_talk join.cfm in e-Zone Media Fuse Talk allows a local user to execute arbitrary SQL code via a semi-colon (;) in a form variable. NVD-CWE-Other
CVE-2001-0848 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm