Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
238911	7.5	危険	ninjadesigns	-	Flatchat の pmscript.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1486	2012-09-25 17:27	2009-04-29	Show	GitHub Exploit DB Packet Storm

238912	4.3	警告	MoinMoin	-	MoinMoin の action/AttachFile.py におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1482	2012-09-25 17:27	2009-04-18	Show	GitHub Exploit DB Packet Storm

238913	4.3	警告	IceWarp, Inc.	-	IceWarp の eMail Server などの Forgot Password 実装における CRLF インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2009-1469	2012-09-25 17:27	2009-05-5	Show	GitHub Exploit DB Packet Storm

238914	6.5	警告	IceWarp, Inc.	-	IceWarp の eMail Server などの製品で使用される検索フォームにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1468	2012-09-25 17:27	2009-05-5	Show	GitHub Exploit DB Packet Storm

238915	4.3	警告	IceWarp, Inc.	-	IceWarp eMail Server などの製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1467	2012-09-25 17:27	2009-05-5	Show	GitHub Exploit DB Packet Storm

238916	2.1	注意	klinzmann	-	A-A-S における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2009-1466	2012-09-25 17:27	2009-05-14	Show	GitHub Exploit DB Packet Storm

238917	7.5	危険	klinzmann	-	A-A-S におけるアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-1465	2012-09-25 17:27	2009-05-14	Show	GitHub Exploit DB Packet Storm

238918	6.8	警告	klinzmann	-	A-A-S の index.aas におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-1464	2012-09-25 17:27	2009-05-14	Show	GitHub Exploit DB Packet Storm

238919	7.5	危険	ivano culmine	-	WebPortal CMS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1445	2012-09-25 17:27	2009-04-27	Show	GitHub Exploit DB Packet Storm

238920	10	危険	OCS Inventory Team	-	OCS Inventory NG の Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-1443	2012-09-25 17:27	2009-04-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285361	4.3	MEDIUM Network	php hiphop_virtual_machine_for_php_project	php hiphop_virtual_machine_for_php	Directory traversal vulnerability in the ZipArchive::extractTo function in ext/zip/php_zip.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 and ext/zip/ext_zip.cpp in HHVM before …	CWE-22 Path Traversal	CVE-2014-9767	2024-11-21 11:21	2016-05-22	Show	GitHub Exploit DB Packet Storm

285362	7.5	HIGH Network	enlightenment debian	imlib2 debian_linux	Integer overflow in imlib2 before 1.4.7 allows remote attackers to cause a denial of service (memory consumption or application crash) via a crafted image, which triggers an invalid read operation.	NVD-CWE-Other	CVE-2014-9771	2024-11-21 11:21	2016-05-14	Show	GitHub Exploit DB Packet Storm

285363	7.5	HIGH Network	debian enlightenment	debian_linux imlib2	imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via a crafted GIF file.	CWE-20 Improper Input Validation	CVE-2014-9764	2024-11-21 11:21	2016-05-14	Show	GitHub Exploit DB Packet Storm

285364	7.5	HIGH Network	debian enlightenment	debian_linux imlib2	imlib2 before 1.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted PNM file.	CWE-189 Numeric Errors	CVE-2014-9763	2024-11-21 11:21	2016-05-14	Show	GitHub Exploit DB Packet Storm

285365	7.5	HIGH Network	enlightenment debian	imlib2 debian_linux	imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via a GIF image without a colormap.	CWE-20 Improper Input Validation	CVE-2014-9762	2024-11-21 11:21	2016-05-14	Show	GitHub Exploit DB Packet Storm

285366	7.5	HIGH Network	botan_project	botan	The Miller-Rabin primality check in Botan before 1.10.8 and 1.11.x before 1.11.9 improperly uses a single random base, which makes it easier for remote attackers to defeat cryptographic protection me…	CWE-310 Cryptographic Issues	CVE-2014-9742	2024-11-21 11:21	2016-05-13	Show	GitHub Exploit DB Packet Storm

285367	6.1	MEDIUM Local	linux	linux_kernel	fs/namespace.c in the Linux kernel before 4.0.2 processes MNT_DETACH umount2 system calls without verifying that the MNT_LOCKED flag is unset, which allows local users to bypass intended access restr…	CWE-284 Improper Access Control	CVE-2014-9717	2024-11-21 11:21	2016-05-2	Show	GitHub Exploit DB Packet Storm

285368	3.3	LOW Local	opensuse	opensuse	tmpfiles.d/systemd.conf in systemd before 214 uses weak permissions for journal files under (1) /run/log/journal/%m and (2) /var/log/journal/%m, which allows local users to obtain sensitive informati…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-9770	2024-11-21 11:21	2016-04-21	Show	GitHub Exploit DB Packet Storm

285369	8.8	HIGH Network	canonical debian xdelta opensuse	ubuntu_linux debian_linux xdelta3 opensuse	Buffer overflow in the main_get_appheader function in xdelta3-main.h in xdelta3 before 3.0.9 allows remote attackers to execute arbitrary code via a crafted input file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-9765	2024-11-21 11:21	2016-04-20	Show	GitHub Exploit DB Packet Storm

285370	9.8	CRITICAL Network	suse opensuse fedoraproject gnu canonical	linux_enterprise_server linux_enterprise_debuginfo linux_enterprise_software_development_kit linux_enterprise_desktop opensuse suse_linux_enterprise_server fedora glibc ubuntu…	Multiple stack-based buffer overflows in the GNU C Library (aka glibc or libc6) before 2.23 allow context-dependent attackers to cause a denial of service (application crash) or possibly execute arbi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-9761	2024-11-21 11:21	2016-04-20	Show	GitHub Exploit DB Packet Storm