Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239711 4 警告 Ignite Realtime - Ignite Realtime Openfire におけるポリシーを回避される脆弱性 CWE-16
環境設定 		CVE-2009-1596 2012-09-25 17:27 2009-04-15 Show GitHub Exploit DB Packet Storm
239712 4 警告 Ignite Realtime - Ignite Realtime Openfire の IQAuthHandler.java におけるパスワードを変更される脆弱性 CWE-287
不適切な認証 		CVE-2009-1595 2012-09-25 17:27 2009-04-11 Show GitHub Exploit DB Packet Storm
239713 7.5 危険 kalptarudemos - PHP Site Lock の index.php における管理者のアクセス権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2009-1587 2012-09-25 17:27 2009-05-7 Show GitHub Exploit DB Packet Storm
239714 7.5 危険 kalptarudemos - Million Dollar Text Links における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1582 2012-09-25 17:27 2009-05-7 Show GitHub Exploit DB Packet Storm
239715 9.3 危険 Novell - Novell iPrint Client におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1569 2012-09-25 17:27 2009-12-8 Show GitHub Exploit DB Packet Storm
239716 9.3 危険 Novell - Novell iPrint Client の ienipp.ocx におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1568 2012-09-25 17:27 2009-12-7 Show GitHub Exploit DB Packet Storm
239717 9.3 危険 larts - Lateral Arts Photobox におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1567 2012-09-25 17:27 2009-12-3 Show GitHub Exploit DB Packet Storm
239718 6.9 警告 Linux - Linux kernel の kernel/ptrace.c における権限を取得される脆弱性 CWE-362
競合状態 		CVE-2009-1527 2012-09-25 17:27 2009-04-26 Show GitHub Exploit DB Packet Storm
239719 6.9 警告 JBMC Software - JBMC Software DirectAdmin における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2009-1526 2012-09-25 17:27 2009-05-5 Show GitHub Exploit DB Packet Storm
239720 8.5 危険 JBMC Software - JBMC Software DirectAdmin の CMD_DB における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1525 2012-09-25 17:27 2009-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268281 7.5 HIGH
Network 		b2evolution b2evolution The "lost password" functionality in b2evolution before 6.7.9 allows remote attackers to reset arbitrary user passwords via a crafted request. CWE-255
Credentials Management 		CVE-2016-9479 2024-11-21 12:01 2016-12-3 Show GitHub Exploit DB Packet Storm
268282 8.6 HIGH
Network 		s9y serendipity In Serendipity before 2.0.5, an attacker can bypass SSRF protection by using a malformed IP address (e.g., http://127.1) or a 30x (aka Redirection) HTTP status code. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2016-9752 2024-11-21 12:01 2016-12-1 Show GitHub Exploit DB Packet Storm
268283 6.1 MEDIUM
Network 		piwigo piwigo Cross-site scripting (XSS) vulnerability in the search results front end in Piwigo 2.8.3 allows remote attackers to inject arbitrary web script or HTML via the search parameter. CWE-79
Cross-site Scripting 		CVE-2016-9751 2024-11-21 12:01 2016-12-1 Show GitHub Exploit DB Packet Storm
268284 7.5 HIGH
Network 		boa boa Buffer overflow in send_redirect() in Boa Webserver 0.92r allows remote attackers to DoS via an HTTP GET request requesting a long URI with only '/' and '.' characters. CWE-20
 Improper Input Validation  		CVE-2016-9564 2024-11-21 12:01 2016-11-30 Show GitHub Exploit DB Packet Storm
268285 9.8 CRITICAL
Network 		exponentcms exponent_cms In framework/modules/core/controllers/expCommentController.php of Exponent CMS 2.4.0, content_id input is passed into showComments. The method showComments is defined in the expCommentControllercontr… CWE-89
SQL Injection 		CVE-2016-9481 2024-11-21 12:01 2016-11-30 Show GitHub Exploit DB Packet Storm
268286 9.1 CRITICAL
Network 		libdwarf_project libdwarf libdwarf 2016-10-21 allows context-dependent attackers to obtain sensitive information or cause a denial of service by using the "malformed dwarf file" approach, related to a "Heap Buffer Over-read" … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9480 2024-11-21 12:01 2016-11-30 Show GitHub Exploit DB Packet Storm
268287 7.8 HIGH
Local 		linux linux_kernel The __get_user_asm_ex macro in arch/x86/include/asm/uaccess.h in the Linux kernel 4.4.22 through 4.4.28 contains extended asm statements that are incompatible with the exception table, which allows l… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-9644 2024-11-21 12:01 2016-11-28 Show GitHub Exploit DB Packet Storm
268288 9.8 CRITICAL
Network 		linux linux_kernel The sctp_sf_ootb function in net/sctp/sm_statefuns.c in the Linux kernel before 4.8.8 lacks chunk-length checking for the first chunk, which allows remote attackers to cause a denial of service (out-… CWE-125
Out-of-bounds Read 		CVE-2016-9555 2024-11-21 12:01 2016-11-28 Show GitHub Exploit DB Packet Storm
268289 6.5 MEDIUM
Network 		drupal drupal The transliterate mechanism in Drupal 8.x before 8.2.3 allows remote attackers to cause a denial of service via a crafted URL. CWE-20
 Improper Input Validation  		CVE-2016-9452 2024-11-21 12:01 2016-11-26 Show GitHub Exploit DB Packet Storm
268290 6.8 MEDIUM
Network 		drupal drupal Confirmation forms in Drupal 7.x before 7.52 make it easier for remote authenticated users to conduct open redirect attacks via unspecified vectors. CWE-601
Open Redirect 		CVE-2016-9451 2024-11-21 12:01 2016-11-26 Show GitHub Exploit DB Packet Storm