Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
239991 4.3 警告 Mario Matzulla - TYPO3 用の Calendar Base エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-4804 2012-09-25 17:38 2010-04-23 Show GitHub Exploit DB Packet Storm
239992 7.5 危険 Joachim Ruhs - TYPO3 の flatmgr 拡張における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2009-4802 2012-09-25 17:38 2010-04-23 Show GitHub Exploit DB Packet Storm
239993 4.3 警告 Erik de Castro Lopo - libsndfile の htk_read_header などの関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題
CVE-2009-4835 2012-09-25 17:38 2009-05-28 Show GitHub Exploit DB Packet Storm
239994 5.8 警告 オラクル - MySQL Connector/NET における偽造された SSL 証明書で中間者攻撃を実行される脆弱性 CWE-20
不適切な入力確認
CVE-2009-4833 2012-09-25 17:38 2009-06-17 Show GitHub Exploit DB Packet Storm
239995 7.5 危険 OpenX - OpenX における管理者アカウントのアクセス権を取得される脆弱性 CWE-287
不適切な認証
CVE-2009-4830 2012-09-25 17:38 2009-12-24 Show GitHub Exploit DB Packet Storm
239996 2.1 注意 james glasgow
john vandervort
- Drupal 用の Automated Logout モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-4829 2012-09-25 17:38 2009-12-23 Show GitHub Exploit DB Packet Storm
239997 7.5 危険 kolab - Kolab Server の Kolab Webclient における脆弱性 CWE-noinfo
情報不足
CVE-2009-4824 2012-09-25 17:38 2009-12-17 Show GitHub Exploit DB Packet Storm
239998 7.5 危険 Jan Bednarik - TYPO3 用の cooluri 拡張における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2009-4711 2012-09-25 17:38 2010-03-15 Show GitHub Exploit DB Packet Storm
239999 7.5 危険 maximo cuadros - gb_fenewssubmit エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2009-4708 2012-09-25 17:38 2010-03-15 Show GitHub Exploit DB Packet Storm
240000 4.3 警告 maximo cuadros - gb_fenewssubmit エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-4707 2012-09-25 17:38 2010-03-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
357261 - squid squid Heap-based buffer overflow in Squid before 2.4 STABLE4, and Squid 2.5 and 2.6 until March 12, 2002 distributions, allows remote attackers to cause a denial of service, and possibly execute arbitrary … NVD-CWE-Other
CVE-2002-0163 2016-10-18 11:16 2002-03-26 Show GitHub Exploit DB Packet Storm
357262 - logwatch logwatch LogWatch 2.5 allows local users to gain root privileges via a symlink attack, a different vulnerability than CVE-2002-0162. NVD-CWE-Other
CVE-2002-0165 2016-10-18 11:16 2002-04-3 Show GitHub Exploit DB Packet Storm
357263 - zope zope Zope 2.2.0 through 2.5.1 does not properly verify the access for objects with proxy roles, which could allow some users to access documents in violation of the intended configuration. NVD-CWE-Other
CVE-2002-0170 2016-10-18 11:16 2002-04-22 Show GitHub Exploit DB Packet Storm
357264 - icecast icecast Buffer overflows in icecast 1.3.11 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request from an MP3 client. NVD-CWE-Other
CVE-2002-0177 2016-10-18 11:16 2002-04-22 Show GitHub Exploit DB Packet Storm
357265 - gnu sharutils uudecode, as available in the sharutils package before 4.2.1, does not check whether the filename of the uudecoded file is a pipe or symbolic link, which could allow attackers to overwrite files or e… NVD-CWE-Other
CVE-2002-0178 2016-10-18 11:16 2002-05-29 Show GitHub Exploit DB Packet Storm
357266 - horde horde
imp
Cross-site scripting vulnerability in status.php3 for IMP 2.2.8 and HORDE 1.2.7 allows remote attackers to execute arbitrary web script and steal cookies of other IMP/HORDE users via the script param… NVD-CWE-Other
CVE-2002-0181 2016-10-18 11:16 2002-04-22 Show GitHub Exploit DB Packet Storm
357267 - psychoid psybnc psyBNC 2.3 beta and earlier allows remote attackers to spoof encrypted, trusted messages by sending lines that begin with the "[B]" sequence, which makes the message appear legitimate. NVD-CWE-Other
CVE-2002-0197 2016-10-18 11:16 2002-05-16 Show GitHub Exploit DB Packet Storm
357268 - paul_l_daniels inflex
ripmime
Buffer overflow in plDaniels ripMime 1.2.6 and earlier, as used in other programs such as xamime and inflex, allows remote attackers to execute arbitrary code via an attachment in a long filename. NVD-CWE-Other
CVE-2002-0198 2016-10-18 11:16 2002-05-16 Show GitHub Exploit DB Packet Storm
357269 - mozilla bugzilla Bugzilla before 2.14 does not properly restrict access to confidential bugs, which could allow Bugzilla users to bypass viewing permissions via modified bug id parameters in (1) process_bug.cgi, (2) … NVD-CWE-Other
CVE-2001-1401 2016-10-18 11:15 2001-09-10 Show GitHub Exploit DB Packet Storm
357270 - mozilla bugzilla Bugzilla before 2.14 does not properly escape untrusted parameters, which could allow remote attackers to conduct unauthorized activities via cross-site scripting (CSS) and possibly SQL injection att… NVD-CWE-Other
CVE-2001-1402 2016-10-18 11:15 2001-09-10 Show GitHub Exploit DB Packet Storm