Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
240101 5.8 警告 idefense - Idefense Labs の COMRaider における任意のファイルを作成される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-3860 2012-09-25 17:38 2009-11-4 Show GitHub Exploit DB Packet Storm
240102 9.3 危険 IBM - IBM TSM の UNIX バックアップアーカイブクライアントにおける任意のファイルを読み取られる脆弱性 CWE-noinfo
情報不足
CVE-2009-3855 2012-09-25 17:38 2009-11-4 Show GitHub Exploit DB Packet Storm
240103 10 危険 IBM - IBM TSM の traditional client scheduler におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-3854 2012-09-25 17:38 2009-11-4 Show GitHub Exploit DB Packet Storm
240104 9.3 危険 IBM - IBM TSM などで使用される CAD スケジューラにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-3853 2012-09-25 17:38 2009-11-4 Show GitHub Exploit DB Packet Storm
240105 7.5 危険 IBM - Java Technology の IBM Runtimes の XML コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2009-3852 2012-09-25 17:38 2009-11-3 Show GitHub Exploit DB Packet Storm
240106 10 危険 ヒューレット・パッカード - HP OV NNM におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-3849 2012-09-25 17:38 2009-12-9 Show GitHub Exploit DB Packet Storm
240107 10 危険 ヒューレット・パッカード - HP OV NNM の nnmRptConfig.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-3848 2012-09-25 17:38 2009-12-9 Show GitHub Exploit DB Packet Storm
240108 10 危険 ヒューレット・パッカード - HP OV NNM における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2009-3847 2012-09-25 17:38 2009-12-9 Show GitHub Exploit DB Packet Storm
240109 10 危険 ヒューレット・パッカード - HP OV NNM の ovlogin.exe におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-3846 2012-09-25 17:38 2009-12-9 Show GitHub Exploit DB Packet Storm
240110 10 危険 ヒューレット・パッカード - HP OV NNM の port-3443 HTTP サーバにおける任意のコマンドを実行される脆弱性 CWE-DesignError
CVE-2009-3845 2012-09-25 17:38 2009-12-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
284901 - juniper junos The Juniper SRX Series services gateways with Junos OS 12.1X46 before 12.1X46-D35, 12.1X47 before 12.1X47-D25, and 12.3X48 before 12.3X48-D15 do not properly implement the "set system ports console i… CWE-284
Improper Access Control
CVE-2015-3007 2024-11-21 11:28 2015-07-15 Show GitHub Exploit DB Packet Storm
284902 - thoughtbot paperclip The thoughtbot paperclip gem before 4.2.2 for Ruby does not consider the content-type value during media-type validation, which allows remote attackers to upload HTML documents and conduct cross-site… CWE-79
Cross-site Scripting
CVE-2015-2963 2024-11-21 11:28 2015-07-11 Show GitHub Exploit DB Packet Storm
284903 - lemon-s_php simple_oekaki index.php in LEMON-S PHP Simple Oekaki BBS before 1.21 allows remote attackers to delete arbitrary files via the oekakis parameter. CWE-22
Path Traversal
CVE-2015-2970 2024-11-21 11:28 2015-07-11 Show GitHub Exploit DB Packet Storm
284904 - lemon-s_php simple_oekaki_bbs Cross-site scripting (XSS) vulnerability in index.php in LEMON-S PHP Simple Oekaki BBS before 1.21 allows remote attackers to inject arbitrary web script or HTML via the oekakis parameter. CWE-79
Cross-site Scripting
CVE-2015-2969 2024-11-21 11:28 2015-07-11 Show GitHub Exploit DB Packet Storm
284905 - cacti cacti Cross-site scripting (XSS) vulnerability in settings.php in Cacti before 0.8.8d allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2015-2967 2024-11-21 11:28 2015-07-11 Show GitHub Exploit DB Packet Storm
284906 - adobe flash_player
air
air_sdk
air_sdk_\&_compiler
Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe A… NVD-CWE-Other
CVE-2015-3137 2024-11-21 11:28 2015-07-10 Show GitHub Exploit DB Packet Storm
284907 - adobe flash_player
air
air_sdk
air_sdk_\&_compiler
Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe A… NVD-CWE-Other
CVE-2015-3136 2024-11-21 11:28 2015-07-10 Show GitHub Exploit DB Packet Storm
284908 - adobe flash_player
air
air_sdk
air_sdk_\&_compiler
Heap-based buffer overflow in Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2015-3135 2024-11-21 11:28 2015-07-10 Show GitHub Exploit DB Packet Storm
284909 - adobe flash_player
air
air_sdk
air_sdk_\&_compiler
Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Ad… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2015-3134 2024-11-21 11:28 2015-07-10 Show GitHub Exploit DB Packet Storm
284910 - adobe flash_player
air
air_sdk
air_sdk_\&_compiler
Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Ad… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2015-3133 2024-11-21 11:28 2015-07-10 Show GitHub Exploit DB Packet Storm