Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240511 7.5 危険 FreeWebshop - FreeWebshop の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6466 2012-06-26 15:54 2007-12-19 Show GitHub Exploit DB Packet Storm
240512 4.3 警告 Ganglia - Ganglia の ganglia-web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6465 2012-06-26 15:54 2007-12-19 Show GitHub Exploit DB Packet Storm
240513 6.8 警告 form tools - Form ツールにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6464 2012-06-26 15:54 2007-12-19 Show GitHub Exploit DB Packet Storm
240514 4.3 警告 Flyspray - Flyspray の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6461 2012-06-26 15:54 2007-12-9 Show GitHub Exploit DB Packet Storm
240515 4.3 警告 anon proxy server - Anon Proxy Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6460 2012-06-26 15:54 2007-12-19 Show GitHub Exploit DB Packet Storm
240516 6.8 警告 anon proxy server - Anon Proxy Server における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6459 2012-06-26 15:54 2007-12-19 Show GitHub Exploit DB Packet Storm
240517 5 警告 balabit - Balabit syslog-ng におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6437 2012-06-26 15:54 2007-12-19 Show GitHub Exploit DB Packet Storm
240518 9.3 危険 guliverkli
3ivx		 - MPC の mplayerc.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6402 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
240519 9.3 危険 マイクロソフト
3ivx		 - WMP の mplayer2.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6401 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
240520 5 警告 flat php - Flat PHP Board における任意のユーザアカウントへの制限されたアクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2007-6398 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
272471 - apache apr-util
portable_runtime 		Multiple integer overflows in the Apache Portable Runtime (APR) library and the Apache Portable Utility library (aka APR-util) 0.9.x and 1.3.x allow remote attackers to cause a denial of service (app… CWE-189
Numeric Errors 		CVE-2009-2412 2023-11-7 11:04 2009-08-7 Show GitHub Exploit DB Packet Storm
272472 - jun_furuse camlimages Multiple integer overflows in CamlImages 2.2 might allow context-dependent attackers to execute arbitrary code via images containing large width and height values that trigger a heap-based buffer ove… CWE-189
Numeric Errors 		CVE-2009-2660 2023-11-7 11:04 2009-08-5 Show GitHub Exploit DB Packet Storm
272473 - nilf nilfs nilfs-utils before 2.0.14 installs multiple programs with unnecessary setuid privileges, which allows local users to execute arbitrary commands via the device string in a -c command line option to mk… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-2657 2023-11-7 11:04 2009-08-5 Show GitHub Exploit DB Packet Storm
272474 - mozilla
openssl
gnu 		firefox
nss
openssl
gnutls 		The Network Security Services (NSS) library before 3.12.3, as used in Firefox; GnuTLS before 2.6.4 and 2.7.4; OpenSSL 0.9.8 through 0.9.8k; and other products support MD2 with X.509 certificates, whi… CWE-310
Cryptographic Issues 		CVE-2009-2409 2023-11-7 11:04 2009-07-31 Show GitHub Exploit DB Packet Storm
272475 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-2408. Reason: This candidate is a duplicate of CVE-2009-2408. Notes: All CVE users should reference CVE-2009-2408 instead of… - CVE-2009-2645 2023-11-7 11:04 2009-07-31 Show GitHub Exploit DB Packet Storm
272476 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-1862. Reason: This candidate is a duplicate of CVE-2009-1862. Notes: All CVE users should reference CVE-2009-1862 instead of… - CVE-2009-2580 2023-11-7 11:04 2009-07-24 Show GitHub Exploit DB Packet Storm
272477 - google android Android 1.5 CRBxx allows local users to bypass the (1) Manifest.permission.CAMERA (aka android.permission.CAMERA) and (2) Manifest.permission.AUDIO_RECORD (aka android.permission.RECORD_AUDIO) config… CWE-94
Code Injection 		CVE-2009-2348 2023-11-7 11:04 2009-07-18 Show GitHub Exploit DB Packet Storm
272478 - videolan vlc_media_player Stack-based buffer overflow in the Win32AddConnection function in modules/access/smb.c in VideoLAN VLC media player 0.9.9, when running on Microsoft Windows, allows remote attackers to cause a denial… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-2484 2023-11-7 11:04 2009-07-17 Show GitHub Exploit DB Packet Storm
272479 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-2204. Reason: This candidate is a duplicate of CVE-2009-2204. Notes: All CVE users should reference CVE-2009-2204 instead of… - CVE-2009-2315 2023-11-7 11:04 2009-07-6 Show GitHub Exploit DB Packet Storm
272480 - linux
canonical
debian 		linux_kernel
ubuntu_linux
debian_linux 		The kvm_arch_vcpu_ioctl_set_sregs function in the KVM in Linux kernel 2.6 before 2.6.30, when running on x86 systems, does not validate the page table root in a KVM_SET_SREGS call, which allows local… CWE-476
 NULL Pointer Dereference 		CVE-2009-2287 2023-11-7 11:04 2009-07-1 Show GitHub Exploit DB Packet Storm