Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241061 6.2 警告 cerb
FreeBSD		 - FreeBSD の CerbNG における詳細不明な影響を受ける脆弱性 - CVE-2007-4304 2012-06-26 15:54 2007-08-13 Show GitHub Exploit DB Packet Storm
241062 6.2 警告 cerb
FreeBSD		 - FreeBSD の CerbNG におけるシステムコールの割り込みを妨害される脆弱性 - CVE-2007-4303 2012-06-26 15:54 2007-08-13 Show GitHub Exploit DB Packet Storm
241063 6.2 警告 freshmeat - Generic Software Wrappers Toolkit のラッパー における権限を取得される脆弱性\ - CVE-2007-4302 2012-06-26 15:54 2007-08-13 Show GitHub Exploit DB Packet Storm
241064 7.1 危険 bluecat networks - BlueCat Networks Proteus IPAM アプライアンスにおけるディレクトリトラバーサルの脆弱性 - CVE-2007-4226 2012-06-26 15:54 2007-08-8 Show GitHub Exploit DB Packet Storm
241065 7.2 危険 チェック・ポイント・ソフトウェア・テクノロジーズ - Check Point Zone Labs ZoneAlarm の vsdatant.sys における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4216 2012-06-26 15:54 2007-08-21 Show GitHub Exploit DB Packet Storm
241066 7.5 危険 aceboard - Aceboard フォーラムの Recherche.php における SQL インジェクションの脆弱性 - CVE-2007-4209 2012-06-26 15:54 2007-08-7 Show GitHub Exploit DB Packet Storm
241067 5 警告 guidance software - Guidance Software EnCase における特定データの検証を阻止される脆弱性 - CVE-2007-4201 2012-06-26 15:54 2007-08-7 Show GitHub Exploit DB Packet Storm
241068 4.3 警告 brian carrier - Brian Carrier TSK の fsstat における特定の NTFS ファイルの検査を阻止される脆弱性 - CVE-2007-4200 2012-06-26 15:54 2007-08-7 Show GitHub Exploit DB Packet Storm
241069 4.3 警告 brian carrier - Brian Carrier TSK における特定の NTFS ファイルの検査を阻止される脆弱性 - CVE-2007-4199 2012-06-26 15:54 2007-08-7 Show GitHub Exploit DB Packet Storm
241070 4.3 警告 brian carrier - Brian Carrier TSK の fs_data_put_str 関数における特定の NTFS ファイルの検査を阻止される脆弱性 - CVE-2007-4198 2012-06-26 15:54 2007-08-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
287961 - axesstel mv_410r cgi-bin/sysconf.cgi on the Axesstel MV 410R allows remote attackers to cause a denial of service (configuration reset) via a RESTORE=RESTORE query string. NVD-CWE-Other
CVE-2009-2321 2018-10-11 04:39 2009-07-6 Show GitHub Exploit DB Packet Storm
287962 - axesstel mv_410r Cross-site scripting (XSS) vulnerability in cgi-bin/sysconf.cgi on the Axesstel MV 410R allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2009-2322 2018-10-11 04:39 2009-07-6 Show GitHub Exploit DB Packet Storm
287963 - axesstel mv_410r The web interface on the Axesstel MV 410R redirects users back to the referring page after execution of some CGI scripts, which makes it easier for remote attackers to avoid detection of cross-site r… CWE-352
 Origin Validation Error 		CVE-2009-2323 2018-10-11 04:39 2009-07-6 Show GitHub Exploit DB Packet Storm
287964 - fckeditor fckeditor Multiple cross-site scripting (XSS) vulnerabilities in FCKeditor before 2.6.4.1 allow remote attackers to inject arbitrary web script or HTML via components in the samples (aka _samples) directory. CWE-79
Cross-site Scripting 		CVE-2009-2324 2018-10-11 04:39 2009-07-6 Show GitHub Exploit DB Packet Storm
287965 - wordpress wordpress
wordpress_mu 		wp-admin/admin.php in WordPress and WordPress MU before 2.8.1 does not require administrative authentication to access the configuration of a plugin, which allows remote attackers to specify a config… CWE-287
Improper Authentication 		CVE-2009-2334 2018-10-11 04:39 2009-07-11 Show GitHub Exploit DB Packet Storm
287966 - sourcefire 3d_sensor
defense_center 		The web-based management interfaces in Sourcefire Defense Center (DC) and 3D Sensor before 4.8.2 allow remote authenticated users to gain privileges via a $admin value for the admin parameter in an e… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-2344 2018-10-11 04:39 2009-07-8 Show GitHub Exploit DB Packet Storm
287967 - libtiff libtiff Multiple integer overflows in inter-color spaces conversion tools in libtiff 3.8 through 3.8.2, 3.9, and 4.0 allow context-dependent attackers to execute arbitrary code via a TIFF image with large (1… CWE-189
Numeric Errors 		CVE-2009-2347 2018-10-11 04:39 2009-07-15 Show GitHub Exploit DB Packet Storm
287968 - microsoft internet_explorer Microsoft Internet Explorer 6.0.2900.2180 and earlier does not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks… CWE-79
Cross-site Scripting 		CVE-2009-2350 2018-10-11 04:39 2009-07-8 Show GitHub Exploit DB Packet Storm
287969 - google chrome Google Chrome 1.0.154.48 and earlier does not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors rela… CWE-79
Cross-site Scripting 		CVE-2009-2352 2018-10-11 04:39 2009-07-8 Show GitHub Exploit DB Packet Storm
287970 - eaccelerator eaccelerator encoder.php in eAccelerator allows remote attackers to execute arbitrary code by copying a local executable file to a location under the web root via the -o option, and then making a direct request t… CWE-94
Code Injection 		CVE-2009-2353 2018-10-11 04:39 2009-07-8 Show GitHub Exploit DB Packet Storm