Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 12:16 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241171	3.5	注意	Drupal	-	Drupal Core の Locale モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4371	2012-06-26 16:18	2009-12-21	Show	GitHub Exploit DB Packet Storm

241172	7.5	危険	fr.simon rundell TYPO3 Association	-	TYPO3 の ste_parish_admin 拡張における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4401	2012-06-26 16:18	2008-07-9	Show	GitHub Exploit DB Packet Storm

241173	4.3	警告	fr.simon rundell TYPO3 Association	-	TYPO3 の ste_parish_admin 拡張におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4400	2012-06-26 16:18	2008-07-9	Show	GitHub Exploit DB Packet Storm

241174	7.5	危険	fr.simon rundell TYPO3 Association	-	TYPO3 の hs_religiousartgallery 拡張における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4399	2012-06-26 16:18	2008-07-9	Show	GitHub Exploit DB Packet Storm

241175	4.3	警告	fr.simon rundell TYPO3 Association	-	TYPO3 の hs_religiousartgallery 拡張におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4398	2012-06-26 16:18	2008-07-9	Show	GitHub Exploit DB Packet Storm

241176	4.3	警告	fr.simon rundell TYPO3 Association	-	TYPO3 の pd_resources 拡張におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4397	2012-06-26 16:18	2008-07-9	Show	GitHub Exploit DB Packet Storm

241177	4.3	警告	fr.simon rundell TYPO3 Association	-	TYPO3 の ste_prayer2 拡張におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4395	2012-06-26 16:18	2008-07-9	Show	GitHub Exploit DB Packet Storm

241178	7.5	危険	fr.simon rundell TYPO3 Association	-	TYPO3 の ste_prayer2 における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4394	2012-06-26 16:18	2008-07-9	Show	GitHub Exploit DB Packet Storm

241179	4.7	警告	FreeBSD	-	FreeBSD の freebsd-update における重要なファイルのコピーを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4358	2012-06-26 16:18	2009-12-3	Show	GitHub Exploit DB Packet Storm

241180	7.5	危険	boldfx	-	Arctic Issue Tracker の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4350	2012-06-26 16:18	2009-12-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267201	6.1	MEDIUM Network	antisamy_project	antisamy	In OWASP AntiSamy before 1.5.5, by submitting a specially crafted input (a tag that supports style with active content), you could bypass the library protections and supply executable code. The impac…	CWE-79 Cross-site Scripting	CVE-2016-10006	2024-11-21 11:43	2016-12-25	Show	GitHub Exploit DB Packet Storm

267202	7.5	HIGH Network	sprecher-automation	sprecon-e_service_program	An issue was discovered in Sprecher Automation SPRECON-E Service Program before 3.43 SP0. Under certain preconditions, it is possible to execute telegram simulation as a non-admin user. As prerequisi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10041	2024-11-21 11:43	2016-12-25	Show	GitHub Exploit DB Packet Storm

267203	7.3	HIGH Network	modx	modx_revolution	Directory traversal in /connectors/index.php in MODX Revolution before 2.5.2-pl allows remote attackers to perform local file inclusion/traversal/manipulation via a crafted dir parameter, related to …	CWE-22 Path Traversal	CVE-2016-10039	2024-11-21 11:43	2016-12-24	Show	GitHub Exploit DB Packet Storm

267204	7.3	HIGH Network	modx	modx_revolution	Directory traversal in /connectors/index.php in MODX Revolution before 2.5.2-pl allows remote attackers to perform local file inclusion/traversal/manipulation via a crafted dir parameter, related to …	CWE-22 Path Traversal	CVE-2016-10038	2024-11-21 11:43	2016-12-24	Show	GitHub Exploit DB Packet Storm

267205	7.3	HIGH Network	modx	modx_revolution	Directory traversal in /connectors/index.php in MODX Revolution before 2.5.2-pl allows remote attackers to perform local file inclusion/traversal/manipulation via a crafted id (aka dir) parameter, re…	CWE-22 Path Traversal	CVE-2016-10037	2024-11-21 11:43	2016-12-24	Show	GitHub Exploit DB Packet Storm

267206	7.5	HIGH Network	sap	solution_manager	Webdynpro in SAP Solman 7.1 through 7.31 allows remote attackers to obtain sensitive information via webdynpro/dispatcher/sap.com/caf~eu~gp~example~timeoff~wd requests, aka SAP Security Note 2344524.	CWE-200 Information Exposure	CVE-2016-10005	2024-11-21 11:43	2016-12-19	Show	GitHub Exploit DB Packet Storm

267207	7.5	HIGH Network	ruckus	wireless_h500	Ruckus Wireless H500 web management interface denial of service	NVD-CWE-noinfo	CVE-2016-1000215	2024-11-21 11:43	2016-10-25	Show	GitHub Exploit DB Packet Storm

267208	5.3	MEDIUM Network	ruckus	wireless_h500	Ruckus Wireless H500 web management interface authentication bypass	CWE-287 CWE-200 Improper Authentication Information Exposure	CVE-2016-1000214	2024-11-21 11:43	2016-10-25	Show	GitHub Exploit DB Packet Storm

267209	8.8	HIGH Network	ruckus	wireless_h500	Ruckus Wireless H500 web management interface authenticated command injection	CWE-78 OS Command	CVE-2016-1000216	2024-11-21 11:43	2016-10-11	Show	GitHub Exploit DB Packet Storm

267210	9.8	CRITICAL Network	zotpress_project	zotpress	Zotpress plugin for WordPress SQLi in zp_get_account()	CWE-89 SQL Injection	CVE-2016-1000217	2024-11-21 11:43	2016-10-6	Show	GitHub Exploit DB Packet Storm