Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241221	4.3	警告	daniel regelein TYPO3 Association	-	TYPO3 用の File list 拡張機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4391	2012-06-26 16:18	2009-12-22	Show	GitHub Exploit DB Packet Storm

241222	4.3	警告	frank krger TYPO3 Association	-	TYPO3 の nl_listman 拡張におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4388	2012-06-26 16:18	2009-12-22	Show	GitHub Exploit DB Packet Storm

241223	7.5	危険	bookingcentre	-	Venalsur Booking Centre Booking System の hotel_tiempolibre_ext.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4386	2012-06-26 16:18	2009-12-22	Show	GitHub Exploit DB Packet Storm

241224	7.5	危険	AlienVault	-	AlienVault OSSIM の repository/repository_attachment.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4375	2012-06-26 16:18	2009-12-21	Show	GitHub Exploit DB Packet Storm

241225	7.5	危険	AlienVault	-	AlienVault OSSIM の repository/repository_attachment.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4374	2012-06-26 16:18	2009-12-21	Show	GitHub Exploit DB Packet Storm

241226	7.5	危険	AlienVault	-	AlienVault OSSIM の repository/repository_attachment.php における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2009-4373	2012-06-26 16:18	2009-12-21	Show	GitHub Exploit DB Packet Storm

241227	7.5	危険	AlienVault	-	AlienVault OSSIM における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-4372	2012-06-26 16:18	2009-12-21	Show	GitHub Exploit DB Packet Storm

241228	3.5	注意	Drupal	-	Drupal Core の Locale モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4371	2012-06-26 16:18	2009-12-21	Show	GitHub Exploit DB Packet Storm

241229	7.5	危険	fr.simon rundell TYPO3 Association	-	TYPO3 の ste_parish_admin 拡張における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4401	2012-06-26 16:18	2008-07-9	Show	GitHub Exploit DB Packet Storm

241230	4.3	警告	fr.simon rundell TYPO3 Association	-	TYPO3 の ste_parish_admin 拡張におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4400	2012-06-26 16:18	2008-07-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267161	7.5	HIGH Network	gnu	osip	In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the osip_body_to_str() function defined in osipparser2/osip_body.c, resulting in a remote DoS.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10326	2024-11-21 11:43	2017-04-14	Show	GitHub Exploit DB Packet Storm

267162	7.5	HIGH Network	gnu	osip	In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the _osip_message_to_str() function defined in osipparser2/osip_message_to_str.c, resulting in a remote Do…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10325	2024-11-21 11:43	2017-04-14	Show	GitHub Exploit DB Packet Storm

267163	9.8	CRITICAL Network	gnu	osip	In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the osip_clrncpy() function defined in osipparser2/osip_port.c.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10324	2024-11-21 11:43	2017-04-14	Show	GitHub Exploit DB Packet Storm

267164	7.8	HIGH Local	firejail_project	firejail	Firejail allows --chroot when seccomp is not supported, which might allow local users to gain privileges.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10123	2024-11-21 11:43	2017-04-13	Show	GitHub Exploit DB Packet Storm

267165	7.8	HIGH Local	firejail_project	firejail	Firejail does not properly clean environment variables, which allows local users to gain privileges.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10122	2024-11-21 11:43	2017-04-13	Show	GitHub Exploit DB Packet Storm

267166	7.8	HIGH Local	firejail_project	firejail	Firejail uses weak permissions for /dev/shm/firejail and possibly other files, which allows local users to gain privileges.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10121	2024-11-21 11:43	2017-04-13	Show	GitHub Exploit DB Packet Storm

267167	7.8	HIGH Local	firejail_project	firejail	Firejail uses 0777 permissions when mounting (1) /dev, (2) /dev/shm, (3) /var/tmp, or (4) /var/lock, which allows local users to gain privileges.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10120	2024-11-21 11:43	2017-04-13	Show	GitHub Exploit DB Packet Storm

267168	7.8	HIGH Local	firejail_project	firejail	Firejail uses 0777 permissions when mounting /tmp, which allows local users to gain privileges.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10119	2024-11-21 11:43	2017-04-13	Show	GitHub Exploit DB Packet Storm

267169	3.3	LOW Local	firejail_project	firejail	Firejail allows local users to truncate /etc/resolv.conf via a chroot command to /.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10118	2024-11-21 11:43	2017-04-13	Show	GitHub Exploit DB Packet Storm

267170	7.8	HIGH Local	firejail_project	firejail	Firejail does not restrict access to --tmpfs, which allows local users to gain privileges, as demonstrated by mounting over /etc.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10117	2024-11-21 11:43	2017-04-13	Show	GitHub Exploit DB Packet Storm