Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241221 7.8 危険 Drupal - Drupal 用の Print モジュールにおけるノードアクセスモジュール内の制限された投稿を読まれる脆弱性 - CVE-2007-3689 2012-06-26 15:46 2007-07-9 Show GitHub Exploit DB Packet Storm
241222 2.6 注意 Dotclear - DotClear におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-3688 2012-06-26 15:46 2007-07-11 Show GitHub Exploit DB Packet Storm
241223 7.5 危険 aigaion - Aigaion の pagetopic.php における SQL インジェクションの脆弱性 - CVE-2007-3683 2012-06-26 15:46 2007-07-11 Show GitHub Exploit DB Packet Storm
241224 4.3 警告 シトリックス・システムズ - Citrix EPA ActiveX コントロールにおける任意のプログラムをクライアントシステム上にダウンロードされる脆弱性 - CVE-2007-3679 2012-06-26 15:46 2007-07-25 Show GitHub Exploit DB Packet Storm
241225 4.3 警告 Dotclear - DotClear の ecrire/tools.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3672 2012-06-26 15:46 2007-07-10 Show GitHub Exploit DB Packet Storm
241226 5 警告 activereportsexcelreport - ActiveReportsExcelReport の EXCLEXPT.DLL におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3667 2012-06-26 15:46 2007-07-10 Show GitHub Exploit DB Packet Storm
241227 5 警告 eltima software - Eltima Software RunService ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3664 2012-06-26 15:46 2007-07-10 Show GitHub Exploit DB Packet Storm
241228 5 警告 eltima software - VSPort.DLL におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3661 2012-06-26 15:46 2007-07-10 Show GitHub Exploit DB Packet Storm
241229 4.3 警告 fascript - Farsi Script FaName におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-3653 2012-06-26 15:46 2008-07-8 Show GitHub Exploit DB Packet Storm
241230 6.8 警告 fascript - Farsi Script FaName の class/page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-3652 2012-06-26 15:46 2008-07-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
272441 - nightlight fireftp Argument injection vulnerability in (1) src/content/js/connection/sftp.js and (2) src/content/js/connection/controlSocket.js.in in FireFTP Extension 1.0.5 for Firefox allows remote authenticated SFTP… CWE-94
Code Injection 		CVE-2009-3478 2023-11-7 11:04 2009-09-30 Show GitHub Exploit DB Packet Storm
272442 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-2510. Reason: This candidate is a duplicate of CVE-2009-2510. Notes: All CVE users should reference CVE-2009-2510 instead of… - CVE-2009-3454 2023-11-7 11:04 2009-09-30 Show GitHub Exploit DB Packet Storm
272443 - linux linux_kernel The kvm_emulate_hypercall function in arch/x86/kvm/x86.c in KVM in the Linux kernel 2.6.25-rc1, and other versions before 2.6.31, when running on x86 systems, does not prevent access to MMU hypercall… CWE-399
 Resource Management Errors 		CVE-2009-3290 2023-11-7 11:04 2009-09-22 Show GitHub Exploit DB Packet Storm
272444 - linux linux_kernel NFSv4 in the Linux kernel 2.6.18, and possibly other versions, does not properly clean up an inode when an O_EXCL create fails, which causes files to be created with insecure settings such as setuid … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-3286 2023-11-7 11:04 2009-09-22 Show GitHub Exploit DB Packet Storm
272445 - linux linux_kernel Integer signedness error in the find_ie function in net/wireless/scan.c in the cfg80211 subsystem in the Linux kernel before 2.6.31.1-rc1 allows remote attackers to cause a denial of service (soft lo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-3280 2023-11-7 11:04 2009-09-22 Show GitHub Exploit DB Packet Storm
272446 - mozilla firefox Mozilla Firefox 3.6a1, 3.5.3, 3.5.2, and earlier 3.5.x versions, and 3.0.14 and earlier 2.x and 3.x versions, on Linux uses a predictable /tmp pathname for files selected from the Downloads window, w… NVD-CWE-Other
CVE-2009-3274 2023-11-7 11:04 2009-09-22 Show GitHub Exploit DB Packet Storm
272447 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-2139, CVE-2009-2140. Reason: This candidate is a duplicate of CVE-2009-2139 and CVE-2009-2140. Notes: All CVE users should r… - CVE-2009-3239 2023-11-7 11:04 2009-09-18 Show GitHub Exploit DB Packet Storm
272448 - novell suse_linux_enterprise_server Unspecified vulnerability in ia32el (aka the IA 32 emulation functionality) before 7042_7022-0.4.2 in SUSE Linux Enterprise (SLE) 10 SP2 on Itanium IA64 machines allows local users to cause a denial … NVD-CWE-noinfo
CVE-2009-2707 2023-11-7 11:04 2009-09-18 Show GitHub Exploit DB Packet Storm
272449 - xapian omega Cross-site scripting (XSS) vulnerability in Xapian Omega before 1.0.16 allows remote attackers to inject arbitrary web script or HTML via unspecified CGI parameter values, which are sometimes include… CWE-79
Cross-site Scripting 		CVE-2009-2947 2023-11-7 11:04 2009-09-15 Show GitHub Exploit DB Packet Storm
272450 - apache
fedoraproject
debian
opensuse
suse
apple 		http_server
fedora
debian_linux
opensuse
linux_enterprise_server
linux_enterprise_desktop
mac_os_x 		The mod_proxy_ftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of … NVD-CWE-Other
CVE-2009-3095 2023-11-7 11:04 2009-09-9 Show GitHub Exploit DB Packet Storm