Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241441 4.3 警告 BIGACE - BIGACE Web CMS の public/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3120 2012-06-26 16:18 2009-09-9 Show GitHub Exploit DB Packet Storm
241442 7.5 危険 danneo - Danneo CMS の mod/poll/comment.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3118 2012-06-26 16:18 2009-09-9 Show GitHub Exploit DB Packet Storm
241443 10 危険 ASUSTeK Computer Inc. - ASUS WL-500W 無線ルータにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-3093 2012-06-26 16:18 2009-09-8 Show GitHub Exploit DB Packet Storm
241444 10 危険 ASUSTeK Computer Inc. - ASUS WL-500W 無線ルータにおけるバッファオーバーフローの脆弱性 CWE-noinfo
情報不足 		CVE-2009-3092 2012-06-26 16:18 2009-09-8 Show GitHub Exploit DB Packet Storm
241445 10 危険 ASUSTeK Computer Inc. - ASUS WL-330gE における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-3091 2012-06-26 16:18 2009-09-8 Show GitHub Exploit DB Packet Storm
241446 7.5 危険 alqa6ari - Alqatari Q R Script の lesson.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3061 2012-06-26 16:18 2009-09-3 Show GitHub Exploit DB Packet Storm
241447 4.3 警告 allpublication - Joker Board におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3060 2012-06-26 16:18 2009-09-3 Show GitHub Exploit DB Packet Storm
241448 7.5 危険 allpublication - Joker Board における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3059 2012-06-26 16:18 2009-09-3 Show GitHub Exploit DB Packet Storm
241449 9.3 危険 aksoft - akPlayer におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3058 2012-06-26 16:18 2009-09-3 Show GitHub Exploit DB Packet Storm
241450 4.3 警告 aom-software - AOM Software Beex におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3057 2012-06-26 16:18 2009-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266961 7.8 HIGH
Local 		phusion passenger In Phusion Passenger before 5.1.0, a known /tmp filename was used during passenger-install-nginx-module execution, which could allow local attackers to gain the privileges of the passenger user. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-10345 2024-11-21 11:43 2017-04-19 Show GitHub Exploit DB Packet Storm
266962 9.8 CRITICAL
Network 		freetype
oracle 		freetype
outside_in_technology 		FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c. CWE-787
 Out-of-bounds Write 		CVE-2016-10328 2024-11-21 11:43 2017-04-14 Show GitHub Exploit DB Packet Storm
266963 9.8 CRITICAL
Network 		libreoffice libreoffice LibreOffice before 2016-12-22 has an out-of-bounds write caused by a heap-based buffer overflow related to the EnhWMFReader::ReadEnhWMF function in vcl/source/filter/wmf/enhwmf.cxx. CWE-787
 Out-of-bounds Write 		CVE-2016-10327 2024-11-21 11:43 2017-04-14 Show GitHub Exploit DB Packet Storm
266964 7.5 HIGH
Network 		gnu osip In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the osip_body_to_str() function defined in osipparser2/osip_body.c, resulting in a remote DoS. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-10326 2024-11-21 11:43 2017-04-14 Show GitHub Exploit DB Packet Storm
266965 7.5 HIGH
Network 		gnu osip In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the _osip_message_to_str() function defined in osipparser2/osip_message_to_str.c, resulting in a remote Do… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-10325 2024-11-21 11:43 2017-04-14 Show GitHub Exploit DB Packet Storm
266966 9.8 CRITICAL
Network 		gnu osip In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the osip_clrncpy() function defined in osipparser2/osip_port.c. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-10324 2024-11-21 11:43 2017-04-14 Show GitHub Exploit DB Packet Storm
266967 7.8 HIGH
Local 		firejail_project firejail Firejail allows --chroot when seccomp is not supported, which might allow local users to gain privileges. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-10123 2024-11-21 11:43 2017-04-13 Show GitHub Exploit DB Packet Storm
266968 7.8 HIGH
Local 		firejail_project firejail Firejail does not properly clean environment variables, which allows local users to gain privileges. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-10122 2024-11-21 11:43 2017-04-13 Show GitHub Exploit DB Packet Storm
266969 7.8 HIGH
Local 		firejail_project firejail Firejail uses weak permissions for /dev/shm/firejail and possibly other files, which allows local users to gain privileges. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-10121 2024-11-21 11:43 2017-04-13 Show GitHub Exploit DB Packet Storm
266970 7.8 HIGH
Local 		firejail_project firejail Firejail uses 0777 permissions when mounting (1) /dev, (2) /dev/shm, (3) /var/tmp, or (4) /var/lock, which allows local users to gain privileges. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-10120 2024-11-21 11:43 2017-04-13 Show GitHub Exploit DB Packet Storm