Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241501 6.9 警告 ASUSTeK Computer Inc. - Asus SmartLogon における "セキュリティ機能" を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-0656 2012-06-26 16:10 2009-02-20 Show GitHub Exploit DB Packet Storm
241502 6.8 警告 falt4 - Falt4 CMS RC4 の admin/index.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-0648 2012-06-26 16:10 2009-02-19 Show GitHub Exploit DB Packet Storm
241503 7.5 危険 4site - 4Site CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0646 2012-06-26 16:10 2009-02-18 Show GitHub Exploit DB Packet Storm
241504 5.1 警告 dminnich - Simple PHP News の post.php における news.txt へ任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0643 2012-06-26 16:10 2009-02-20 Show GitHub Exploit DB Packet Storm
241505 7.5 危険 dminnich - Simple PHP News の post.php における news.txt へ任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0610 2012-06-26 16:10 2009-02-17 Show GitHub Exploit DB Packet Storm
241506 4.3 警告 apmuthu - phpSkelSite の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0594 2012-06-26 16:10 2009-02-16 Show GitHub Exploit DB Packet Storm
241507 7.5 危険 cafeengine - Easy CafeEngine の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0574 2012-06-26 16:10 2009-02-13 Show GitHub Exploit DB Packet Storm
241508 4.3 警告 fotoware - FotoWeb におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0573 2012-06-26 16:10 2009-02-13 Show GitHub Exploit DB Packet Storm
241509 5.1 警告 Flatnux - include/flatnux.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0572 2012-06-26 16:10 2009-02-13 Show GitHub Exploit DB Packet Storm
241510 4.3 警告 ESET - ESET Remote Administrator におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0548 2012-06-26 16:10 2009-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267161 8.8 HIGH
Network 		microsoft internet_explorer The User Mode Code Integrity (UMCI) implementation in Device Guard in Microsoft Internet Explorer 11 allows remote attackers to bypass a code-signing protection mechanism via unspecified vectors, aka… CWE-284
Improper Access Control 		CVE-2016-0188 2024-11-21 11:41 2016-05-11 Show GitHub Exploit DB Packet Storm
267162 7.5 HIGH
Network 		microsoft jscript
vbscript 		The Microsoft (1) JScript 5.8 and (2) VBScript 5.8 engines, as used in Internet Explorer 9 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0187 2024-11-21 11:41 2016-05-11 Show GitHub Exploit DB Packet Storm
267163 7.5 HIGH
Network 		microsoft edge The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0186 2024-11-21 11:41 2016-05-11 Show GitHub Exploit DB Packet Storm
267164 8.8 HIGH
Network 		microsoft windows_rt_8.1
windows_server_2012
windows_7
windows_10
windows_8.1
windows_server_2008
windows_vista 		Use-after-free vulnerability in GDI in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gol… NVD-CWE-Other
CVE-2016-0184 2024-11-21 11:41 2016-05-11 Show GitHub Exploit DB Packet Storm
267165 8.8 HIGH
Network 		microsoft office_web_apps
sharepoint_server
office
word 		The Windows font library in Microsoft Office 2010 SP2, Word 2010 SP2, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allows remote attackers to execute arbitrary… CWE-284
Improper Access Control 		CVE-2016-0183 2024-11-21 11:41 2016-05-11 Show GitHub Exploit DB Packet Storm
267166 7.8 HIGH
Local 		microsoft windows_rt_8.1
windows_7
windows_10
windows_8.1
windows_vista 		Windows Journal in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8.1, Windows RT 8.1, and Windows 10 Gold and 1511 allows remote attackers to execute arbitrary code via a crafted Journal (aka .… CWE-284
Improper Access Control 		CVE-2016-0182 2024-11-21 11:41 2016-05-11 Show GitHub Exploit DB Packet Storm
267167 5.5 MEDIUM
Local 		microsoft windows_10 Microsoft Windows 10 Gold and 1511 allows local users to bypass the Virtual Secure Mode Hypervisor Code Integrity (HVCI) protection mechanism and perform RWX markings of kernel-mode pages via a craft… CWE-254
 7PK - Security Features 		CVE-2016-0181 2024-11-21 11:41 2016-05-11 Show GitHub Exploit DB Packet Storm
267168 7.8 HIGH
Local 		microsoft windows_rt_8.1
windows_server_2012
windows_7
windows_10
windows_8.1
windows_server_2008
windows_vista 		The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandles sym… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-0180 2024-11-21 11:41 2016-05-11 Show GitHub Exploit DB Packet Storm
267169 7.8 HIGH
Local 		microsoft windows_rt_8.1
windows_server_2012
windows_10
windows_8.1 		Windows Shell in Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows remote attackers to execute arbitrary code via a crafted web site, aka "Windows She… CWE-284
Improper Access Control 		CVE-2016-0179 2024-11-21 11:41 2016-05-11 Show GitHub Exploit DB Packet Storm
267170 7.8 HIGH
Local 		microsoft windows_rt_8.1
windows_server_2012
windows_7
windows_10
windows_8.1
windows_server_2008 		dxgkrnl.sys in the DirectX Graphics kernel subsystem in the kernel-mode drivers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, a… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-0176 2024-11-21 11:41 2016-05-11 Show GitHub Exploit DB Packet Storm