Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241731 7.5 危険 andrew charlton
WordPress.org		 - WordPress の My Category Order プラグインの mycategoryorder.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4748 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
241732 4.3 警告 dreamlevels - Dreamlevels DreamPoll の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4746 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
241733 7.5 危険 dreamlevels - Dreamlevels DreamPoll の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4745 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
241734 4.3 警告 AfterLogic - AfterLogic WebMail Pro の history-storage.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4743 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
241735 7.5 危険 Docebo - Docebo における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4742 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
241736 7.5 危険 Allomani - Allomani Audio & Video Library の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4735 2012-06-26 16:19 2010-03-18 Show GitHub Exploit DB Packet Storm
241737 7.5 危険 Allomani - Allomani Movies Library の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4734 2012-06-26 16:19 2010-03-18 Show GitHub Exploit DB Packet Storm
241738 7.5 危険 boldfx - Model Agency Manager PRO の photos.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4731 2012-06-26 16:19 2010-03-18 Show GitHub Exploit DB Packet Storm
241739 5.1 警告 Arab Portal - Arab Portal の modules/aljazeera/admin/setup.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4725 2012-06-26 16:19 2010-03-18 Show GitHub Exploit DB Packet Storm
241740 7.5 危険 andrews-web - A-W BannerAd の Admin/index.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4721 2012-06-26 16:19 2010-03-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266651 7.8 HIGH
Local 		google android media/libmediaplayerservice/nuplayer/NuPlayerStreamListener.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 does not properly validat… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2448 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
266652 7.0 HIGH
Local 		google android The NVIDIA media driver in Android before 2016-05-01 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 27441354. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2446 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
266653 7.0 HIGH
Local 		google android The NVIDIA media driver in Android before 2016-05-01 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 27253079. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2445 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
266654 7.0 HIGH
Local 		google android The NVIDIA media driver in Android before 2016-05-01 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 27208332. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2444 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
266655 7.0 HIGH
Local 		google android The Qualcomm MDP driver in Android before 2016-05-01 on Nexus 5 and Nexus 7 (2013) devices allows attackers to gain privileges via a crafted application, aka internal bug 26404525. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2443 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
266656 7.0 HIGH
Local 		google android The Qualcomm buspm driver in Android before 2016-05-01 on Nexus 5X, 6, and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 26494907. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2442 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
266657 7.0 HIGH
Local 		google android The Qualcomm buspm driver in Android before 2016-05-01 on Nexus 5X, 6, and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 26354602. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2441 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
266658 7.8 HIGH
Local 		google android libs/binder/IPCThreadState.cpp in Binder in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 mishandles object references, which allows attackers to gain pr… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2440 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
266659 8.8 HIGH
Adjacent 		google android Buffer overflow in btif/src/btif_dm.c in Bluetooth in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 allows remote attackers to execute arbitrary code via… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2439 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
266660 7.8 HIGH
Local 		google android The NVIDIA video driver in Android before 2016-05-01 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 27436822. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2437 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm