Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241861	4.3	警告	Dotclear	-	Dotclear の管理インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0933	2012-06-26 16:10	2009-03-17	Show	GitHub Exploit DB Packet Storm

241862	7.5	危険	Apache Friends	-	XAMPP におけるアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-0919	2012-06-26 16:10	2009-03-16	Show	GitHub Exploit DB Packet Storm

241863	7.5	危険	DFLabs	-	DFLabs PTK における PTK の Apache HTTP サーバで起動されたプロセス内で任意のコマンドを実行される脆弱性	CWE-noinfo 情報不足	CVE-2009-0918	2012-06-26 16:10	2009-03-16	Show	GitHub Exploit DB Packet Storm

241864	4.3	警告	DFLabs	-	DFLabs PTK におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0917	2012-06-26 16:10	2009-03-16	Show	GitHub Exploit DB Packet Storm

241865	5	警告	FileZilla	-	FileZilla Server におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0884	2012-06-26 16:10	2009-03-12	Show	GitHub Exploit DB Packet Storm

241866	6.8	警告	amunak	-	Blue Eye CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0883	2012-06-26 16:10	2009-03-12	Show	GitHub Exploit DB Packet Storm

241867	3.5	注意	Digium	-	Asterisk Open Source の SIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-0871	2012-06-26 16:10	2009-02-6	Show	GitHub Exploit DB Packet Storm

241868	8.8	危険	GeoVision	-	LIVEX_~1.OCX の GeoVision LiveX ActiveX コントロールにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-0865	2012-06-26 16:10	2009-03-10	Show	GitHub Exploit DB Packet Storm

241869	4.3	警告	denorastats	-	phpDenora におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0861	2012-06-26 16:10	2009-03-10	Show	GitHub Exploit DB Packet Storm

241870	6.9	警告	dash	-	dash における任意のコードを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2009-0854	2012-06-26 16:10	2009-03-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267121	7.1	HIGH Local	littlecms debian canonical opensuse redhat netapp	little_cms_color_engine debian_linux ubuntu_linux leap enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_tus enterprise_lin…	The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which …	CWE-125 Out-of-bounds Read	CVE-2016-10165	2024-11-21 11:43	2017-02-4	Show	GitHub Exploit DB Packet Storm

267122	7.5	HIGH Network	sap	saplpd	SAPlpd through 7400.3.11.33 in SAP GUI 7.40 on Windows has a Denial of Service vulnerability (service crash) with a long string to TCP port 515.	CWE-20 Improper Input Validation	CVE-2016-10079	2024-11-21 11:43	2017-02-2	Show	GitHub Exploit DB Packet Storm

267123	7.5	HIGH Network	minitar	archive-tar-minitar minitar	Directory traversal vulnerability in the minitar before 0.6 and archive-tar-minitar 0.5.2 gems for Ruby allows remote attackers to write to arbitrary files via a .. (dot dot) in a TAR archive entry.	CWE-22 Path Traversal	CVE-2016-10173	2024-11-21 11:43	2017-02-2	Show	GitHub Exploit DB Packet Storm

267124	9.8	CRITICAL Network	x.org	libxpm	Multiple integer overflows in libXpm before 3.5.12, when a program requests parsing XPM extensions on a 64-bit platform, allow remote attackers to cause a denial of service (out-of-bounds write) or e…	CWE-119 CWE-787 CWE-190 Incorrect Access of Indexable Resource ('Range Error') Out-of-bounds Write Integer Overflow or Wraparound	CVE-2016-10164	2024-11-21 11:43	2017-02-2	Show	GitHub Exploit DB Packet Storm

267125	10.0	CRITICAL Network	mrf	web_panel	An issue was discovered in Radisys MRF Web Panel (SWMS) 9.0.1. The MSM_MACRO_NAME POST parameter in /swms/ms.cgi was discovered to be vulnerable to OS command injection attacks. It is possible to use…	CWE-78 OS Command	CVE-2016-10043	2024-11-21 11:43	2017-02-1	Show	GitHub Exploit DB Packet Storm

267126	7.5	HIGH Network	libpng	libpng	The png_set_text_2 function in libpng 0.71 before 1.0.67, 1.2.x before 1.2.57, 1.4.x before 1.4.20, 1.5.x before 1.5.28, and 1.6.x before 1.6.27 allows context-dependent attackers to cause a NULL poi…	CWE-476 NULL Pointer Dereference	CVE-2016-10087	2024-11-21 11:43	2017-01-31	Show	GitHub Exploit DB Packet Storm

267127	7.5	HIGH Network	dlink	dwr-932b_firmware	An issue was discovered on the D-Link DWR-932B router. /var/miniupnpd.conf has no deny rules.	CWE-399 Resource Management Errors	CVE-2016-10186	2024-11-21 11:43	2017-01-30	Show	GitHub Exploit DB Packet Storm

267128	7.5	HIGH Network	dlink	dwr-932b_firmware	An issue was discovered on the D-Link DWR-932B router. A secure_mode=no line exists in /var/miniupnpd.conf.	CWE-254 7PK - Security Features	CVE-2016-10185	2024-11-21 11:43	2017-01-30	Show	GitHub Exploit DB Packet Storm

267129	7.5	HIGH Network	dlink	dwr-932b_firmware	An issue was discovered on the D-Link DWR-932B router. qmiweb allows file reading with ..%2f traversal.	CWE-22 Path Traversal	CVE-2016-10184	2024-11-21 11:43	2017-01-30	Show	GitHub Exploit DB Packet Storm

267130	7.5	HIGH Network	dlink	dwr-932b_firmware	An issue was discovered on the D-Link DWR-932B router. qmiweb allows directory listing with ../ traversal.	CWE-22 Path Traversal	CVE-2016-10183	2024-11-21 11:43	2017-01-30	Show	GitHub Exploit DB Packet Storm