Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241871	4.3	警告	TYPO3 Association an searchit	-	TYPO3 のan_searchit 拡張におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4161	2012-06-26 16:18	2009-12-1	Show	GitHub Exploit DB Packet Storm

241872	7.5	危険	ciamos	-	Ciamos CMS の modules/pms/index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-4156	2012-06-26 16:18	2009-12-2	Show	GitHub Exploit DB Packet Storm

241873	7.5	危険	eshopbuilder	-	Eshopbuilde CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4155	2012-06-26 16:18	2009-12-2	Show	GitHub Exploit DB Packet Storm

241874	5	警告	Elxis	-	Elxis CMS の includes/feedcreator.class.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4154	2012-06-26 16:18	2009-12-2	Show	GitHub Exploit DB Packet Storm

241875	5.8	警告	Best Practical Solutions	-	Best Practical Solutions RT の html/Elements/SetupSessionCookie におけるセッションをハイジャックされるの脆弱性	CWE-287 不適切な認証	CVE-2009-4151	2012-06-26 16:18	2009-11-30	Show	GitHub Exploit DB Packet Storm

241876	9.3	危険	daz3d	-	DAZ Studio における任意の JavaScript コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4148	2012-06-26 16:18	2009-12-4	Show	GitHub Exploit DB Packet Storm

241877	7.2	危険	FreeBSD	-	FreeBSD の libexec/rtld-elf/rtld.c における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4147	2012-06-26 16:18	2009-12-2	Show	GitHub Exploit DB Packet Storm

241878	7.2	危険	FreeBSD	-	FreeBSD の libexec/rtld-elf/rtld.c における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4146	2012-06-26 16:18	2009-12-2	Show	GitHub Exploit DB Packet Storm

241879	4.4	警告	GNU Project	-	GNU coreutils の dist-check.mk の distcheck rule における権限を取得される脆弱性	CWE-59 リンク解釈の問題	CVE-2009-4135	2012-06-26 16:18	2009-12-5	Show	GitHub Exploit DB Packet Storm

241880	6.5	警告	Condor Project レッドハット	-	MRG の Grid Execute Node で使用される Condor における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2009-4133	2012-06-26 16:18	2009-12-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266901	7.3	HIGH Local	vtiger	vtiger_crm	Unrestricted file upload vulnerability in the Settings_Vtiger_CompanyDetailsSave_Action class in modules/Settings/Vtiger/actions/CompanyDetailsSave.php in Vtiger CRM 6.4.0 allows remote authenticated…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2016-1713	2024-11-21 11:46	2017-04-15	Show	GitHub Exploit DB Packet Storm

266902	5.5	MEDIUM Local	opencv	opencv	OpenCV 3.0.0 allows remote attackers to cause a denial of service (segfault) via vectors involving corrupt chunks.	CWE-20 Improper Input Validation	CVE-2016-1517	2024-11-21 11:46	2017-04-10	Show	GitHub Exploit DB Packet Storm

266903	8.8	HIGH Network	opencv debian	opencv debian_linux	OpenCV 3.0.0 has a double free issue that allows attackers to execute arbitrary code.	CWE-415 Double Free	CVE-2016-1516	2024-11-21 11:46	2017-04-10	Show	GitHub Exploit DB Packet Storm

266904	6.5	MEDIUM Network	novell	netiq_idm_servicenow_driver	An information leak in the NetIQ IDM ServiceNow Driver before 1.0.0.1 could expose cryptographic attributes to logged-in users.	CWE-200 Information Exposure	CVE-2016-1603	2024-11-21 11:46	2017-03-23	Show	GitHub Exploit DB Packet Storm

266905	7.8	HIGH Local	suse	linux_enterprise_server linux_enterprise_desktop suse_linux_enterprise_server	A code injection in the supportconfig data collection tool in supportutils in SUSE Linux Enterprise Server 12 and 12-SP1 and SUSE Linux Enterprise Desktop 12 and 12-SP1 could be used by local attacke…	CWE-94 Code Injection	CVE-2016-1602	2024-11-21 11:46	2017-03-23	Show	GitHub Exploit DB Packet Storm

266906	8.8	HIGH Network	netiq	access_governance_suite	A logged-in user in NetIQ Access Governance Suite 6.0 through 6.4 could escalate privileges to administrator.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-1597	2024-11-21 11:46	2017-03-23	Show	GitHub Exploit DB Packet Storm

266907	9.8	CRITICAL Network	quagga debian	quagga debian_linux	It was discovered that the zebra daemon in Quagga before 1.0.20161017 suffered from a stack-based buffer overflow when processing IPv6 Neighbor Discovery messages. The root cause was relying on BUFSI…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1245	2024-11-21 11:46	2017-02-23	Show	GitHub Exploit DB Packet Storm

266908	5.9	MEDIUM Network	dbd-mysql_project	dbd-mysql	The DBD::mysql module before 4.039 for Perl, when using server-side prepared statement support, allows attackers to cause a denial of service (out-of-bounds read) via vectors involving an unaligned n…	CWE-125 Out-of-bounds Read	CVE-2016-1249	2024-11-21 11:46	2017-02-17	Show	GitHub Exploit DB Packet Storm

266909	7.3	HIGH Network	netapp	snapcenter_server	NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication and then list and delete backups via unspecified vectors.	CWE-287 Improper Authentication	CVE-2016-1502	2024-11-21 11:46	2017-02-8	Show	GitHub Exploit DB Packet Storm

266910	7.5	HIGH Network	dhcpcd_project	dhcpcd	dhcpcd before 6.10.0 allows remote attackers to cause a denial of service (invalid read and crash) via vectors related to the option length.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1504	2024-11-21 11:46	2017-02-8	Show	GitHub Exploit DB Packet Storm