Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 12:10 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241901	6.8	警告	Drupal paul beaney	-	Drupal 用の PHPList Integration モジュールの "My Account" 機能におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4066	2012-06-26 16:18	2009-11-18	Show	GitHub Exploit DB Packet Storm

241902	4.3	警告	Ezra Barnett Gildesgame Drupal	-	Drupal の OG モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4063	2012-06-26 16:18	2009-11-4	Show	GitHub Exploit DB Packet Storm

241903	4.3	警告	Drupal anon-design	-	Drupal の Printfriendly モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4062	2012-06-26 16:18	2009-11-18	Show	GitHub Exploit DB Packet Storm

241904	7.5	危険	CubeCart Limited	-	CubeCart の includes/content/viewProd.inc.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4060	2012-06-26 16:18	2009-11-23	Show	GitHub Exploit DB Packet Storm

241905	6.8	警告	Joomla! joomclan	-	Joomla! の JoomClip コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4059	2012-06-26 16:18	2009-11-23	Show	GitHub Exploit DB Packet Storm

241906	7.5	危険	betsy	-	Betsy CMS の admin/popup.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4056	2012-06-26 16:18	2009-11-23	Show	GitHub Exploit DB Packet Storm

241907	5	警告	Digium	-	Asterisk Open Source および s800i の rtp.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-4055	2012-06-26 16:18	2009-11-13	Show	GitHub Exploit DB Packet Storm

241908	4	警告	downstairs.dnsalias	-	Home FTP Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4053	2012-06-26 16:18	2009-11-23	Show	GitHub Exploit DB Packet Storm

241909	5	警告	downstairs.dnsalias	-	Home FTP Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-4051	2012-06-26 16:18	2009-11-23	Show	GitHub Exploit DB Packet Storm

241910	7.2	危険	AVAST Software s.r.o.	-	avast! Home and Professional の aswRdr.sys におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4049	2012-06-26 16:18	2009-11-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266901	7.3	HIGH Local	vtiger	vtiger_crm	Unrestricted file upload vulnerability in the Settings_Vtiger_CompanyDetailsSave_Action class in modules/Settings/Vtiger/actions/CompanyDetailsSave.php in Vtiger CRM 6.4.0 allows remote authenticated…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2016-1713	2024-11-21 11:46	2017-04-15	Show	GitHub Exploit DB Packet Storm

266902	5.5	MEDIUM Local	opencv	opencv	OpenCV 3.0.0 allows remote attackers to cause a denial of service (segfault) via vectors involving corrupt chunks.	CWE-20 Improper Input Validation	CVE-2016-1517	2024-11-21 11:46	2017-04-10	Show	GitHub Exploit DB Packet Storm

266903	8.8	HIGH Network	opencv debian	opencv debian_linux	OpenCV 3.0.0 has a double free issue that allows attackers to execute arbitrary code.	CWE-415 Double Free	CVE-2016-1516	2024-11-21 11:46	2017-04-10	Show	GitHub Exploit DB Packet Storm

266904	6.5	MEDIUM Network	novell	netiq_idm_servicenow_driver	An information leak in the NetIQ IDM ServiceNow Driver before 1.0.0.1 could expose cryptographic attributes to logged-in users.	CWE-200 Information Exposure	CVE-2016-1603	2024-11-21 11:46	2017-03-23	Show	GitHub Exploit DB Packet Storm

266905	7.8	HIGH Local	suse	linux_enterprise_server linux_enterprise_desktop suse_linux_enterprise_server	A code injection in the supportconfig data collection tool in supportutils in SUSE Linux Enterprise Server 12 and 12-SP1 and SUSE Linux Enterprise Desktop 12 and 12-SP1 could be used by local attacke…	CWE-94 Code Injection	CVE-2016-1602	2024-11-21 11:46	2017-03-23	Show	GitHub Exploit DB Packet Storm

266906	8.8	HIGH Network	netiq	access_governance_suite	A logged-in user in NetIQ Access Governance Suite 6.0 through 6.4 could escalate privileges to administrator.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-1597	2024-11-21 11:46	2017-03-23	Show	GitHub Exploit DB Packet Storm

266907	9.8	CRITICAL Network	quagga debian	quagga debian_linux	It was discovered that the zebra daemon in Quagga before 1.0.20161017 suffered from a stack-based buffer overflow when processing IPv6 Neighbor Discovery messages. The root cause was relying on BUFSI…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1245	2024-11-21 11:46	2017-02-23	Show	GitHub Exploit DB Packet Storm

266908	5.9	MEDIUM Network	dbd-mysql_project	dbd-mysql	The DBD::mysql module before 4.039 for Perl, when using server-side prepared statement support, allows attackers to cause a denial of service (out-of-bounds read) via vectors involving an unaligned n…	CWE-125 Out-of-bounds Read	CVE-2016-1249	2024-11-21 11:46	2017-02-17	Show	GitHub Exploit DB Packet Storm

266909	7.3	HIGH Network	netapp	snapcenter_server	NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication and then list and delete backups via unspecified vectors.	CWE-287 Improper Authentication	CVE-2016-1502	2024-11-21 11:46	2017-02-8	Show	GitHub Exploit DB Packet Storm

266910	7.5	HIGH Network	dhcpcd_project	dhcpcd	dhcpcd before 6.10.0 allows remote attackers to cause a denial of service (invalid read and crash) via vectors related to the option length.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1504	2024-11-21 11:46	2017-02-8	Show	GitHub Exploit DB Packet Storm