Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241901	9.3	危険	Foxit Software Inc	-	Foxit Reader の Foxit JPEG2000/JBIG2 Decoder アドオンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2009-0690	2012-06-26 16:10	2009-06-23	Show	GitHub Exploit DB Packet Storm

241902	5	警告	FlashTux	-	Chat (WeeChat) の Wee Enhanced Environment におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-0661	2012-06-26 16:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

241903	6.9	警告	ASUSTeK Computer Inc.	-	Asus SmartLogon における "セキュリティ機能" を回避される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-0656	2012-06-26 16:10	2009-02-20	Show	GitHub Exploit DB Packet Storm

241904	6.8	警告	falt4	-	Falt4 CMS RC4 の admin/index.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-0648	2012-06-26 16:10	2009-02-19	Show	GitHub Exploit DB Packet Storm

241905	7.5	危険	4site	-	4Site CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0646	2012-06-26 16:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

241906	5.1	警告	dminnich	-	Simple PHP News の post.php における news.txt へ任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2009-0643	2012-06-26 16:10	2009-02-20	Show	GitHub Exploit DB Packet Storm

241907	7.5	危険	dminnich	-	Simple PHP News の post.php における news.txt へ任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2009-0610	2012-06-26 16:10	2009-02-17	Show	GitHub Exploit DB Packet Storm

241908	4.3	警告	apmuthu	-	phpSkelSite の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0594	2012-06-26 16:10	2009-02-16	Show	GitHub Exploit DB Packet Storm

241909	7.5	危険	cafeengine	-	Easy CafeEngine の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0574	2012-06-26 16:10	2009-02-13	Show	GitHub Exploit DB Packet Storm

241910	4.3	警告	fotoware	-	FotoWeb におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0573	2012-06-26 16:10	2009-02-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267121	7.1	HIGH Local	littlecms debian canonical opensuse redhat netapp	little_cms_color_engine debian_linux ubuntu_linux leap enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_tus enterprise_lin…	The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which …	CWE-125 Out-of-bounds Read	CVE-2016-10165	2024-11-21 11:43	2017-02-4	Show	GitHub Exploit DB Packet Storm

267122	7.5	HIGH Network	sap	saplpd	SAPlpd through 7400.3.11.33 in SAP GUI 7.40 on Windows has a Denial of Service vulnerability (service crash) with a long string to TCP port 515.	CWE-20 Improper Input Validation	CVE-2016-10079	2024-11-21 11:43	2017-02-2	Show	GitHub Exploit DB Packet Storm

267123	7.5	HIGH Network	minitar	archive-tar-minitar minitar	Directory traversal vulnerability in the minitar before 0.6 and archive-tar-minitar 0.5.2 gems for Ruby allows remote attackers to write to arbitrary files via a .. (dot dot) in a TAR archive entry.	CWE-22 Path Traversal	CVE-2016-10173	2024-11-21 11:43	2017-02-2	Show	GitHub Exploit DB Packet Storm

267124	9.8	CRITICAL Network	x.org	libxpm	Multiple integer overflows in libXpm before 3.5.12, when a program requests parsing XPM extensions on a 64-bit platform, allow remote attackers to cause a denial of service (out-of-bounds write) or e…	CWE-119 CWE-787 CWE-190 Incorrect Access of Indexable Resource ('Range Error') Out-of-bounds Write Integer Overflow or Wraparound	CVE-2016-10164	2024-11-21 11:43	2017-02-2	Show	GitHub Exploit DB Packet Storm

267125	10.0	CRITICAL Network	mrf	web_panel	An issue was discovered in Radisys MRF Web Panel (SWMS) 9.0.1. The MSM_MACRO_NAME POST parameter in /swms/ms.cgi was discovered to be vulnerable to OS command injection attacks. It is possible to use…	CWE-78 OS Command	CVE-2016-10043	2024-11-21 11:43	2017-02-1	Show	GitHub Exploit DB Packet Storm

267126	7.5	HIGH Network	libpng	libpng	The png_set_text_2 function in libpng 0.71 before 1.0.67, 1.2.x before 1.2.57, 1.4.x before 1.4.20, 1.5.x before 1.5.28, and 1.6.x before 1.6.27 allows context-dependent attackers to cause a NULL poi…	CWE-476 NULL Pointer Dereference	CVE-2016-10087	2024-11-21 11:43	2017-01-31	Show	GitHub Exploit DB Packet Storm

267127	7.5	HIGH Network	dlink	dwr-932b_firmware	An issue was discovered on the D-Link DWR-932B router. /var/miniupnpd.conf has no deny rules.	CWE-399 Resource Management Errors	CVE-2016-10186	2024-11-21 11:43	2017-01-30	Show	GitHub Exploit DB Packet Storm

267128	7.5	HIGH Network	dlink	dwr-932b_firmware	An issue was discovered on the D-Link DWR-932B router. A secure_mode=no line exists in /var/miniupnpd.conf.	CWE-254 7PK - Security Features	CVE-2016-10185	2024-11-21 11:43	2017-01-30	Show	GitHub Exploit DB Packet Storm

267129	7.5	HIGH Network	dlink	dwr-932b_firmware	An issue was discovered on the D-Link DWR-932B router. qmiweb allows file reading with ..%2f traversal.	CWE-22 Path Traversal	CVE-2016-10184	2024-11-21 11:43	2017-01-30	Show	GitHub Exploit DB Packet Storm

267130	7.5	HIGH Network	dlink	dwr-932b_firmware	An issue was discovered on the D-Link DWR-932B router. qmiweb allows directory listing with ../ traversal.	CWE-22 Path Traversal	CVE-2016-10183	2024-11-21 11:43	2017-01-30	Show	GitHub Exploit DB Packet Storm