Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241901 4.7 警告 FreeBSD - FreeBSD の IATA (ata) ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2649 2012-06-26 16:10 2009-07-30 Show GitHub Exploit DB Packet Storm
241902 5 警告 flashden - FlashDen Guestbook における設定情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2648 2012-06-26 16:10 2009-07-30 Show GitHub Exploit DB Packet Storm
241903 10 危険 DELL EMC (旧 EMC Corporation) - ISM Portmapper サービスの librpc.dll の認証機能における整数符号化エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2009-2754 2012-06-26 16:10 2010-03-5 Show GitHub Exploit DB Packet Storm
241904 9.3 危険 ditcms - dit.cms におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2784 2012-06-26 16:10 2009-08-17 Show GitHub Exploit DB Packet Storm
241905 6 警告 Arab Portal - Arab Portal の forum.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2781 2012-06-26 16:10 2009-08-17 Show GitHub Exploit DB Packet Storm
241906 4.3 警告 68classifieds - 68 Classifieds におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2780 2012-06-26 16:10 2009-08-17 Show GitHub Exploit DB Packet Storm
241907 7.5 危険 aj square - AJ Matrix DNA の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2779 2012-06-26 16:10 2009-08-17 Show GitHub Exploit DB Packet Storm
241908 4.3 警告 garagesalesjunkie - GarageSales Script の visitor/view.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2778 2012-06-26 16:10 2009-08-14 Show GitHub Exploit DB Packet Storm
241909 7.5 危険 desiscripts - Desi Short URL Script の index.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-2642 2012-06-26 16:10 2009-07-28 Show GitHub Exploit DB Packet Storm
241910 9.3 危険 日本エイサー - acerctrl.ocx の Acer LunchApp ActiveX コントロールにおける任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2627 2012-06-26 16:10 2009-08-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268581 7.5 HIGH
Network 		php
debian 		php
debian_linux 		Integer overflow in the phar_parse_pharfile function in ext/phar/phar.c in PHP before 5.6.30 and 7.0.x before 7.0.15 allows remote attackers to cause a denial of service (memory consumption or applic… CWE-190
 Integer Overflow or Wraparound 		CVE-2016-10159 2024-11-21 11:43 2017-01-25 Show GitHub Exploit DB Packet Storm
268582 7.5 HIGH
Network 		php php The exif_convert_any_to_int function in ext/exif/exif.c in PHP before 5.6.30, 7.0.x before 7.0.15, and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (application crash) via … CWE-189
Numeric Errors 		CVE-2016-10158 2024-11-21 11:43 2017-01-25 Show GitHub Exploit DB Packet Storm
268583 9.8 CRITICAL
Network 		akamai netsession Akamai NetSession 1.9.3.1 is vulnerable to DLL Hijacking: it tries to load CSUNSAPI.dll without supplying the complete path. The issue is aggravated because the mentioned DLL is missing from the inst… CWE-94
Code Injection 		CVE-2016-10157 2024-11-21 11:43 2017-01-23 Show GitHub Exploit DB Packet Storm
268584 7.8 HIGH
Local 		systemd_project systemd A flaw in systemd v228 in /src/basic/fs-util.c caused world writable suid files to be created when using the systemd timers features, allowing local attackers to escalate their privileges to root. Th… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-10156 2024-11-21 11:43 2017-01-23 Show GitHub Exploit DB Packet Storm
268585 5.9 MEDIUM
Network 		hiteksoftware automize Information Disclosure can occur in sshProfiles.jsd in Hitek Software's Automize because of the Read attribute being set for Users. This allows an attacker to recover encrypted passwords for SSH/SFTP… CWE-326
Inadequate Encryption Strength 		CVE-2016-10104 2024-11-21 11:43 2017-01-23 Show GitHub Exploit DB Packet Storm
268586 8.1 HIGH
Network 		hiteksoftware automize Information Disclosure can occur in encryptionProfiles.jsd in Hitek Software's Automize because of the Read attribute being set for Users. This allows an attacker to recover encrypted passwords for G… CWE-255
CWE-326
Credentials Management
Inadequate Encryption Strength 		CVE-2016-10103 2024-11-21 11:43 2017-01-23 Show GitHub Exploit DB Packet Storm
268587 8.1 HIGH
Network 		hiteksoftware automize hitek.jar in Hitek Software's Automize uses weak encryption when encrypting SSH/SFTP and Encryption profile passwords. This allows an attacker to retrieve the encrypted passwords from sshProfiles.jsd… CWE-326
Inadequate Encryption Strength 		CVE-2016-10102 2024-11-21 11:43 2017-01-23 Show GitHub Exploit DB Packet Storm
268588 8.1 HIGH
Network 		hiteksoftware automize Information Disclosure can occur in Hitek Software's Automize 10.x and 11.x passManager.jsd. Users have the Read attribute, which allows an attacker to recover the encrypted password to access the Pa… CWE-255
CWE-326
Credentials Management
Inadequate Encryption Strength 		CVE-2016-10101 2024-11-21 11:43 2017-01-23 Show GitHub Exploit DB Packet Storm
268589 7.5 HIGH
Network 		tiki tikiwiki_cms\/groupware A vulnerability in Tiki Wiki CMS 15.2 could allow a remote attacker to read arbitrary files on a targeted system via a crafted pathname in a banner URL field. CWE-200
Information Exposure 		CVE-2016-10143 2024-11-21 11:43 2017-01-20 Show GitHub Exploit DB Packet Storm
268590 7.8 HIGH
Local 		tqdm_project tqdm The tqdm._version module in tqdm versions 4.4.1 and 4.10 allows local users to execute arbitrary code via a crafted repo with a malicious git log in the current working directory. CWE-17
Code 		CVE-2016-10075 2024-11-21 11:43 2017-01-20 Show GitHub Exploit DB Packet Storm