Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241921	7.5	危険	diskos	-	Diskos CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4798	2012-06-26 16:19	2010-04-22	Show	GitHub Exploit DB Packet Storm

241922	7.5	危険	glFusion	-	glFusion の private/system/classes/listfactory.class.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4796	2012-06-26 16:19	2010-04-22	Show	GitHub Exploit DB Packet Storm

241923	7.5	危険	community cms	-	Community CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4794	2012-06-26 16:19	2010-04-22	Show	GitHub Exploit DB Packet Storm

241924	7.5	危険	bhavesh chauhan Joomla!	-	Joomla! 用の Quick News コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4785	2012-06-26 16:19	2010-04-21	Show	GitHub Exploit DB Packet Storm

241925	9.3	危険	Blizzard Entertainment, Inc.	-	Warcraft III: The Frozen Throne の JASS スクリプトインタプリタにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4768	2012-06-26 16:19	2010-04-20	Show	GitHub Exploit DB Packet Storm

241926	5	警告	cnr.somee	-	CNR Hikaye Portal におけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4765	2012-06-26 16:19	2010-04-13	Show	GitHub Exploit DB Packet Storm

241927	9.3	危険	マイクロソフトアドビシステムズ	-	Adobe Reader におけるユーザに任意のコードを実行させる脆弱性	CWE-94 コード・インジェクション	CVE-2009-4764	2012-06-26 16:19	2010-04-5	Show	GitHub Exploit DB Packet Storm

241928	9.3	危険	dicas	-	dicas Mpegable Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4758	2012-06-26 16:19	2010-03-29	Show	GitHub Exploit DB Packet Storm

241929	9.3	危険	evils-world	-	BrotherSoft EW-MusicPlayer におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4757	2012-06-26 16:19	2010-03-29	Show	GitHub Exploit DB Packet Storm

241930	9.3	危険	beatport	-	Beatport Player の TraktorBeatport.exe におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4756	2012-06-26 16:19	2010-03-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268851	7.8	HIGH Local	phusion	passenger	In Phusion Passenger before 5.1.0, a known /tmp filename was used during passenger-install-nginx-module execution, which could allow local attackers to gain the privileges of the passenger user.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10345	2024-11-21 11:43	2017-04-19	Show	GitHub Exploit DB Packet Storm

268852	9.8	CRITICAL Network	freetype oracle	freetype outside_in_technology	FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c.	CWE-787 Out-of-bounds Write	CVE-2016-10328	2024-11-21 11:43	2017-04-14	Show	GitHub Exploit DB Packet Storm

268853	9.8	CRITICAL Network	libreoffice	libreoffice	LibreOffice before 2016-12-22 has an out-of-bounds write caused by a heap-based buffer overflow related to the EnhWMFReader::ReadEnhWMF function in vcl/source/filter/wmf/enhwmf.cxx.	CWE-787 Out-of-bounds Write	CVE-2016-10327	2024-11-21 11:43	2017-04-14	Show	GitHub Exploit DB Packet Storm

268854	7.5	HIGH Network	gnu	osip	In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the osip_body_to_str() function defined in osipparser2/osip_body.c, resulting in a remote DoS.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10326	2024-11-21 11:43	2017-04-14	Show	GitHub Exploit DB Packet Storm

268855	7.5	HIGH Network	gnu	osip	In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the _osip_message_to_str() function defined in osipparser2/osip_message_to_str.c, resulting in a remote Do…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10325	2024-11-21 11:43	2017-04-14	Show	GitHub Exploit DB Packet Storm

268856	9.8	CRITICAL Network	gnu	osip	In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the osip_clrncpy() function defined in osipparser2/osip_port.c.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10324	2024-11-21 11:43	2017-04-14	Show	GitHub Exploit DB Packet Storm

268857	7.8	HIGH Local	firejail_project	firejail	Firejail allows --chroot when seccomp is not supported, which might allow local users to gain privileges.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10123	2024-11-21 11:43	2017-04-13	Show	GitHub Exploit DB Packet Storm

268858	7.8	HIGH Local	firejail_project	firejail	Firejail does not properly clean environment variables, which allows local users to gain privileges.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10122	2024-11-21 11:43	2017-04-13	Show	GitHub Exploit DB Packet Storm

268859	7.8	HIGH Local	firejail_project	firejail	Firejail uses weak permissions for /dev/shm/firejail and possibly other files, which allows local users to gain privileges.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10121	2024-11-21 11:43	2017-04-13	Show	GitHub Exploit DB Packet Storm

268860	7.8	HIGH Local	firejail_project	firejail	Firejail uses 0777 permissions when mounting (1) /dev, (2) /dev/shm, (3) /var/tmp, or (4) /var/lock, which allows local users to gain privileges.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10120	2024-11-21 11:43	2017-04-13	Show	GitHub Exploit DB Packet Storm