Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241941	6.8	警告	AEF Group	-	AEF における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2545	2012-06-26 16:10	2009-07-20	Show	GitHub Exploit DB Packet Storm

241942	7.8	危険	aigo	-	Aigo P8860 におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2009-2539	2012-06-26 16:10	2009-07-20	Show	GitHub Exploit DB Packet Storm

241943	7.2	危険	forkosh	-	mathTeX の mathtex.cgi における詳細不明な脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2461	2012-06-26 16:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

241944	10	危険	forkosh	-	mathTeX の mathtex.cgi におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2460	2012-06-26 16:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

241945	10	危険	forkosh	-	mimeTeX における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2459	2012-06-26 16:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

241946	4.3	警告	atmail pty ltd	-	@mail の webadmin/admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2455	2012-06-26 16:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

241947	4.3	警告	シトリックス・システムズ	-	Citrix Web Interface におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2454	2012-06-26 16:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

241948	7.5	危険	シトリックス・システムズ	-	Citrix XenApp におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2453	2012-06-26 16:10	2009-04-22	Show	GitHub Exploit DB Packet Storm

241949	10	危険	シトリックス・システムズ	-	Citrix Licensing における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2452	2012-06-26 16:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

241950	7.5	危険	adbnewssender	-	ADbNewsSender の maillinglist/admin/change_config.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2449	2012-06-26 16:10	2009-07-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268501	5.5	MEDIUM Local	qt	qxmlsimplereader	Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attackers to cause a denial of service (application crash) via a xml file with multiple nested open tags.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10040	2024-11-21 11:43	2017-03-8	Show	GitHub Exploit DB Packet Storm

268502	7.8	HIGH Local	freetype debian	freetype debian_linux	The parse_charstrings function in type1/t1load.c in FreeType 2 before 2.7 does not ensure that a font contains a glyph name, which allows remote attackers to cause a denial of service (heap-based buf…	CWE-125 Out-of-bounds Read	CVE-2016-10244	2024-11-21 11:43	2017-03-6	Show	GitHub Exploit DB Packet Storm

268503	5.5	MEDIUM Local	imagemagick opensuse	imagemagick leap	Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via…	CWE-125 Out-of-bounds Read	CVE-2016-10070	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

268504	5.5	MEDIUM Local	imagemagick	imagemagick	Buffer overflow in the ReadVIFFImage function in coders/viff.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a crafted file.	CWE-120 Classic Buffer Overflow	CVE-2016-10066	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

268505	7.8	HIGH Local	imagemagick opensuse	imagemagick leap	The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.	CWE-284 Improper Access Control	CVE-2016-10065	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

268506	6.5	MEDIUM Network	imagemagick	imagemagick	The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (crash) …	CWE-252 Unchecked Return Value	CVE-2016-10061	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

268507	8.8	HIGH Network	zoneminder	zoneminder	Cross-site request forgery (CSRF) vulnerability in Zoneminder 1.30 and earlier allows remote attackers to hijack the authentication of users for requests that change passwords and possibly have unspe…	CWE-352 Origin Validation Error	CVE-2016-10206	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

268508	7.3	HIGH Network	zoneminder	zoneminder	Session fixation vulnerability in Zoneminder 1.30 and earlier allows remote attackers to hijack web sessions via the ZMSESSID cookie.	CWE-384 Session Fixation	CVE-2016-10205	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

268509	9.8	CRITICAL Network	zoneminder	zoneminder	SQL injection vulnerability in Zoneminder 1.30 and earlier allows remote attackers to execute arbitrary SQL commands via the limit parameter in a log query request to index.php.	CWE-89 SQL Injection	CVE-2016-10204	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

268510	6.1	MEDIUM Network	zoneminder	zoneminder	Cross-site scripting (XSS) vulnerability in Zoneminder 1.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the name when creating a new monitor.	CWE-79 Cross-site Scripting	CVE-2016-10203	2024-11-21 11:43	2017-03-4	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed