Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241971 6.8 警告 Joomla!
Blue Constant Media Ltd		 - Joomla! 用の DJ-Catalog コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3661 2012-06-26 16:18 2009-10-11 Show GitHub Exploit DB Packet Storm
241972 6.8 警告 eFront Learning - Efront の libraries/database.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3660 2012-06-26 16:18 2009-10-11 Show GitHub Exploit DB Packet Storm
241973 9.3 危険 AOL - AOL の sb.dll における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3658 2012-06-26 16:18 2009-10-9 Show GitHub Exploit DB Packet Storm
241974 6.4 警告 Drupal
316solutions		 - Drupal 用の Boost モジュールにおける新しい webroot ディレクトリを生成される脆弱性 CWE-Other
その他 		CVE-2009-3654 2012-06-26 16:18 2009-09-30 Show GitHub Exploit DB Packet Storm
241975 3.5 注意 Drupal
darren oh		 - Drupal 用モジュールの XML Sitemap の追加リンクインターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3653 2012-06-26 16:18 2009-09-30 Show GitHub Exploit DB Packet Storm
241976 4.3 警告 Drupal
david strauss		 - Drupa のモジュールの Dex におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3650 2012-06-26 16:18 2009-09-30 Show GitHub Exploit DB Packet Storm
241977 3.5 注意 Drupal
apsivam		 - Drupal のモジュールの Service Links におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3648 2012-06-26 16:18 2009-10-9 Show GitHub Exploit DB Packet Storm
241978 5 警告 dxmsoft - Dxmsoft XM Easy Personal FTP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-3643 2012-06-26 16:18 2009-10-9 Show GitHub Exploit DB Packet Storm
241979 7.5 危険 frontrange - FrontRange HEAT の Call Logging 機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3642 2012-06-26 16:18 2009-10-9 Show GitHub Exploit DB Packet Storm
241980 4.3 警告 derrick oswald - HTML-Parser の decode_entities 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-3627 2012-06-26 16:18 2009-10-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266761 9.8 CRITICAL
Network 		debian
opensuse
cypherpunks 		debian_linux
leap
opensuse
libotr 		Integer overflow in proto.c in libotr before 4.1.1 on 64-bit platforms allows remote attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via a s… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2851 2024-11-21 11:48 2016-04-8 Show GitHub Exploit DB Packet Storm
266762 6.1 MEDIUM
Network 		citrix xenmobile_server Cross-site scripting (XSS) vulnerability in the Web User Interface in Citrix XenMobile Server 10.0, 10.1 before Rolling Patch 4, and 10.3 before Rolling Patch 1 allows remote attackers to inject arbi… CWE-79
Cross-site Scripting 		CVE-2016-2789 2024-11-21 11:48 2016-04-8 Show GitHub Exploit DB Packet Storm
266763 9.8 CRITICAL
Network 		9bis
simon_tatham 		kitty
putty 		Stack-based buffer overflow in the SCP command-line utility in PuTTY before 0.67 and KiTTY 0.66.6.3 and earlier allows remote servers to cause a denial of service (stack memory corruption) or execute… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2563 2024-11-21 11:48 2016-04-8 Show GitHub Exploit DB Packet Storm
266764 6.1 MEDIUM
Network 		debian
websvn 		debian_linux
websvn 		Cross-site scripting (XSS) vulnerability in WebSVN 2.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the path parameter to log.php. CWE-79
Cross-site Scripting 		CVE-2016-2511 2024-11-21 11:48 2016-04-8 Show GitHub Exploit DB Packet Storm
266765 7.5 HIGH
Network 		nodejs
fedoraproject 		node.js
fedora 		The HTTP header parsing code in Node.js 0.10.x before 0.10.42, 0.11.6 through 0.11.16, 0.12.x before 0.12.10, 4.x before 4.3.0, and 5.x before 5.6.0 allows remote attackers to bypass an HTTP response… CWE-20
 Improper Input Validation  		CVE-2016-2216 2024-11-21 11:48 2016-04-8 Show GitHub Exploit DB Packet Storm
266766 8.1 HIGH
Network 		beanshell
debian
canonical 		beanshell
debian_linux
ubuntu_linux 		BeanShell (bsh) before 2.0b6, when included on the classpath by an application that uses Java serialization or XStream, allows remote attackers to execute arbitrary code via crafted serialized data, … CWE-19
 Data Processing Errors 		CVE-2016-2510 2024-11-21 11:48 2016-04-8 Show GitHub Exploit DB Packet Storm
266767 6.5 MEDIUM
Local 		qemu
canonical
debian 		qemu
ubuntu_linux
debian_linux 		QEMU, when built with the Pseudo Random Number Generator (PRNG) back-end support, allows local guest OS users to cause a denial of service (process crash) via an entropy request, which triggers arbit… CWE-331
 Insufficient Entropy 		CVE-2016-2858 2024-11-21 11:48 2016-04-8 Show GitHub Exploit DB Packet Storm
266768 6.5 MEDIUM
Network 		schneider-electric proface_gp-pro_ex_pfxexedls
proface_gp-pro_ex_pfxexedv
proface_gp-pro_ex_ex-ed
proface_gp-pro_ex_pfxexgrpls 		Stack-based buffer overflow in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 allows remote attackers to execute arbitra… CWE-787
 Out-of-bounds Write 		CVE-2016-2292 2024-11-21 11:48 2016-04-7 Show GitHub Exploit DB Packet Storm
266769 6.5 MEDIUM
Network 		schneider-electric proface_gp-pro_ex_pfxexedls
proface_gp-pro_ex_pfxexedv
proface_gp-pro_ex_ex-ed
proface_gp-pro_ex_pfxexgrpls 		Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 allow remote attackers to execute arbitrary code or cause a denial of ser… CWE-125
Out-of-bounds Read 		CVE-2016-2291 2024-11-21 11:48 2016-04-7 Show GitHub Exploit DB Packet Storm
266770 8.8 HIGH
Network 		schneider-electric proface_gp-pro_ex_pfxexedls
proface_gp-pro_ex_pfxexedv
proface_gp-pro_ex_ex-ed
proface_gp-pro_ex_pfxexgrpls 		Heap-based buffer overflow in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 allows remote attackers to execute arbitrar… CWE-787
 Out-of-bounds Write 		CVE-2016-2290 2024-11-21 11:48 2016-04-7 Show GitHub Exploit DB Packet Storm