Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241971 6.8 警告 Joomla!
Blue Constant Media Ltd		 - Joomla! 用の DJ-Catalog コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3661 2012-06-26 16:18 2009-10-11 Show GitHub Exploit DB Packet Storm
241972 6.8 警告 eFront Learning - Efront の libraries/database.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3660 2012-06-26 16:18 2009-10-11 Show GitHub Exploit DB Packet Storm
241973 9.3 危険 AOL - AOL の sb.dll における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3658 2012-06-26 16:18 2009-10-9 Show GitHub Exploit DB Packet Storm
241974 6.4 警告 Drupal
316solutions		 - Drupal 用の Boost モジュールにおける新しい webroot ディレクトリを生成される脆弱性 CWE-Other
その他 		CVE-2009-3654 2012-06-26 16:18 2009-09-30 Show GitHub Exploit DB Packet Storm
241975 3.5 注意 Drupal
darren oh		 - Drupal 用モジュールの XML Sitemap の追加リンクインターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3653 2012-06-26 16:18 2009-09-30 Show GitHub Exploit DB Packet Storm
241976 4.3 警告 Drupal
david strauss		 - Drupa のモジュールの Dex におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3650 2012-06-26 16:18 2009-09-30 Show GitHub Exploit DB Packet Storm
241977 3.5 注意 Drupal
apsivam		 - Drupal のモジュールの Service Links におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3648 2012-06-26 16:18 2009-10-9 Show GitHub Exploit DB Packet Storm
241978 5 警告 dxmsoft - Dxmsoft XM Easy Personal FTP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-3643 2012-06-26 16:18 2009-10-9 Show GitHub Exploit DB Packet Storm
241979 7.5 危険 frontrange - FrontRange HEAT の Call Logging 機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3642 2012-06-26 16:18 2009-10-9 Show GitHub Exploit DB Packet Storm
241980 4.3 警告 derrick oswald - HTML-Parser の decode_entities 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-3627 2012-06-26 16:18 2009-10-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266921 7.8 HIGH
Local 		f5
fedoraproject 		nginx
fedora 		The nginx package before 1.6.2-5+deb8u3 on Debian jessie, the nginx packages before 1.4.6-1ubuntu3.6 on Ubuntu 14.04 LTS, before 1.10.0-0ubuntu0.16.04.3 on Ubuntu 16.04 LTS, and before 1.10.1-0ubuntu… CWE-59
Link Following 		CVE-2016-1247 2024-11-21 11:46 2016-11-30 Show GitHub Exploit DB Packet Storm
266922 7.8 HIGH
Local 		vim
debian 		vim
debian_linux 		vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted m… CWE-20
 Improper Input Validation  		CVE-2016-1248 2024-11-21 11:46 2016-11-24 Show GitHub Exploit DB Packet Storm
266923 6.1 MEDIUM
Network 		cisco email_security_appliance A vulnerability in the display of email messages in the Messages in Quarantine (MIQ) view in Cisco AsyncOS for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to … CWE-79
Cross-site Scripting 		CVE-2016-1423 2024-11-21 11:46 2016-10-28 Show GitHub Exploit DB Packet Storm
266924 7.5 HIGH
Network 		cisco email_security_appliance A vulnerability in the email attachment scanning functionality of the Advanced Malware Protection (AMP) feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenti… CWE-19
 Data Processing Errors 		CVE-2016-1486 2024-11-21 11:46 2016-10-28 Show GitHub Exploit DB Packet Storm
266925 7.5 HIGH
Network 		cisco email_security_appliance A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to cause a denial of service (DoS)… CWE-20
 Improper Input Validation  		CVE-2016-1481 2024-11-21 11:46 2016-10-28 Show GitHub Exploit DB Packet Storm
266926 7.5 HIGH
Network 		cisco email_security_appliance A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) and Web Security Appliances (WSA) could allow an unauth… CWE-388
 7PK - Errors 		CVE-2016-1480 2024-11-21 11:46 2016-10-28 Show GitHub Exploit DB Packet Storm
266927 5.4 MEDIUM
Network 		novell identity_manager
identity_manager_identity_applications 		XSS in NetIQ IDM 4.5 Identity Applications before 4.5.4 allows attackers able to change their username to inject arbitrary HTML code into the Role Assignment administrator HTML pages. CWE-79
Cross-site Scripting 		CVE-2016-1598 2024-11-21 11:46 2016-10-28 Show GitHub Exploit DB Packet Storm
266928 6.1 MEDIUM
Network 		netiq identity_manager XSS in NetIQ Designer for Identity Manager before 4.5.3 allows remote attackers to inject arbitrary HTML code via the nrfEntitlementReport.do CGI. CWE-79
Cross-site Scripting 		CVE-2016-1592 2024-11-21 11:46 2016-10-28 Show GitHub Exploit DB Packet Storm
266929 6.5 MEDIUM
Network 		cisco nx-os Cisco NX-OS 4.0 through 7.3 and 11.0 through 11.2 on 1000v, 2000, 3000, 3500, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote attackers to cause a denial of service (device reload)… CWE-20
 Improper Input Validation  		CVE-2016-1454 2024-11-21 11:46 2016-10-6 Show GitHub Exploit DB Packet Storm
266930 9.8 CRITICAL
Network 		cisco nx-os Buffer overflow in the Overlay Transport Virtualization (OTV) GRE feature in Cisco NX-OS 5.0 through 7.3 on Nexus 7000 and 7700 devices allows remote attackers to execute arbitrary code via long para… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1453 2024-11-21 11:46 2016-10-6 Show GitHub Exploit DB Packet Storm