Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241971	10	危険	富士通	-	Fujitsu SystemcastWizard Lite の Registry Setting Tool におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0264	2012-06-26 16:10	2009-01-26	Show	GitHub Exploit DB Packet Storm

241972	9.3	危険	effectmatrix	-	EffectMatrix Total Video Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0261	2012-06-26 16:10	2009-01-23	Show	GitHub Exploit DB Packet Storm

241973	9.3	危険	easyhdr	-	easyHDR PRO におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0254	2012-06-26 16:10	2009-01-22	Show	GitHub Exploit DB Packet Storm

241974	7.5	危険	enthrallweb	-	Enthrallweb eReservations の default.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0252	2012-06-26 16:10	2009-01-22	Show	GitHub Exploit DB Packet Storm

241975	4.3	警告	53kf	-	53KF Web IM 2009 のサーバにおけるクロスサイトスクリプティング (XSS) の脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0247	2012-06-26 16:10	2009-01-22	Show	GitHub Exploit DB Packet Storm

241976	9.3	危険	easyhdr	-	easyHDR PRO におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0246	2012-06-26 16:10	2009-01-22	Show	GitHub Exploit DB Packet Storm

241977	7.5	危険	Ganglia	-	Ganglia の process_path 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0241	2012-06-26 16:10	2009-01-21	Show	GitHub Exploit DB Packet Storm

241978	9.3	危険	garmin	-	Garmin Communicator Plug-In のドメインロック実装における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-0194	2012-06-26 16:10	2009-05-11	Show	GitHub Exploit DB Packet Storm

241979	9.3	危険	Foxit Software Inc	-	Foxit Reader における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-0191	2012-06-26 16:10	2009-03-10	Show	GitHub Exploit DB Packet Storm

241980	9.3	危険	Free Download Manager.ORG	-	FDM の torrent 構文解析の実装におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0184	2012-06-26 16:10	2009-02-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268331	9.8	CRITICAL Network	totolink	a850r-v1_firmware f1-v2_firmware f2-v1_firmware n150rt-v2_firmware n151rt-v2_firmware n300rh-v2_firmware n300rh-v3_firmware n300rt-v2_firmware	An issue was discovered on TOTOLINK A850R-V1 through 1.0.1-B20150707.1612 and F1-V2 through 1.1-B20150708.1646 devices. There is Remote Code Execution in the management interface via the formSysCmd s…	NVD-CWE-noinfo	CVE-2015-9551	2024-11-21 11:40	2020-11-25	Show	GitHub Exploit DB Packet Storm

268332	7.5	HIGH Network	totolink	a850r-v1_firmware f1-v2_firmware f2-v1_firmware n150rt-v2_firmware n151rt-v2_firmware n300rh-v2_firmware n300rh-v3_firmware n300rt-v2_firmware	An issue was discovered on TOTOLINK A850R-V1 through 1.0.1-B20150707.1612 and F1-V2 through 1.1-B20150708.1646 devices. By sending a specific hel,xasf packet to the WAN interface, it is possible to o…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2015-9550	2024-11-21 11:40	2020-11-25	Show	GitHub Exploit DB Packet Storm

268333	6.1	MEDIUM Network	ocportal	ocportal	A reflected Cross-site Scripting (XSS) vulnerability exists in OcPortal 9.0.20 via the OCF_EMOTICON_CELL.tpl FIELD_NAME field to data/emoticons.php.	CWE-79 Cross-site Scripting	CVE-2015-9549	2024-11-21 11:40	2020-08-4	Show	GitHub Exploit DB Packet Storm

268334	7.5	HIGH Network	mattermost	mattermost_server	An issue was discovered in Mattermost Server before 1.2.0. It allows attackers to cause a denial of service (memory consumption) via a small compressed file that has a large size when uncompressed.	CWE-400 Uncontrolled Resource Consumption	CVE-2015-9548	2024-11-21 11:40	2020-06-20	Show	GitHub Exploit DB Packet Storm

268335	7.5	HIGH Network	google	android	An issue was discovered on Samsung mobile devices with JBP(4.3) and KK(4.4.2) software. Because the READ_LOGS permission is mishandled, sensitive information is disclosed in a world-readable copy of …	CWE-200 Information Exposure	CVE-2015-9547	2024-11-21 11:40	2020-04-11	Show	GitHub Exploit DB Packet Storm

268336	4.8	MEDIUM Network	google	android	An issue was discovered on Samsung mobile devices with KK(4.4) and later software through 2015-06-16. In some cases, HTTP is used for an Inputmethod, rather than HTTPS. A man-in-the-middle attacker c…	CWE-22 Path Traversal	CVE-2015-9546	2024-11-21 11:40	2020-04-11	Show	GitHub Exploit DB Packet Storm

268337	7.1	HIGH Local	cross_domain_local_storage_project	cross_domain_local_storage	An issue was discovered in xdLocalStorage through 2.0.5. The receiveMessage() function in xdLocalStorage.js does not implement any validation of the origin of web messages. Remote attackers who can e…	CWE-20 Improper Input Validation	CVE-2015-9545	2024-11-21 11:40	2020-04-8	Show	GitHub Exploit DB Packet Storm

268338	7.1	HIGH Local	cross_domain_local_storage_project	cross_domain_local_storage	An issue was discovered in xdLocalStorage through 2.0.5. The receiveMessage() function in xdLocalStoragePostMessageApi.js does not implement any validation of the origin of web messages. Remote attac…	CWE-20 Improper Input Validation	CVE-2015-9544	2024-11-21 11:40	2020-04-8	Show	GitHub Exploit DB Packet Storm

268339	7.5	HIGH Network	freeradius debian canonical	pam_radius debian_linux ubuntu_linux	add_password in pam_radius_auth.c in pam_radius 1.4.0 does not correctly check the length of the input password, and is vulnerable to a stack-based buffer overflow during memcpy(). An attacker could …	CWE-787 Out-of-bounds Write	CVE-2015-9542	2024-11-21 11:40	2020-02-25	Show	GitHub Exploit DB Packet Storm

268340	3.3	LOW Local	openstack	nova	An issue was discovered in OpenStack Nova before 18.2.4, 19.x before 19.1.0, and 20.x before 20.1.0. It can leak consoleauth tokens into log files. An attacker with read access to the service's logs …	CWE-200 Information Exposure	CVE-2015-9543	2024-11-21 11:40	2020-02-19	Show	GitHub Exploit DB Packet Storm