Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242021 5 警告 andrew j.korty - USE=ssh でコンパイルされた PAM で使用される pam_ssh におけるユーザ名が列挙される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-1273 2012-06-26 16:10 2009-04-8 Show GitHub Exploit DB Packet Storm
242022 7.5 危険 alikonweb
Joomla!		 - Joomla! の bookjoomlas コンポーネントの sub_commententry.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1263 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
242023 7.2 危険 フォーティネット - Fortinet FortiClient におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2009-1262 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
242024 9.3 危険 EZB Systems - UltraISO におけるスタックベースのバッファーオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1260 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
242025 7.5 危険 FlexCMS - FlexCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1256 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
242026 4.3 警告 Drupal - Drupal 用の Feed 要素マッパーモジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1249 2012-06-26 16:10 2009-03-26 Show GitHub Exploit DB Packet Storm
242027 7.5 危険 acutecp - Acute Control Panel における任意の PHP コードが実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-1248 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
242028 7.5 危険 acutecp.rediscussed - Acute Control Panel における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1247 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
242029 7.5 危険 blogplus - Blogplus におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1246 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
242030 7.5 危険 cccp-common-clan-portal-pasterbin - CCCP Community Clan Portal Pastebin の insert_to_pastebin 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1245 2012-06-26 16:10 2009-04-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267051 6.1 MEDIUM
Network 		shiro8 category_freearea_addition
itemdetail_freearea_addition 		Cross-site scripting (XSS) vulnerability in the shiro8 (1) category_freearea_ addition_plugin plugin 1.0 and (2) itemdetail_freearea_ addition_plugin plugin 1.0 for EC-CUBE allows remote attackers to… CWE-79
Cross-site Scripting 		CVE-2016-1205 2024-11-21 11:45 2016-04-28 Show GitHub Exploit DB Packet Storm
267052 7.8 HIGH
Local 		atom electron Untrusted search path vulnerability in Atom Electron before 0.33.5 allows local users to gain privileges via a Trojan horse Node.js module in a parent directory of a directory named on a require line. NVD-CWE-Other
CVE-2016-1202 2024-11-21 11:45 2016-04-26 Show GitHub Exploit DB Packet Storm
267053 2.5 LOW
Local 		cybozu kintone The Cybozu kintone mobile application 1.x before 1.0.6 for Android allows attackers to discover an authentication token via a crafted application. CWE-200
Information Exposure 		CVE-2016-1185 2024-11-21 11:45 2016-04-26 Show GitHub Exploit DB Packet Storm
267054 6.1 MEDIUM
Network 		adobe analytics_appmeasurement_for_flash_library Cross-site scripting (XSS) vulnerability in Adobe Analytics AppMeasurement for Flash Library before 4.0.1, when debugTracking is enabled, allows remote attackers to inject arbitrary web script or HTM… CWE-79
Cross-site Scripting 		CVE-2016-1036 2024-11-21 11:45 2016-04-23 Show GitHub Exploit DB Packet Storm
267055 7.5 HIGH
Network 		adobe robohelp Adobe RoboHelp Server 9 before 9.0.1 mishandles SQL queries, which allows attackers to obtain sensitive information via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-1035 2024-11-21 11:45 2016-04-13 Show GitHub Exploit DB Packet Storm
267056 9.1 CRITICAL
Network 		adobe creative_cloud The Sync Process in the JavaScript API for Creative Cloud Libraries in Adobe Creative Cloud Desktop Application before 3.6.0.244 allows remote attackers to read or write to arbitrary files via unspec… NVD-CWE-noinfo
CVE-2016-1034 2024-11-21 11:45 2016-04-13 Show GitHub Exploit DB Packet Storm
267057 8.8 HIGH
Network 		adobe flash_player
flash_player_desktop_runtime
air_desktop_runtime
air_sdk
air_sdk_\&_compiler 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary… CWE-416
 Use After Free 		CVE-2016-1031 2024-11-21 11:45 2016-04-9 Show GitHub Exploit DB Packet Storm
267058 8.1 HIGH
Network 		adobe flash_player
flash_player_desktop_runtime
air_desktop_runtime
air_sdk
air_sdk_\&_compiler 		Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to bypass intended access restrictions via unspecifi… NVD-CWE-noinfo
CVE-2016-1030 2024-11-21 11:45 2016-04-9 Show GitHub Exploit DB Packet Storm
267059 8.8 HIGH
Network 		adobe flash_player
flash_player_desktop_runtime
air_desktop_runtime
air_sdk
air_sdk_\&_compiler 		Stack-based buffer overflow in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary … CWE-787
 Out-of-bounds Write 		CVE-2016-1018 2024-11-21 11:45 2016-04-9 Show GitHub Exploit DB Packet Storm
267060 8.8 HIGH
Network 		adobe flash_player
flash_player_desktop_runtime
air_desktop_runtime
air_sdk
air_sdk_\&_compiler 		Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of servi… CWE-787
 Out-of-bounds Write 		CVE-2016-1033 2024-11-21 11:45 2016-04-9 Show GitHub Exploit DB Packet Storm