Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242071 7.5 危険 almondsoft - AlmondSoft Almond Classifieds Ads Enterprise の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3226 2012-06-26 16:18 2009-09-16 Show GitHub Exploit DB Packet Storm
242072 4.3 警告 almondsoft - AlmondSoft Almond Classifieds Wap におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3225 2012-06-26 16:18 2009-09-16 Show GitHub Exploit DB Packet Storm
242073 7.5 危険 classified-software
68classifieds		 - Super Mod System の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3224 2012-06-26 16:18 2009-09-16 Show GitHub Exploit DB Packet Storm
242074 4.3 警告 freewebscriptz - FWSHT の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3222 2012-06-26 16:18 2009-09-16 Show GitHub Exploit DB Packet Storm
242075 9.3 危険 basicunivers.free.fr - ALP におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3221 2012-06-26 16:18 2009-09-16 Show GitHub Exploit DB Packet Storm
242076 9.3 危険 broid - broid におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3213 2012-06-26 16:18 2009-09-16 Show GitHub Exploit DB Packet Storm
242077 6.8 警告 dimofinf - VivaPrograms Infinity Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3212 2012-06-26 16:18 2009-09-16 Show GitHub Exploit DB Packet Storm
242078 6.8 警告 dimofinf - VivaPrograms Infinity Script におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3211 2012-06-26 16:18 2009-09-16 Show GitHub Exploit DB Packet Storm
242079 6.8 警告 Drupal
drewish		 - Drupal の ImageCache モジュールにおける任意のイメージを表示される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3207 2012-06-26 16:18 2009-08-19 Show GitHub Exploit DB Packet Storm
242080 3.5 注意 Drupal
drewish		 - Drupal の ImageCache モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3206 2012-06-26 16:18 2009-08-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266911 5.4 MEDIUM
Network 		apache guacamole Cross-site scripting (XSS) vulnerability in the file browser in Guacamole 0.9.8 and 0.9.9, when file transfer is enabled to a location shared by multiple users, allows remote authenticated users to i… CWE-79
Cross-site Scripting 		CVE-2016-1566 2024-11-21 11:46 2017-02-3 Show GitHub Exploit DB Packet Storm
266912 8.8 HIGH
Network 		snort snort Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same… CWE-426
 Untrusted Search Path 		CVE-2016-1417 2024-11-21 11:46 2017-01-24 Show GitHub Exploit DB Packet Storm
266913 7.8 HIGH
Local 		idrix truecrypt
veracrypt 		Untrusted search path vulnerability in the installer for TrueCrypt 7.2 and 7.1a, VeraCrypt before 1.17-BETA, and possibly other products allows local users to execute arbitrary code with administrato… CWE-426
 Untrusted Search Path 		CVE-2016-1281 2024-11-21 11:46 2017-01-24 Show GitHub Exploit DB Packet Storm
266914 3.7 LOW
Network 		ntp
ntpsec 		ntp
ntpsec 		ntpd in NTP 4.2.8p3 and NTPsec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 relies on the underlying operating system to protect it from requests that impersonate reference clocks. Because reference cloc… CWE-254
 7PK - Security Features 		CVE-2016-1551 2024-11-21 11:46 2017-01-28 Show GitHub Exploit DB Packet Storm
266915 5.3 MEDIUM
Network 		ntp ntp An exploitable vulnerability exists in the message authentication functionality of libntp in ntp 4.2.8p4 and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92. An attacker can send a series of crafted … CWE-200
Information Exposure 		CVE-2016-1550 2024-11-21 11:46 2017-01-7 Show GitHub Exploit DB Packet Storm
266916 6.5 MEDIUM
Network 		ntp ntp A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win the clock selection algorithm in ntpd in NTP 4.2.8p4 and earlier and NTPsec 3e160db8dc248a0bcb053b56a… CWE-19
 Data Processing Errors 		CVE-2016-1549 2024-11-21 11:46 2017-01-7 Show GitHub Exploit DB Packet Storm
266917 7.2 HIGH
Network 		ntp ntp An attacker can spoof a packet from a legitimate ntpd server with an origin timestamp that matches the peer->dst timestamp recorded for that server. After making this switch, the client in NTP 4.2.8p… CWE-19
 Data Processing Errors 		CVE-2016-1548 2024-11-21 11:46 2017-01-7 Show GitHub Exploit DB Packet Storm
266918 5.3 MEDIUM
Network 		ntp ntp An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a vi… CWE-20
 Improper Input Validation  		CVE-2016-1547 2024-11-21 11:46 2017-01-7 Show GitHub Exploit DB Packet Storm
266919 5.9 MEDIUM
Network 		cisco content_security_management_appliance
email_security_appliance
web_security_appliance 		A vulnerability in the update functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Management Security Appliance (SM… CWE-310
Cryptographic Issues 		CVE-2016-1411 2024-11-21 11:46 2016-12-14 Show GitHub Exploit DB Packet Storm
266920 8.1 HIGH
Network 		dbd-mysql_project dbd-mysql There is a vulnerability of type use-after-free affecting DBD::mysql (aka DBD-mysql or the Database Interface (DBI) MySQL driver for Perl) 3.x and 4.x before 4.041 when used with mysql_server_prepare… CWE-416
 Use After Free 		CVE-2016-1251 2024-11-21 11:46 2016-11-30 Show GitHub Exploit DB Packet Storm