Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 12:10 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242081	7.5	危険	aj square	-	AJ Auction Pro OOPD の store.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3203	2012-06-26 16:18	2009-09-16	Show	GitHub Exploit DB Packet Storm

242082	4.3	警告	digioz	-	DigiOz Guestbook の search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3189	2012-06-26 16:18	2009-09-15	Show	GitHub Exploit DB Packet Storm

242083	7.5	危険	david frohlich	-	phpSANE の save.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-3188	2012-06-26 16:18	2009-09-15	Show	GitHub Exploit DB Packet Storm

242084	7.5	危険	Comsenz Technology	-	Discuz! の Crazy Star プラグインの plugin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3185	2012-06-26 16:18	2009-09-15	Show	GitHub Exploit DB Packet Storm

242085	7.5	危険	grapari	-	E-Gold Game Series の Pirate of The Caribbean における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3184	2012-06-26 16:18	2009-09-15	Show	GitHub Exploit DB Packet Storm

242086	6.8	警告	anantasoft	-	Anantasoft Gazelle CMS の admin/editor/filemanager/browser.html における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3182	2012-06-26 16:18	2009-09-11	Show	GitHub Exploit DB Packet Storm

242087	5	警告	anantasoft	-	Anantasoft Gazelle CMS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-3181	2012-06-26 16:18	2009-09-11	Show	GitHub Exploit DB Packet Storm

242088	7.5	危険	anantasoft	-	Anantasoft Gazelle CMS における他のユーザのパスワードリセットを実行される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-3180	2012-06-26 16:18	2009-09-11	Show	GitHub Exploit DB Packet Storm

242089	7.5	危険	boldfx	-	Model Agency Manager PRO における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3175	2012-06-26 16:18	2009-09-11	Show	GitHub Exploit DB Packet Storm

242090	4.3	警告	anantasoft	-	Anantasoft Gazelle CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3171	2012-06-26 16:18	2009-09-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268521	7.8	HIGH Local	imagemagick	imagemagick	Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file, related to…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10063	2024-11-21 11:43	2017-03-3	Show	GitHub Exploit DB Packet Storm

268522	5.5	MEDIUM Local	imagemagick	imagemagick	The ReadGROUP4Image function in coders/tiff.c in ImageMagick does not check the return value of the fwrite function, which allows remote attackers to cause a denial of service (application crash) via…	CWE-388 7PK - Errors	CVE-2016-10062	2024-11-21 11:43	2017-03-3	Show	GitHub Exploit DB Packet Storm

268523	6.5	MEDIUM Network	imagemagick	imagemagick	The ConcatenateImages function in MagickWand/magick-cli.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of serv…	CWE-252 Unchecked Return Value	CVE-2016-10060	2024-11-21 11:43	2017-03-3	Show	GitHub Exploit DB Packet Storm

268524	5.9	MEDIUM Network	gnu	glibc	The iconv program in the GNU C Library (aka glibc or libc6) 2.31 and earlier, when invoked with multiple suffixes in the destination encoding (TRANSLATE or IGNORE) along with the -c option, enters an…	CWE-20 Improper Input Validation	CVE-2016-10228	2024-11-21 11:43	2017-03-2	Show	GitHub Exploit DB Packet Storm

268525	7.0	HIGH Local	hesiod_project	hesiod	The hesiod_init function in lib/hesiod.c in Hesiod 3.2.1 compares EUID with UID to determine whether to use configurations from environment variables, which allows local users to gain privileges via …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10151	2024-11-21 11:43	2017-03-2	Show	GitHub Exploit DB Packet Storm

268526	5.5	MEDIUM Local	libtiff	libtiff	Stack-based buffer overflow in the _TIFFVGetField function in tif_dir.c in LibTIFF 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10095	2024-11-21 11:43	2017-03-2	Show	GitHub Exploit DB Packet Storm

268527	7.8	HIGH Local	libtiff	libtiff	Off-by-one error in the t2p_readwrite_pdf_image_tile function in tools/tiff2pdf.c in LibTIFF 4.0.7 allows remote attackers to have unspecified impact via a crafted image.	CWE-189 Numeric Errors	CVE-2016-10094	2024-11-21 11:43	2017-03-2	Show	GitHub Exploit DB Packet Storm

268528	7.8	HIGH Local	libtiff	libtiff	Integer overflow in tools/tiffcp.c in LibTIFF 4.0.7, 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5 and 4.0.…	CWE-119 CWE-190 Incorrect Access of Indexable Resource ('Range Error') Integer Overflow or Wraparound	CVE-2016-10093	2024-11-21 11:43	2017-03-2	Show	GitHub Exploit DB Packet Storm

268529	7.8	HIGH Local	libtiff	libtiff	Heap-based buffer overflow in the readContigStripsIntoBuffer function in tif_unix.c in LibTIFF 4.0.7, 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10092	2024-11-21 11:43	2017-03-2	Show	GitHub Exploit DB Packet Storm

268530	7.5	HIGH Network	opensuse tigervnc	leap tigervnc	The Xvnc server in TigerVNC allows remote attackers to cause a denial of service (invalid memory access and crash) by terminating a TLS handshake early.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10207	2024-11-21 11:43	2017-03-1	Show	GitHub Exploit DB Packet Storm