Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242091 4.3 警告 anantasoft - Anantasoft Gazelle CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3171 2012-06-26 16:18 2009-09-11 Show GitHub Exploit DB Packet Storm
242092 9.3 危険 aimp - AIMP2 Audio Converter におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3170 2012-06-26 16:18 2009-09-11 Show GitHub Exploit DB Packet Storm
242093 4.3 警告 anantasoft - Anantasoft Gazelle CMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3167 2012-06-26 16:18 2009-09-11 Show GitHub Exploit DB Packet Storm
242094 7.5 危険 carsten wulff - simplePHPWeb の admin/files.php における管理操作を実行される脆弱性 CWE-287
不適切な認証 		CVE-2009-3158 2012-06-26 16:18 2009-09-10 Show GitHub Exploit DB Packet Storm
242095 2.1 注意 Drupal
Karen Stevenson		 - Drupal 用 の Date モジュールの Date Tools サブモジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3156 2012-06-26 16:18 2009-07-29 Show GitHub Exploit DB Packet Storm
242096 4.3 警告 almondsoft
Joomla!		 - Joomla! の aclassf コンポーネントの gmap.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3155 2012-06-26 16:18 2009-09-10 Show GitHub Exploit DB Packet Storm
242097 7.5 危険 almondsoft
Joomla!		 - Joomla! の aclassf コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3154 2012-06-26 16:18 2009-09-10 Show GitHub Exploit DB Packet Storm
242098 4.3 警告 curveriderhq - Elgg の _css/js.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3149 2012-06-26 16:18 2009-09-10 Show GitHub Exploit DB Packet Storm
242099 4.3 警告 allenthusiast - ReviewPost Pro vB3 の showproduct.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3147 2012-06-26 16:18 2009-09-10 Show GitHub Exploit DB Packet Storm
242100 4.3 警告 articlefriend - ArticleFriend Script の search_advance.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3146 2012-06-26 16:18 2009-09-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266921 7.8 HIGH
Local 		f5
fedoraproject 		nginx
fedora 		The nginx package before 1.6.2-5+deb8u3 on Debian jessie, the nginx packages before 1.4.6-1ubuntu3.6 on Ubuntu 14.04 LTS, before 1.10.0-0ubuntu0.16.04.3 on Ubuntu 16.04 LTS, and before 1.10.1-0ubuntu… CWE-59
Link Following 		CVE-2016-1247 2024-11-21 11:46 2016-11-30 Show GitHub Exploit DB Packet Storm
266922 7.8 HIGH
Local 		vim
debian 		vim
debian_linux 		vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted m… CWE-20
 Improper Input Validation  		CVE-2016-1248 2024-11-21 11:46 2016-11-24 Show GitHub Exploit DB Packet Storm
266923 6.1 MEDIUM
Network 		cisco email_security_appliance A vulnerability in the display of email messages in the Messages in Quarantine (MIQ) view in Cisco AsyncOS for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to … CWE-79
Cross-site Scripting 		CVE-2016-1423 2024-11-21 11:46 2016-10-28 Show GitHub Exploit DB Packet Storm
266924 7.5 HIGH
Network 		cisco email_security_appliance A vulnerability in the email attachment scanning functionality of the Advanced Malware Protection (AMP) feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenti… CWE-19
 Data Processing Errors 		CVE-2016-1486 2024-11-21 11:46 2016-10-28 Show GitHub Exploit DB Packet Storm
266925 7.5 HIGH
Network 		cisco email_security_appliance A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to cause a denial of service (DoS)… CWE-20
 Improper Input Validation  		CVE-2016-1481 2024-11-21 11:46 2016-10-28 Show GitHub Exploit DB Packet Storm
266926 7.5 HIGH
Network 		cisco email_security_appliance A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) and Web Security Appliances (WSA) could allow an unauth… CWE-388
 7PK - Errors 		CVE-2016-1480 2024-11-21 11:46 2016-10-28 Show GitHub Exploit DB Packet Storm
266927 5.4 MEDIUM
Network 		novell identity_manager
identity_manager_identity_applications 		XSS in NetIQ IDM 4.5 Identity Applications before 4.5.4 allows attackers able to change their username to inject arbitrary HTML code into the Role Assignment administrator HTML pages. CWE-79
Cross-site Scripting 		CVE-2016-1598 2024-11-21 11:46 2016-10-28 Show GitHub Exploit DB Packet Storm
266928 6.1 MEDIUM
Network 		netiq identity_manager XSS in NetIQ Designer for Identity Manager before 4.5.3 allows remote attackers to inject arbitrary HTML code via the nrfEntitlementReport.do CGI. CWE-79
Cross-site Scripting 		CVE-2016-1592 2024-11-21 11:46 2016-10-28 Show GitHub Exploit DB Packet Storm
266929 6.5 MEDIUM
Network 		cisco nx-os Cisco NX-OS 4.0 through 7.3 and 11.0 through 11.2 on 1000v, 2000, 3000, 3500, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote attackers to cause a denial of service (device reload)… CWE-20
 Improper Input Validation  		CVE-2016-1454 2024-11-21 11:46 2016-10-6 Show GitHub Exploit DB Packet Storm
266930 9.8 CRITICAL
Network 		cisco nx-os Buffer overflow in the Overlay Transport Virtualization (OTV) GRE feature in Cisco NX-OS 5.0 through 7.3 on Nexus 7000 and 7700 devices allows remote attackers to execute arbitrary code via long para… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1453 2024-11-21 11:46 2016-10-6 Show GitHub Exploit DB Packet Storm